last sync: 2022-Sep-26 16:35:35 UTC

Azure Policy definition

Guest accounts with read permissions on Azure resources should be removed

Name Guest accounts with read permissions on Azure resources should be removed
Azure Portal
Id e9ac8f8e-ce22-4355-8f04-99b911d6be52
Version 1.0.0
details on versioning
Category Security Center
Microsoft docs
Description External accounts with read privileges should be removed from your subscription in order to prevent unmonitored access.
Mode All
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/assessments/status.code Microsoft.Security assessments properties.status.code false
Rule ResourceTypes IF (1)
Microsoft.Resources/subscriptions
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-08-09 17:24:03 add e9ac8f8e-ce22-4355-8f04-99b911d6be52
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
Azure Security Benchmark 1f3afdf9-d0c9-4c3d-847f-89da613e70a8 Security Center GA BuiltIn
JSON