last sync: 2025-Jul-28 17:33:33 UTC

Windows machines should meet requirements for 'Security Options - Interactive Logon'

Azure BuiltIn Policy definition

Source Azure Portal
Display name Windows machines should meet requirements for 'Security Options - Interactive Logon'
Id d472d2c9-d6a3-4500-9f5f-b15f123005aa
Version 3.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
3.0.0
Built-in Versioning [Preview]
Category Guest Configuration
Microsoft Learn
Description Windows machines should have the specified Group Policy settings in the category 'Security Options - Interactive Logon' for displaying last user name and requiring ctrl-alt-del. This policy requires that the Guest Configuration prerequisites have been deployed to the policy assignment scope. For details, visit https://aka.ms/gcpol.
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '2.0.0'
Repository: Azure-Policy d472d2c9-d6a3-4500-9f5f-b15f123005aa
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases IF (7)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Compute/imageOffer Microsoft.Compute
Microsoft.Compute
Microsoft.Compute
virtualMachines
virtualMachineScaleSets
disks
properties.storageProfile.imageReference.offer
properties.virtualMachineProfile.storageProfile.imageReference.offer
properties.creationData.imageReference.id
True
True
True


False
False
False
Microsoft.Compute/imagePublisher Microsoft.Compute
Microsoft.Compute
Microsoft.Compute
virtualMachines
virtualMachineScaleSets
disks
properties.storageProfile.imageReference.publisher
properties.virtualMachineProfile.storageProfile.imageReference.publisher
properties.creationData.imageReference.id
True
True
True


False
False
False
Microsoft.Compute/imageSKU Microsoft.Compute
Microsoft.Compute
Microsoft.Compute
virtualMachines
virtualMachineScaleSets
disks
properties.storageProfile.imageReference.sku
properties.virtualMachineProfile.storageProfile.imageReference.sku
properties.creationData.imageReference.id
True
True
True


False
False
False
Microsoft.Compute/virtualMachines/osProfile.windowsConfiguration Microsoft.Compute virtualMachines properties.osProfile.windowsConfiguration True True
Microsoft.Compute/virtualMachines/storageProfile.osDisk.osType Microsoft.Compute virtualMachines properties.storageProfile.osDisk.osType True True
Microsoft.ConnectedVMwarevSphere/virtualMachines/osProfile.osType Microsoft.ConnectedVMwarevSphere virtualmachines properties.osProfile.osType True False
Microsoft.HybridCompute/imageOffer Microsoft.HybridCompute machines properties.osName True False
THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.GuestConfiguration/guestConfigurationAssignments/complianceStatus Microsoft.GuestConfiguration guestConfigurationAssignments properties.complianceStatus True False
Rule resource types IF (3)
Compliance
The following 2 compliance controls are associated with this Policy definition 'Windows machines should meet requirements for 'Security Options - Interactive Logon'' (d472d2c9-d6a3-4500-9f5f-b15f123005aa)
Rows: 1-2 / 2

Columns:

Close

Columns▼
Records:
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx:
Learn more

TableFilter v0.7.3

https://www.tablefilter.com/
©2015-2025 Max Guglielmi
?
Page of 1
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
K_ISMS_P_2018 2.10.1 K_ISMS_P_2018_2.10.1 K ISMS P 2018 2.10.1 2.10 Establish Procedures for Managing the Security of System Operations Shared n/a Establish and implement operating procedures for managing the security of system operations such as designating system administrators, updating policies, changing rulesets, monitoring events, managing policy implementations or exceptions. 408
SWIFT_CSCF_v2022 2.6 SWIFT_CSCF_v2022_2.6 SWIFT CSCF v2022 2.6 2. Reduce Attack Surface and Vulnerabilities Protect the confidentiality and integrity of interactive operator sessions that connect to the local or remote (operated by a service provider) SWIFT infrastructure or service provider SWIFT-related applications Shared n/a The confidentiality and integrity of interactive operator sessions that connect to service provider SWIFT-related applications or into the secure zone are safeguarded. link 17
Initiatives usage
Rows: 1-3 / 3
Records:
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx:
Learn more

TableFilter v0.7.3

https://www.tablefilter.com/
©2015-2025 Max Guglielmi
?
Page of 1
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
[Preview]: Windows machines should meet requirements for the Azure compute security baseline be7a78aa-3e10-4153-a5fd-8c6506dbc821 Guest Configuration Preview BuiltIn true
K ISMS P 2018 e0782c37-30da-4a78-9f92-50bfe7aa2553 Regulatory Compliance GA BuiltIn unknown
SWIFT CSP-CSCF v2022 7bc7cd6c-4114-ff31-3cac-59be3157596d Regulatory Compliance GA BuiltIn unknown
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-01-28 17:51:01 change Major (2.0.0 > 3.0.0)
2020-09-15 14:06:41 change Previous DisplayName: [Preview]: Windows machines should meet requirements for 'Security Options - Interactive Logon'
2020-08-20 14:05:01 add d472d2c9-d6a3-4500-9f5f-b15f123005aa
JSON compare
compare mode: version left: version right:
2.0.0 → 3.0.0 RENAMED
@@ -4,9 +4,9 @@
4
  "mode": "Indexed",
5
  "description": "Windows machines should have the specified Group Policy settings in the category 'Security Options - Interactive Logon' for displaying last user name and requiring ctrl-alt-del. This policy requires that the Guest Configuration prerequisites have been deployed to the policy assignment scope. For details, visit https://aka.ms/gcpol.",
6
  "metadata": {
7
  "category": "Guest Configuration",
8
- "version": "2.0.0",
9
  "requiredProviders": [
10
  "Microsoft.GuestConfiguration"
11
  ],
12
  "guestConfiguration": {
@@ -18,9 +18,10 @@
18
  "IncludeArcMachines": {
19
  "type": "String",
20
  "metadata": {
21
  "displayName": "Include Arc connected servers",
22
- "description": "By selecting this option, you agree to be charged monthly per Arc connected machine."
 
23
  },
24
  "allowedValues": [
25
  "true",
26
  "false"
@@ -94,9 +95,9 @@
94
  "equals": "microsoft-dsvm"
95
  },
96
  {
97
  "field": "Microsoft.Compute/imageOffer",
98
- "equals": "dsvm-windows"
99
  }
100
  ]
101
  },
102
  {
@@ -208,14 +209,34 @@
208
  "value": "[parameters('IncludeArcMachines')]",
209
  "equals": "true"
210
  },
211
  {
 
 
 
 
212
- "field": "type",
213
- "equals": "Microsoft.HybridCompute/machines"
214
- },
215
- {
216
- "field": "Microsoft.HybridCompute/imageOffer",
217
- "like": "windows*"
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
218
  }
219
  ]
220
  }
221
  ]
 
4
  "mode": "Indexed",
5
  "description": "Windows machines should have the specified Group Policy settings in the category 'Security Options - Interactive Logon' for displaying last user name and requiring ctrl-alt-del. This policy requires that the Guest Configuration prerequisites have been deployed to the policy assignment scope. For details, visit https://aka.ms/gcpol.",
6
  "metadata": {
7
  "category": "Guest Configuration",
8
+ "version": "3.0.0",
9
  "requiredProviders": [
10
  "Microsoft.GuestConfiguration"
11
  ],
12
  "guestConfiguration": {
 
18
  "IncludeArcMachines": {
19
  "type": "String",
20
  "metadata": {
21
  "displayName": "Include Arc connected servers",
22
+ "description": "By selecting this option, you agree to be charged monthly per Arc connected machine.",
23
+ "portalReview": "true"
24
  },
25
  "allowedValues": [
26
  "true",
27
  "false"
 
95
  "equals": "microsoft-dsvm"
96
  },
97
  {
98
  "field": "Microsoft.Compute/imageOffer",
99
+ "like": "dsvm-win*"
100
  }
101
  ]
102
  },
103
  {
 
209
  "value": "[parameters('IncludeArcMachines')]",
210
  "equals": "true"
211
  },
212
  {
213
+ "anyOf": [
214
+ {
215
+ "allOf": [
216
+ {
217
+ "field": "type",
218
+ "equals": "Microsoft.HybridCompute/machines"
219
+ },
220
+ {
221
+ "field": "Microsoft.HybridCompute/imageOffer",
222
+ "like": "windows*"
223
+ }
224
+ ]
225
+ },
226
+ {
227
+ "allOf": [
228
+ {
229
+ "field": "type",
230
+ "equals": "Microsoft.ConnectedVMwarevSphere/virtualMachines"
231
+ },
232
+ {
233
+ "field": "Microsoft.ConnectedVMwarevSphere/virtualMachines/osProfile.osType",
234
+ "like": "windows*"
235
+ }
236
+ ]
237
+ }
238
+ ]
239
  }
240
  ]
241
  }
242
  ]
JSON
api-version=2021-06-01
EPAC
{7 items}