| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1516 - Personnel Termination | ||
| Id | da3cd269-156f-435b-b472-c3af34c032ed | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Personnel Security control | ||
| Cloud environments | AzureCloud = true AzureUSGovernment = true AzureChinaCloud = unknown |
||
| Available in AzUSGov | The Policy is available in AzureUSGovernment cloud. Version: '1.0.0' Repository: Azure-Policy da3cd269-156f-435b-b472-c3af34c032ed |
||
| Additional metadata |
Name/Id: ACF1516 / Microsoft Managed Control 1516 Category: Personnel Security Title: Personnel Termination - Revoke Authenticators/Credentials Ownership: Customer, Microsoft Description: The organization, upon termination of individual employment: Terminates/revokes any authenticators/credentials associated with the individual; Requirements: When an individual is terminated via voluntary termination, he or she is removed from the Human Resources Information System (HRIS) via a Termination Transaction approved by the individual’s manager, group administrator, or equivalent personnel with work-on-behalf privileges. If an individual is involuntarily terminated, the request is submitted by the central HR Operations team via a request from the org-aligned HR Manager. When an individual is marked as terminated in HRIS, this information propagates to Active Directory, which then automatically removes/revokes any authenticators/credentials associated with the individual. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|