AzPolicyAdvertizer

last sync: 2024-Sep-18 17:50:24 UTC

API Management should have username and password authentication disabled

Azure BuiltIn Policy definition

Source Azure Portal
Display name API Management should have username and password authentication disabled
Id ffe25541-3853-4f4e-b71d-064422294b11
Version 1.0.1
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.1
Built-in Versioning [Preview]
Category API Management
Microsoft Learn
Description To better secure developer portal, username and password authentication in API Management should be disabled. Configure user authentication through Azure AD or Azure AD B2C identity providers and disable the default username and password authentication.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ApiManagement/service/portalconfigs/enableBasicAuth Microsoft.ApiManagement service/portalConfigs properties.enableBasicAuth True True
Rule resource types IF (1)
Microsoft.ApiManagement/service/portalconfigs
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-05-01 17:41:52 change Patch (1.0.0 > 1.0.1)
2023-04-17 17:42:20 add ffe25541-3853-4f4e-b71d-064422294b11
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC