MEDIUM
Source
CloudSploit
ID
acr-admin-user

ACR Admin User

Ensures that the admin user is not enabled on container registries

Azure Container Registries have an admin user that is designed for testing. This should be disabled by default to avoid sharing confidential admin credentials.

Follow the appropriate remediation steps below to resolve the issue.

  1. Login to the Microsoft Azure Management Console.
  2. In the search bar at the top search for container registries and click on “Container registries”.
  3. On the container registries page, click on the “Name” link to go to the configuration page.
  4. On the container registry pane that opens, click on “Access keys” under “Settings” in the left navigation panel.
  5. In the keys panel, if you see “Enabled” next to “Admin user” then the admin user is enabled for the container registry. This is a security risk and against the Azure recommended practices.
  6. Click on the slider to “Disable” the admin user.
  7. Repeat step 3 - 6 for all other container registries.