last sync: 2024-Oct-04 17:51:30 UTC

Microsoft Managed Control 1227 - Information System Component Inventory | Automated Unauthorized Component Detection | Regulatory Compliance - Configuration Management

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1227 - Information System Component Inventory | Automated Unauthorized Component Detection
Id 03b78f5e-4877-4303-b0f4-eb6583f25768
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 0
Built-in Versioning [Preview]
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Configuration Management control
Additional metadata Name/Id: ACF1227 / Microsoft Managed Control 1227
Category: Configuration Management
Title: Information System Component Inventory | Automated Unauthorized Component Detection - Actions Taken
Ownership: Customer, Microsoft
Description: The organization: Takes the following actions when unauthorized components are detected: Disables network access by such components.
Requirements: Azure does not wait to isolate components by disabling network access for unauthorized components. When network devices are deployed, ports are turned off by default. Unassigned ports are put into a VLAN that is not configured at Layer 3 (L3) and has no provisioned servers in it. Thus, even if ports were enabled, there is no access to any provisioned servers and traffic does not have the ability to leave the VLAN subnet. To prevent IP spoofing, Azure uses ACLs on the L3 to deny packets sourced by the subnet from entering that subnet.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance
The following 1 compliance controls are associated with this Policy definition 'Microsoft Managed Control 1227 - Information System Component Inventory | Automated Unauthorized Component Detection' (03b78f5e-4877-4303-b0f4-eb6583f25768)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.exp.1 Asset inventory op.exp.1 Asset inventory 404 not found n/a n/a 40
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC