You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/container-registry/container-registry-enable-conditional-access-policy.md
+10-10Lines changed: 10 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -62,36 +62,36 @@ You can enable registry's Conditional Access policy in the [Azure portal](https:
62
62
63
63
1. Navigate to your **Azure Container Registry** > **Resource Group** > **Settings** > **Policies** .
64
64
65
-
:::image type="content" source="media/container-registry-enable-conditional-policy/01-azure-policies.png" alt-text="Screenshot to navigate Azure policies":::
65
+
:::image type="content" source="media/container-registry-enable-conditional-policy/01-azure-policies.png" alt-text="Screenshot showing how to navigate Azure policies.":::
66
66
67
67
1. Navigate to **Azure Policy**, On the **Assignments**, select **Assign policy**.
68
68
69
-
:::image type="content" source="media/container-registry-enable-conditional-policy/02-Assign-policy.png" alt-text="Screenshot to assign a policy":::
69
+
:::image type="content" source="media/container-registry-enable-conditional-policy/02-Assign-policy.png" alt-text="Screenshot showing how to assign a policy.":::
70
70
71
71
1. Under the **Assign policy** , use filters to search and find the **Scope**, **Policy definition**, **Assignment name**.
72
72
73
-
:::image type="content" source="media/container-registry-enable-conditional-policy/03-Assign-policy-tab.png" alt-text="Screenshot of assign policy tab":::
73
+
:::image type="content" source="media/container-registry-enable-conditional-policy/03-Assign-policy-tab.png" alt-text="Screenshot of the assign policy tab.":::
74
74
75
75
1. Select **Scope** to filter and search for the **Subscription** and **ResourceGroup** and choose **Select**.
76
76
77
-
:::image type="content" source="media/container-registry-enable-conditional-policy/04-select-scope.png" alt-text="Screenshot of Scope tab":::
77
+
:::image type="content" source="media/container-registry-enable-conditional-policy/04-select-scope.png" alt-text="Screenshot of the Scope tab.":::
78
78
79
79
1. Select **Policy definition** to filter and search the built-in policy definitions for the Conditional Access policy.
80
80
81
-
:::image type="content" source="media/container-registry-enable-conditional-policy/05-built-in-policy-definitions.png" alt-text="Screenshot of built-in-policy-definitions":::
81
+
:::image type="content" source="media/container-registry-enable-conditional-policy/05-built-in-policy-definitions.png" alt-text="Screenshot of built-in-policy-definitions.":::
82
82
83
83
Azure Container Registry has two built-in policy definitions to disable authentication-as-arm, as below:
84
84
85
85
>* `Container registries should have ARM audience token authentication disabled.` - This policy will report, block any non-compliant resources, and also sends a request to update non-compliant to compliant.
86
86
>* `Configure container registries to disable ARM audience token authentication.` - This policy offers remediation and updates non-compliant to compliant resources.
87
87
88
-
1. Use filters to select and confirm **Scope**, **Policy definition**, and **Assignment name**.
88
+
1. Use filters to select and confirm **Scope**, **Policy definition**, and **Assignment name**.
89
89
90
-
1. Use the filters to limit compliance states or to search for policies.
90
+
1. Use the filters to limit compliance states or to search for policies.
91
91
92
-
1. Confirm your settings and set policy enforcement as **enabled**.
92
+
1. Confirm your settings and set policy enforcement as **enabled**.
93
93
94
-
1. Select **Review+Create**.
94
+
1. Select **Review+Create**.
95
95
96
96
:::image type="content" source="media/container-registry-enable-conditional-policy/06-enable-policy.png" alt-text="Screenshot to activate a Conditional Access policy":::
97
97
@@ -147,7 +147,7 @@ Create a Conditional Access policy and assign your test group of users as follow
147
147
148
148
1. To apply and activate the policy, Select **Create**.
149
149
150
-
:::image type="content" alt-text="A screenshot to activate the Conditional Access policy." source="media/container-registry-enable-conditional-policy/06-enable-conditional-access-policy.png":::
150
+
:::image type="content" alt-text="A screenshot showing how to activate the Conditional Access policy." source="media/container-registry-enable-conditional-policy/06-enable-conditional-access-policy.png":::
151
151
152
152
We have now completed creating the Conditional Access policy for the Azure Container Registry.
0 commit comments