last sync: 2024-Jun-14 18:20:16 UTC

Microsoft Managed Control 1043 - Least Privilege | Prohibit Non-Privileged Users From Executing Privileged Functions | Regulatory Compliance - Access Control

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1043 - Least Privilege | Prohibit Non-Privileged Users From Executing Privileged Functions
Id 361a77f6-0f9c-4748-8eec-bc13aaaa2455
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Access Control control
Additional metadata Name/Id: ACF1043 / Microsoft Managed Control 1043
Category: Access Control
Title: Least Privilege | Prohibit Non-Privileged Users From Executing Privileged Functions
Ownership: Customer, Microsoft
Description: The information system prevents non-privileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.
Requirements: Azure prevents non-privileged users from accessing elevated functions. Non-privileged service team users are never granted access to Azure. Customers do not have access to any functionality related to Azure safeguards/countermeasures.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC