Azure Event Grid Topic Managed Identity Provider
Description
Azure Event Grid allows you to easily build applications with event-based architectures. It enables serverless workflows and helps apps react in real-time to all the changes happening in your Azure resources. By using Managed Identities with Event Grid Topics, you can securely authenticate the identity of the service without storing credentials in code.
This policy ensures that Managed Identity provider is enabled for Azure Event Grid Topics.
Code Example
terraform
resource "azurerm_eventgrid_topic" "example" {
name = "example-topic"
location = azurerm_resource_group.example.location
resource_group_name = azurerm_resource_group.example.name
# ... other configurations ...
+ identity {
+ type = "SystemAssigned" # Or any other appropriate identity type
+ }
# ... other configurations ...
}Remediation
Terraform
Resource:
- azurerm_eventgrid_topic
Arguments:
- identity
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0698 |
| Severity | MEDIUM |
| IaC Type | arm |
| Frameworks | Terraform, |
| Checkov ID | CKV_AZURE_191 |