Cognitive Search service does not use system-assigned identities Affecting Search service in Azure

Snyk CCSS

IAM / Usage

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-Controls

Snyk ID SNYK-CC-00575
credit Snyk Research Team

Report a new misconfiguration Found a mistake?

Description

The risk of improperly configured authentication as well as missing credentials rotation increases if not using managed identities.

How to fix?

Set identity.type to SystemAssigned.

ARM

searchservices

Terraform

azurerm_search_service

References

What are managed identities for Azure resources?