Azure Key Vault should use RBAC

azure.keyvault
This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Rationale:

This detection identifies Azure Key Vaults with enable_rbac_authorization not set to true. This identifies Key Vaults where RBAC authentication is not implemented.

Remediation:

  1. Evaluate the need for the access policy permissions model in your Key Vault.
  2. If not required, migrate your Key Vault to the RBAC permissions model following guidance from Microsoft.