App Service web app ‘Register with Azure Active Directory’ should be enabled

Description

Registering an App Service web app with Azure Active Directory enables the app to connect to other Azure services securely without the need for usernames and passwords. Eliminating credentials from the app is a more secure approach.

Remediation Steps

Azure Portal

  • Navigate to App Services.

  • Select an app.

  • In the left navigation under Settings, select Identity.

  • Set the status to on and click Save.

Azure CLI

  • To enable ‘Register with Azure Active Directory’ for an App service web app:

az webapp identity assign --resource-group <RESOURCE_GROUP_NAME> --name <APP_NAME>