Unknown Azure Role Assignment with identity not found

IAM misconfigurations

Unknown Azure Role Assignment with identity not found

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CPRA
essential_8_au
ISO/IEC 27001
Microsoft Cloud Security Benchmark
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

Role Assignments respond for managing access to Azure resources. To grant access, you assign roles to users, groups, service principals, or managed identities at a particular scope. Assignment without an attached identity found. There are 2 possible reasons this can occur: 1) You recently invited a user when creating a role assignment. 2) You deleted a security principal(e.g. user, group, service principal, managed identities) that had a role assignment.

Recommended Mitigation

It is recommended to delete unused role assignment. For more information: <a href="https://docs.microsoft.com/en-us/azure/role-based-access-control/troubleshooting#role-assignments-with-identity-not-found" target="_blank" rel="noopener noreferrer">https://docs.microsoft.com/en-us/azure/role-based-access-control/troubleshooting#role-assignments-with-identity-not-found</a>

Unknown Azure Role Assignment with identity not found

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS