last sync: 2023-Jun-09 17:46:13 UTC

Azure Policy definition

Deploy Advanced Threat Protection for Cosmos DB Accounts

Name Deploy Advanced Threat Protection for Cosmos DB Accounts
Azure Portal
Id b5f04e03-92a3-4b09-9410-2cc5e5047656
Version 1.0.0
details on versioning
Category Cosmos DB
Microsoft docs
Description This policy enables Advanced Threat Protection across Cosmos DB accounts.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default
DeployIfNotExists, Disabled
Role Name Role Id
Security Admin fb1c8493-542b-48eb-b624-b4c8fea62acd
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/advancedThreatProtectionSettings/isEnabled Microsoft.Security advancedThreatProtectionSettings properties.isEnabled false
IF (1)
Compliance The following 1 compliance controls are associated with this Policy definition 'Deploy Advanced Threat Protection for Cosmos DB Accounts' (b5f04e03-92a3-4b09-9410-2cc5e5047656)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
CMMC_L3 IR.2.093 CMMC_L3_IR.2.093 CMMC L3 IR.2.093 Incident Response Detect and report events. Shared Microsoft and the customer share responsibilities for implementing this requirement. The monitoring, identification, and reporting of events are the foundation for incident identification and commence the incident life cycle. Events potentially affect the productivity of organizational assets and, in turn, associated services. These events must be captured and analyzed so that the organization can determine whether an event will become (or has become) an incident that requires organizational action. The extent to which an organization can identify events improves its ability to manage and control incidents and their potential effects. link 19
History none
Initiative DisplayName Initiative Id Initiative Category State Type
CMMC Level 3 b5629c75-5c77-4422-87b9-2509e680f8de Regulatory Compliance GA BuiltIn