| Plugin Title | Authentication Enabled |
| Cloud | AZURE |
| Category | App Service |
| Description | Ensures Authentication is enabled for App Services, redirecting unauthenticated users to the login page. |
| More Info | Enabling authentication will redirect all unauthenticated requests to the login page. It also handles authentication of users with specific providers (Azure Active Directory, Facebook, Google, Microsoft Account, and Twitter). |
| AZURE Link | https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization |
| Recommended Action | Enable App Service Authentication for all App Services. |
- Log in to the Microsoft Azure Management Console.
- Find the search bar at the top and search for App Services.
- Select the "App Service" by clicking on "Name" to go to its configuration.
- Scroll down the selected "App Services" navigation panel and under "Settings" click on "Authentication".
- On the "Authentication" page check if "App Service Authentication" is "Disabled". If it's "Disabled", then all unauthenticated requests to the app will not be redirected to the login page. It is recommended to have authentication enabled for all requests.
- If the "App Service Authentication" is "Disabled", then click on "Enable authentication" button to enable authentication.
- Wait for the confirmation message on top right to ensure authentication is now enabled.
- If there is no "Identity provider" then you will see the "Add identity provider" button.
- Click on the "Add identity provider" button and choose your desired "Identity provider" by selecting the relevant provider's name.
- Now configure the behavior and click "Add" to complete the setup.
- Verify that "Authentication" is now enabled.
- Repeat steps 3 to 11 to enable "Authentication" across all "App Services" in the account.
