Azure Instance Using Basic Authentication
- Query id: e2d834b7-8b25-4935-af53-4a60668dcbe0
- Query name: Azure Instance Using Basic Authentication
- Platform: Ansible
- Severity: High
- Category: Best Practices
- URL: Github
Description¶
Azure Instances should use SSH Key instead of basic authentication
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - yaml file
---
- name: Create a VM with a custom image
azure_rm_virtualmachine:
resource_group: myResourceGroup
name: testvm001
vm_size: Standard_DS1_v2
admin_username: adminUser
admin_password: password01
image: customimage001
os_type: Linux
Code samples without security vulnerabilities¶
Negative test num. 1 - yaml file
---
- name: Create a VM with a custom image
azure_rm_virtualmachine:
resource_group: myResourceGroup
name: testvm001
vm_size: Standard_DS1_v2
ssh_password_enabled: false
ssh_public_keys:
- path: ~/.ssh/id_rsa.pub
key_data: somegeneratedkeydata
image: customimage001
os_type: Linux