last sync: 2022-Sep-26 16:35:35 UTC

Azure Policy definition

Guest accounts with write permissions on Azure resources should be removed

Name Guest accounts with write permissions on Azure resources should be removed
Azure Portal
Id 94e1c2ac-cbbe-4cac-a2b5-389c812dee87
Version 1.0.0
details on versioning
Category Security Center
Microsoft docs
Description External accounts with write privileges should be removed from your subscription in order to prevent unmonitored access.
Mode All
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/assessments/status.code Microsoft.Security assessments properties.status.code false
Rule ResourceTypes IF (1)
Microsoft.Resources/subscriptions
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-08-09 17:24:03 add 94e1c2ac-cbbe-4cac-a2b5-389c812dee87
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
Azure Security Benchmark 1f3afdf9-d0c9-4c3d-847f-89da613e70a8 Security Center GA BuiltIn
JSON