| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1452 - Physical Access Control | ||
| Id | 82c76455-4d3f-4e09-a654-22e592107e74 | ||
| Version | 1.0.0 Details on versioning |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Physical and Environmental Protection control | ||
| Additional metadata |
Name/Id: ACF1452 / Microsoft Managed Control 1452 Category: Physical and Environmental Protection Title: Physical Access Control - Audit Logs Ownership: Microsoft Description: The organization: Maintains physical access audit logs for All physical access points to the facility; Requirements: Access authorizations at Azure datacenters are managed through the Datacenter Access Tool (DCAT). DCAT contains the authorized access lists of personnel who have been approved by the DCM team. Access to areas within the datacenter is granted based on the least privilege principle. Before a person can be granted physical access to a datacenter, they must have a DCAT request approved by the DCM team. The DCM team reviews the request for a valid business justification and for appropriate access levels. Upon arriving at the datacenter, the individual on the request must have their identification verified by the security against a Microsoft identification badge or a valid government issued identification card. All accesses to Azure datacenter facilities are logged and audited. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|