Active Directory account has predictable username as 'Admin' or 'Root'

ID

azure_predictable_ad_account_name

Severity

low

Vendor

Azure

Resource

IAM

Tags

reachable

Description

The SQL Server Active Directory account has predictable username as 'Admin' or 'Root'. This is a facility to a potential attacker.

Learn more about this topic at Azure SQL Server AD username.

Examples

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: create ad sp
      azure_rm_adserviceprincipal:
        ad_user: "Root"
        app_id: "{{ app_id }}"
        state: present
        tenant: "{{ tenant_id }}"

Mitigation / Fix

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: create ad sp
      azure_rm_adserviceprincipal:
        ad_user: "Unpredictable_user"
        app_id: "{{ app_id }}"
        state: present
        tenant: "{{ tenant_id }}"