Forum Discussion
Fixing "Authentication to Linux machines should require SSH keys"
Azure Policy on its own cannot directly evaluate operating system–level configurations. To achieve compliance with the “Authentication to Linux machines should require SSH keys” requirement, we may be required to enable the deployment of the Azure Guest Configuration extension. This extension performs in‑guest audits of the SSH configuration, ensuring that password authentication is disabled and that only key‑based authentication is permitted.
https://learn.microsoft.com/en-us/rest/api/guestconfiguration/
https://learn.microsoft.com/en-us/azure/osconfig/quickstart-sec-baseline-mc?tabs=azure-cli
https://github.com/Azure/azure-policy/blob/58fcf068ecb5e96d23958d9799cf872e687a1a4a/built-in-policies/policyDefinitions/Guest%20Configuration/GuestConfiguration_LinuxNoPasswordForSSH_AINE.json