Checks/Azure/Test-CosmosdbAccountUseAadAndRbac.ps1
|
function Test-CosmosdbAccountUseAadAndRbac { <# .SYNOPSIS Cosmos DB account has local authentication disabled and uses Azure AD authentication with Azure RBAC .DESCRIPTION **Azure Cosmos DB accounts** configured to use **Microsoft Entra ID** with **Azure RBAC** by disabling key-based credentials (`disableLocalAuth=true`). Clients authenticate with identities rather than account keys. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: cosmosdb_account_use_aad_and_rbac [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check cosmosdb_account_use_aad_and_rbac for reference.', 'N/A', 'cosmosdb Resources') } |