支援適用於 Azure 資源的受控識別服務Services that support managed identities for Azure resources

Azure 資源受控識別會在 Azure Active Directory 中為 Azure 服務提供自動受控識別。Managed identities for Azure resources provide Azure services with an automatically managed identity in Azure Active Directory. 您可以使用受控身分識別,向任何支援 Azure AD 驗證的服務進行驗證,而不需要您程式碼中的任何認證。Using a managed identity, you can authenticate to any service that supports Azure AD authentication without having credentials in your code. 我們正在努力對於 Azure 的 Azure 資源和 Azure AD 驗證整合受控識別。We are in the process of integrating managed identities for Azure resources and Azure AD authentication across Azure. 請經常回來檢查更新。Check back often for updates.

注意

先前稱為「受控服務識別」(MSI) 的服務,其新名稱為「Azure 資源適用受控識別」。Managed identities for Azure resources is the new name for the service formerly known as Managed Service Identity (MSI).

支援適用於 Azure 資源的受控識別 Azure 服務Azure services that support managed identities for Azure resources

下列 Azure 服務支援 Azure 資源的受控識別:The following Azure services support managed identities for Azure resources:

Azure 虛擬機器Azure Virtual Machines

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 預覽Preview 預覽Preview 預覽Preview
使用者指派User assigned 預覽Preview 預覽Preview 預覽Preview 預覽Preview

請參閱下列清單來設定 Azure 虛擬機器的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Virtual Machines (in regions where available):

Azure 虛擬機器擴展集Azure Virtual Machine Scale Sets

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 預覽Preview 預覽Preview 預覽Preview
使用者指派User assigned 預覽Preview 預覽Preview 預覽Preview 預覽Preview

請參閱下列清單來設定 Azure 虛擬機器擴展集的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Virtual Machine Scale Sets (in regions where available):

Azure App ServiceAzure App Service

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 可用Available 可用Available 可用Available
使用者指派User assigned 預覽Preview 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure App Service 的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure App Service (in regions where available):

Azure 藍圖Azure Blueprints

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 預覽Preview 尚未提供Not available 尚未提供Not available 尚未提供Not available
使用者指派User assigned 預覽Preview 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單以使用受控識別搭配Azure 藍圖:Refer to the following list to use a managed identity with Azure Blueprints:

Azure FunctionsAzure Functions

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 可用Available 可用Available 可用Available
使用者指派User assigned 預覽Preview 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure Functions 的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Functions (in regions where available):

Azure Logic AppsAzure Logic Apps

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 預覽Preview 預覽Preview 尚未提供Not available 預覽Preview
使用者指派User assigned 尚未提供Not available 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure Logic Apps 的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Logic Apps (in regions where available):

Azure Data Factory V2Azure Data Factory V2

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 尚未提供Not available 尚未提供Not available 尚未提供Not available
使用者指派User assigned 尚未提供Not available 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure Data Factory V2 的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Data Factory V2 (in regions where available):

Azure API 管理Azure API Management

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 可用Available 尚未提供Not available 尚未提供Not available
使用者指派User assigned 尚未提供Not available 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure APIM 的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure API Management (in regions where available):

Azure Container InstancesAzure Container Instances

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned Linux:預覽Linux: Preview
Windows:尚未提供Windows: Not available
尚未提供Not available 尚未提供Not available 尚未提供Not available
使用者指派User assigned Linux:預覽Linux: Preview
Windows:尚未提供Windows: Not available
尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單來設定 Azure 容器執行個體的受控識別 (若區域提供):Refer to the following list to configure managed identity for Azure Container Instances (in regions where available):

Azure Container Registry 工作Azure Container Registry Tasks

受控識別類型Managed identity type 全部正式推出All Generally Available
全域 Azure 區域Global Azure Regions
Azure GovernmentAzure Government Azure GermanyAzure Germany Azure China 21VianetAzure China 21Vianet
系統指派System assigned 可用Available 尚未提供Not available 尚未提供Not available 尚未提供Not available
使用者指派User assigned 預覽Preview 尚未提供Not available 尚未提供Not available 尚未提供Not available

請參閱下列清單以設定 Azure Container Registry 工作的受控識別 (在可用區域中):Refer to the following list to configure managed identity for Azure Container Registry Tasks (in regions where available):

支援 Azure AD 驗證的 Azure 服務Azure services that support Azure AD authentication

下列服務支援 Azure AD 驗證,並已經過使用 Azure 資源受控識別的用戶端服務進行的測試。The following services support Azure AD authentication, and have been tested with client services that use managed identities for Azure resources.

Azure Resource ManagerAzure Resource Manager

請參閱下列清單, 以設定 Azure Resource Manager 的存取權:Refer to the following list to configure access to Azure Resource Manager:

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://management.azure.com/ 可用Available
Azure GovernmentAzure Government https://management.usgovcloudapi.net/ 可用Available
Azure GermanyAzure Germany https://management.microsoftazure.de/ 可用Available
Azure China 21VianetAzure China 21Vianet https://management.chinacloudapi.cn 可用Available

Azure 金鑰保存庫Azure Key Vault

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://vault.azure.net 可用Available
Azure GovernmentAzure Government https://vault.usgovcloudapi.net 可用Available
Azure GermanyAzure Germany https://vault.microsoftazure.de 可用Available
Azure China 21VianetAzure China 21Vianet https://vault.azure.cn 可用Available

Azure Data LakeAzure Data Lake

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://datalake.azure.net/ 可用Available
Azure GovernmentAzure Government 無法使用Not Available
Azure GermanyAzure Germany 無法使用Not Available
Azure China 21VianetAzure China 21Vianet 無法使用Not Available

Azure SQLAzure SQL

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://database.windows.net/ 可用Available
Azure GovernmentAzure Government https://database.usgovcloudapi.net/ 可用Available
Azure GermanyAzure Germany https://database.cloudapi.de/ 可用Available
Azure China 21VianetAzure China 21Vianet https://database.chinacloudapi.cn/ 可用Available

Azure 事件中心Azure Event Hubs

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://eventhubs.azure.net 預覽Preview
Azure GovernmentAzure Government 無法使用Not Available
Azure GermanyAzure Germany 無法使用Not Available
Azure China 21VianetAzure China 21Vianet 無法使用Not Available

Azure 服務匯流排Azure Service Bus

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://servicebus.azure.net 預覽Preview
Azure GovernmentAzure Government 無法使用Not Available
Azure GermanyAzure Germany 無法使用Not Available
Azure China 21VianetAzure China 21Vianet 無法使用Not Available

Azure 儲存體 blob 和佇列Azure Storage blobs and queues

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://storage.azure.com/

https://<account>.blob.core.windows.net

https://<account>.queue.core.windows.net
可用Available
Azure GovernmentAzure Government https://storage.azure.com/

https://<account>.blob.core.windows.net

https://<account>.queue.core.windows.net
可用Available
Azure GermanyAzure Germany https://storage.azure.com/

https://<account>.blob.core.windows.net

https://<account>.queue.core.windows.net
可用Available
Azure China 21VianetAzure China 21Vianet https://storage.azure.com/

https://<account>.blob.core.windows.net

https://<account>.queue.core.windows.net
可用Available

Azure Analysis ServicesAzure Analysis Services

雲端Cloud 資源識別碼Resource ID 狀態Status
Azure 全域Azure Global https://*.asazure.windows.net 可用Available
Azure GovernmentAzure Government https://*.asazure.usgovcloudapi.net 可用Available
Azure GermanyAzure Germany https://*.asazure.cloudapi.de 可用Available
Azure China 21VianetAzure China 21Vianet https://*.asazure.chinacloudapi.cn 可用Available