Azure > Virtual Machines >

Privilege Analysis

INFO

Source

CloudSploit

ID

privilege-analysis

management console

Privilege Analysis

Ensures that no virtual machines in your Azure environment have excessive permissions.

Virtual machines that use managed identities with excessive Azure AD permissions may pose security risks. It is a best practice to assign only the necessary permissions to the managed identities attached to virtual machines.

Recommended Actions

Review and restrict the Azure AD roles associated with managed identities used by virtual machines to follow the principle of least privilege.

Links

https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-to-use-vm-token

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2025 Aqua Security Software Ltd. Privacy Policy | Terms of Use