Description
For enhanced authentication security, use a managed identity.
On Azure, managed identities eliminate the need for developers to have to manage credentials by providing an identity for the Azure resource in Azure AD and using it to obtain Azure Active Directory (Azure AD) tokens.
Remediation steps
Manual remediation
To create a managed identity for your web app:
- Go to the App Service for your API app
- Scroll to the Settings group in the left navigation
- Select Identity
- Use System assigned or User assigned identity following the steps described in this doc: https://aka.ms/managed-identity
Retrofit all the necessary changes into the ARM template of the solution.
Description
For enhanced authentication security, use a managed identity.
On Azure, managed identities eliminate the need for developers to have to manage credentials by providing an identity for the Azure resource in Azure AD and using it to obtain Azure Active Directory (Azure AD) tokens.
Remediation steps
Manual remediation
To create a managed identity for your web app:
Retrofit all the necessary changes into the ARM template of the solution.