gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-01-02 15:59:58 -08:00
Code Issues Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Carlos Polop
2025-02-17 19:25:37 +01:00
parent 2505aec847
commit 0f7175eb98
3 changed files with 10 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/pentesting-cloud/azure-security/az-services/az-container-instances-apps-jobs.md
View File

@@ -117,3 +117,4 @@ az containerapp job start --name <job-name> --resource-group <res-group>
{{#endref}}
{{#include ../../../banners/hacktricks-training.md}}

14
src/pentesting-cloud/azure-security/az-services/az-servicebus-enum.md
View File

@@ -39,6 +39,13 @@ Some advance features are:
- **Duplicate Detection**: Removes duplicate messages during resends.
- **Batch Deletion**: Bulk deletes expired or unnecessary messages.
### Local Authentication
The **`--disable-local-auth`** from az cli parameter is used to control whether **local authentication** (allowing the use of Shared Access Signature (SAS) keys) is enabled for your Service Bus namespace.
- When disable is set to **true**: Local authentication using SAS keys is disabled and Entrad ID authentication is allowed.
- When disable is set to **false (default)**: Both SAS local authentication and Entra ID authentication are available and you can use connection strings with SAS keys to access your Service Bus resources.
### Authorization-Rule / SAS Policy
SAS Policies define the access permissions for Azure Service Bus entities namespace (Most Important One), queues and topics. Each policy has the following components:
@@ -53,13 +60,6 @@ SAS Policies define the access permissions for Azure Service Bus entities namesp
Its important to note that a namespace has a single SAS policy that affects every entity within it, while queues and topics can have their own individual SAS policies for more granular control.
### "--disable-local-auth"
The --disable-local-auth parameter is used to control whether local authentication (i.e. using Shared Access Signature (SAS) keys) is enabled for your Service Bus namespace. Heres what you need to know:
- When set to true: Local authentication using SAS keys is disabled and azure Active Directory (Azure AD) authentication is allowed.
- When set to false:Both SAS (local) authentication and Azure AD authentication are available and you can use connection strings with SAS keys to access your Service Bus resources.
### Enumeration
{{#tabs }}