last sync: 2024-Jun-13 18:14:14 UTC

Microsoft Managed Control 1452 - Physical Access Control | Regulatory Compliance - Physical and Environmental Protection

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1452 - Physical Access Control
Id 82c76455-4d3f-4e09-a654-22e592107e74
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Physical and Environmental Protection control
Additional metadata Name/Id: ACF1452 / Microsoft Managed Control 1452
Category: Physical and Environmental Protection
Title: Physical Access Control - Audit Logs
Ownership: Microsoft
Description: The organization: Maintains physical access audit logs for All physical access points to the facility;
Requirements: Access authorizations at Azure datacenters are managed through the Datacenter Access Tool (DCAT). DCAT contains the authorized access lists of personnel who have been approved by the DCM team. Access to areas within the datacenter is granted based on the least privilege principle. Before a person can be granted physical access to a datacenter, they must have a DCAT request approved by the DCM team. The DCM team reviews the request for a valid business justification and for appropriate access levels. Upon arriving at the datacenter, the individual on the request must have their identification verified by the security against a Microsoft identification badge or a valid government issued identification card. All accesses to Azure datacenter facilities are logged and audited.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC