Json |
{
"properties": {
"displayName": "[Preview]: NIST SP 800-171 R2",
"policyType": "BuiltIn",
"description": "This initiative includes audit and virtual machine extension policies that address a subset of NIST SP 800-171 R2 requirements. Additional policies will be added in upcoming releases. For more information, visit https://aka.ms/nist800171r2-blueprint.",
"metadata": {
"version": "5.0.1-preview",
"category": "Regulatory Compliance",
"preview": true
},
"parameters": {
"IncludeArcMachines": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Include Arc connected servers for Guest Configuration policies",
"description": "Optionally choose to audit settings inside Arc connected servers using Guest Configuration policies. By selecting this option, you agree to be charged monthly per Arc connected machine."
},
"allowedValues": [
"true",
"false"
],
"defaultValue": "false"
},
"membersToExcludeInLocalAdministratorsGroup": {
"type": "String",
"metadata": {
"displayName": "[Preview]: List of users excluded from Windows VM Administrators group",
"description": "A semicolon-separated list of users that should be excluded in the Administrators local group; Ex: Administrator; myUser1; myUser2"
}
},
"membersToIncludeInLocalAdministratorsGroup": {
"type": "String",
"metadata": {
"displayName": "[Preview]: List of users that must be included in Windows VM Administrators group",
"description": "A semicolon-separated list of users that should be included in the Administrators local group; Ex: Administrator; myUser1; myUser2"
}
},
"listOfLocationsForNetworkWatcher": {
"type": "Array",
"metadata": {
"displayName": "[Preview]: List of regions where Network Watcher should be enabled",
"description": "Audit if Network Watcher is not enabled for region(s).",
"strongType": "location"
}
},
"NetworkWatcherResourceGroupName": {
"type": "String",
"metadata": {
"displayName": "[Preview]: NetworkWatcher resource group name",
"description": "Name of the resource group of NetworkWatcher, such as NetworkWatcherRG"
},
"defaultValue": "NetworkWatcherRG"
},
"logAnalyticsWorkspaceIDForVMAgents": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Log Analytics workspace ID for VM agent reporting",
"description": "ID (GUID) of the Log Analytics workspace where VMs agents should report."
}
},
"pHPLatestVersionForAppServices": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Latest PHP version",
"description": "Latest supported PHP version for App Services"
},
"defaultValue": "7.3"
},
"windowsImagesToAddToLogAgentAuditScope": {
"type": "Array",
"metadata": {
"displayName": "[Preview]: Optional: List of Windows VM images that support Log Analytics agent to add to audit scope",
"description": "A semicolon-separated list of images; Ex: /subscriptions//resourceGroups/YourResourceGroup/providers/Microsoft.Compute/images/ContosoStdImage"
},
"defaultValue": [
]
},
"linuxImagesToAddToLogAgentAuditScope": {
"type": "Array",
"metadata": {
"displayName": "[Preview]: Optional: List of Linux VM images that support Log Analytics agent to add to audit scope",
"description": "A semicolon-separated list of images; Ex: /subscriptions//resourceGroups/YourResourceGroup/providers/Microsoft.Compute/images/ContosoStdImage"
},
"defaultValue": [
]
},
"javaLatestVersionForAppServices": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Latest Java version",
"description": "Latest supported Java version for App Services"
},
"defaultValue": "11"
},
"WindowsPythonLatestVersionForAppServices": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Latest Windows Python version",
"description": "Latest supported Python version for App Services",
"deprecated": true
},
"defaultValue": "3.6"
},
"linuxPythonLatestVersionForAppServices": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Latest Linux Python version",
"description": "Latest supported Python version for App Services"
},
"defaultValue": "3.8"
},
"listOfResourceTypesForDiagnosticLogs": {
"type": "Array",
"metadata": {
"displayName": "[Preview]: List of resource types that should have resource logs enabled",
"description": "Audit diagnostic setting for selected resource types"
},
"allowedValues": [
"Microsoft.AnalysisServices/servers",
"Microsoft.ApiManagement/service",
"Microsoft.Network/applicationGateways",
"Microsoft.Automation/automationAccounts",
"Microsoft.ContainerInstance/containerGroups",
"Microsoft.ContainerRegistry/registries",
"Microsoft.ContainerService/managedClusters",
"Microsoft.Batch/batchAccounts",
"Microsoft.Cdn/profiles/endpoints",
"Microsoft.CognitiveServices/accounts",
"Microsoft.DocumentDB/databaseAccounts",
"Microsoft.DataFactory/factories",
"Microsoft.DataLakeAnalytics/accounts",
"Microsoft.DataLakeStore/accounts",
"Microsoft.EventGrid/eventSubscriptions",
"Microsoft.EventGrid/topics",
"Microsoft.EventHub/namespaces",
"Microsoft.Network/expressRouteCircuits",
"Microsoft.Network/azureFirewalls",
"Microsoft.HDInsight/clusters",
"Microsoft.Devices/IotHubs",
"Microsoft.KeyVault/vaults",
"Microsoft.Network/loadBalancers",
"Microsoft.Logic/integrationAccounts",
"Microsoft.Logic/workflows",
"Microsoft.DBforMySQL/servers",
"Microsoft.Network/networkInterfaces",
"Microsoft.Network/networkSecurityGroups",
"Microsoft.DBforPostgreSQL/servers",
"Microsoft.PowerBIDedicated/capacities",
"Microsoft.Network/publicIPAddresses",
"Microsoft.RecoveryServices/vaults",
"Microsoft.Cache/redis",
"Microsoft.Relay/namespaces",
"Microsoft.Search/searchServices",
"Microsoft.ServiceBus/namespaces",
"Microsoft.SignalRService/SignalR",
"Microsoft.Sql/servers/databases",
"Microsoft.Sql/servers/elasticPools",
"Microsoft.StreamAnalytics/streamingjobs",
"Microsoft.TimeSeriesInsights/environments",
"Microsoft.Network/trafficManagerProfiles",
"Microsoft.Compute/virtualMachines",
"Microsoft.Compute/virtualMachineScaleSets",
"Microsoft.Network/virtualNetworks",
"Microsoft.Network/virtualNetworkGateways"
],
"defaultValue": [
"Microsoft.AnalysisServices/servers",
"Microsoft.ApiManagement/service",
"Microsoft.Network/applicationGateways",
"Microsoft.Automation/automationAccounts",
"Microsoft.ContainerInstance/containerGroups",
"Microsoft.ContainerRegistry/registries",
"Microsoft.ContainerService/managedClusters",
"Microsoft.Batch/batchAccounts",
"Microsoft.Cdn/profiles/endpoints",
"Microsoft.CognitiveServices/accounts",
"Microsoft.DocumentDB/databaseAccounts",
"Microsoft.DataFactory/factories",
"Microsoft.DataLakeAnalytics/accounts",
"Microsoft.DataLakeStore/accounts",
"Microsoft.EventGrid/eventSubscriptions",
"Microsoft.EventGrid/topics",
"Microsoft.EventHub/namespaces",
"Microsoft.Network/expressRouteCircuits",
"Microsoft.Network/azureFirewalls",
"Microsoft.HDInsight/clusters",
"Microsoft.Devices/IotHubs",
"Microsoft.KeyVault/vaults",
"Microsoft.Network/loadBalancers",
"Microsoft.Logic/integrationAccounts",
"Microsoft.Logic/workflows",
"Microsoft.DBforMySQL/servers",
"Microsoft.Network/networkInterfaces",
"Microsoft.Network/networkSecurityGroups",
"Microsoft.DBforPostgreSQL/servers",
"Microsoft.PowerBIDedicated/capacities",
"Microsoft.Network/publicIPAddresses",
"Microsoft.RecoveryServices/vaults",
"Microsoft.Cache/redis",
"Microsoft.Relay/namespaces",
"Microsoft.Search/searchServices",
"Microsoft.ServiceBus/namespaces",
"Microsoft.SignalRService/SignalR",
"Microsoft.Sql/servers/databases",
"Microsoft.Sql/servers/elasticPools",
"Microsoft.StreamAnalytics/streamingjobs",
"Microsoft.TimeSeriesInsights/environments",
"Microsoft.Network/trafficManagerProfiles",
"Microsoft.Compute/virtualMachines",
"Microsoft.Compute/virtualMachineScaleSets",
"Microsoft.Network/virtualNetworks",
"Microsoft.Network/virtualNetworkGateways"
]
},
"minimumTLSVersionForWindowsServers": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Minimum TLS version for Windows web servers",
"description": "The minimum TLS protocol version that should be enabled on Windows web servers."
},
"allowedValues": [
"1.2"
],
"defaultValue": "1.2"
}
},
"policyDefinitions": [
{
"policyDefinitionReferenceId": "adaptiveNetworkHardeningRecommendationsShouldBeAppliedOnInternetFacingVirtualMachines",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/08e6af2d-db70-460a-bfe9-d5bd474ba9d6",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.5"
]
},
{
"policyDefinitionReferenceId": "identityDesignateMoreThanOneOwnerMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/09024ccc-0c5f-475e-9457-b7c0d9ed487b",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.4"
]
},
{
"policyDefinitionReferenceId": "diskEncryptionMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/0961003e-5a0a-4549-abde-af6a37f2724d",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.16"
]
},
{
"policyDefinitionReferenceId": "emailNotificationToSubscriptionOwnerHighSeverityAlertsEnabled",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/0b15565f-aa9e-48ba-8619-45960f2c314d",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.6"
]
},
{
"policyDefinitionReferenceId": "functionAppDisableRemoteDebuggingMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/0e60b895-3786-45da-8377-9c6b4b6ac5f9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12"
]
},
{
"policyDefinitionReferenceId": "AdministratorsGroupInsideWindowsVMsExcludesTheSpecifiedMembers",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/69bf4abd-ca1e-4cf6-8b5a-762d42e61d4f",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
},
"membersToExclude": {
"value": "[parameters('membersToExcludeInLocalAdministratorsGroup')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.4"
]
},
{
"policyDefinitionReferenceId": "sqlDbEncryptionMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/17k78e20-9358-41c9-923c-fb736d382a12",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.16"
]
},
{
"policyDefinitionReferenceId": "1bc1795ed44a4d489b3b6fff0fd5f9ba",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/1bc1795e-d44a-4d48-9b3b-6fff0fd5f9ba",
"parameters": {
"phpLatestVersion": {
"value": "[parameters('pHPLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "diagnosticsLogsInRedisCacheMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/22bee202-a82f-4305-9a2a-6d7f44d4dedb",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "Prerequisite_AddSystemIdentityWhenNone",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/3cf2ab00-13f1-4d0c-8971-2ac904541a7e",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.2",
"NIST_SP_800-171_R2_3.5.7",
"NIST_SP_800-171_R2_3.5.8",
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12",
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "Prerequisite_AddSystemIdentityWhenUser",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/497dff13-db2a-4c0f-8603-28fa3b331ab6",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.2",
"NIST_SP_800-171_R2_3.5.7",
"NIST_SP_800-171_R2_3.5.8",
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12",
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "Prerequisite_DeployExtensionWindows",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/385f5831-96d4-41db-9a3c-cd3af78aaae6",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.2",
"NIST_SP_800-171_R2_3.5.7",
"NIST_SP_800-171_R2_3.5.8",
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12",
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "Prerequisite_DeployExtensionLinux",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/1221c620-d201-468c-81e7-2817e6107e84",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.2",
"NIST_SP_800-171_R2_3.5.7",
"NIST_SP_800-171_R2_3.5.8",
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12",
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "AuditWindowsVMsThatDoNotRestrictTheMinimumPasswordLengthTo14Characters",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/a2d0e922-65d0-40c4-8f87-ea6da2d307a2",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.7"
]
},
{
"policyDefinitionReferenceId": "vmssEndpointProtectionMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/26a828e1-e88f-464e-bbb3-c134a282b9de",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.2"
]
},
{
"policyDefinitionReferenceId": "logAnalyticsOSImageAudit",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/32133ab0-ee4b-4b44-98d6-042180979d50",
"parameters": {
"listOfImageIdToInclude_windows": {
"value": "[parameters('windowsImagesToAddToLogAgentAuditScope')]"
},
"listOfImageIdToInclude_linux": {
"value": "[parameters('linuxImagesToAddToLogAgentAuditScope')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2"
]
},
{
"policyDefinitionReferenceId": "previewAuditLinuxVmAccountsWithNoPasswords",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f6ec09a3-78bf-4f8f-99dc-6c77182d0f99",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.2",
"NIST_SP_800-171_R2_3.5.7"
]
},
{
"policyDefinitionReferenceId": "disableUnrestrictedNetworkToStorageAccountMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/34c877ad-507e-4c82-993e-3452a6e0ad3c",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12",
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.5"
]
},
{
"policyDefinitionReferenceId": "vmssOsVulnerabilitiesMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/3c735d8a-a4ba-4a3a-b7cf-db7754cf57f4",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "secureTransferToStorageAccountMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/404c3081-a854-4457-ae30-26a93ef643f9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "adaptiveApplicationControlsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/47a6b606-51aa-4496-8bb7-64b11cf66adc",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.4.7",
"NIST_SP_800-171_R2_3.4.8",
"NIST_SP_800-171_R2_3.4.9"
]
},
{
"policyDefinitionReferenceId": "496223c3ad654ecd878abae78737e9ed",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/496223c3-ad65-4ecd-878a-bae78737e9ed",
"parameters": {
"javaLatestVersion": {
"value": "[parameters('javaLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "identityDesignateLessThanOwnersMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/4f11b553-d42e-4e3a-89be-32ca364cad4c",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.4"
]
},
{
"policyDefinitionReferenceId": "securityContactEmailAddressForSubscription",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/4f4f78b8-e367-4b10-a341-d9a4ad5cf1c7",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.6"
]
},
{
"policyDefinitionReferenceId": "webAppRestrictCORSAccessMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5744710e-cc2f-4ee8-8809-3b11e89f4bc9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.3"
]
},
{
"policyDefinitionReferenceId": "logAnalyticsOSImageVMSSAudit",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5c3bc7b8-a64c-4e08-a9cd-7ff0f31e1138",
"parameters": {
"listOfImageIdToInclude_windows": {
"value": "[parameters('windowsImagesToAddToLogAgentAuditScope')]"
},
"listOfImageIdToInclude_linux": {
"value": "[parameters('linuxImagesToAddToLogAgentAuditScope')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2"
]
},
{
"policyDefinitionReferenceId": "identityRemoveExternalAccountWithWritePermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5c607a2e-c700-4744-8254-d77e7c9eb5e4",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1"
]
},
{
"policyDefinitionReferenceId": "identityRemoveExternalAccountWithReadPermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5f76cf89-fbf2-47fd-a3f4-b891fa780b60",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1"
]
},
{
"policyDefinitionReferenceId": "identityRemoveDeprecatedAccountMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/6b1cbf55-e8b6-442f-ba4c-7246b6381474",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1"
]
},
{
"policyDefinitionReferenceId": "functionAppEnforceHttpsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/6d555dd1-86f2-4f1c-8ed7-5abae7c6cbab",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "7008174afd104ef0817efc820a951d73",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/7008174a-fd10-4ef0-817e-fc820a951d73",
"parameters": {
"linuxPythonLatestVersion": {
"value": "[parameters('linuxPythonLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "7238174afd104ef0817efc820a951d73",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/7238174a-fd10-4ef0-817e-fc820a951d73",
"parameters": {
"linuxPythonLatestVersion": {
"value": "[parameters('linuxPythonLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "7261b8988a844db89e0418527132abb3",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/7261b898-8a84-4db8-9e04-18527132abb3",
"parameters": {
"phpLatestVersion": {
"value": "[parameters('pHPLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "previewAuditWindowsVmShouldNotAllowPrevious24Passwords",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5b054a0d-39e2-4d53-bea3-9734cad2c69b",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.8"
]
},
{
"policyDefinitionReferenceId": "74c3584dafae46f7a20a6f8adba71a16",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/74c3584d-afae-46f7-a20a-6f8adba71a16",
"parameters": {
"linuxPythonLatestVersion": {
"value": "[parameters('linuxPythonLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "vulnerabilityAssessmentMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/501541f7-f7e7-4cd6-868c-4190fdad3ac9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "previewAuditWindowsVmEnforcesPasswordComplexityRequirements",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/bf16e0bb-31e1-4646-8202-60a235cc7e74",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.7"
]
},
{
"policyDefinitionReferenceId": "7f89b1eb583c429a8828af049802c1d9",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/7f89b1eb-583c-429a-8828-af049802c1d9",
"parameters": {
"listOfResourceTypes": {
"value": "[parameters('listOfResourceTypesForDiagnosticLogs')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2",
"NIST_SP_800-171_R2_3.3.4"
]
},
{
"policyDefinitionReferenceId": "systemUpdatesMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/86b3d65f-7626-441e-b690-81a8b71cff60",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "88999f4c376a45c8bcb34058f713cf39",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/88999f4c-376a-45c8-bcb3-4058f713cf39",
"parameters": {
"javaLatestVersion": {
"value": "[parameters('javaLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "ensureHTTPVersionLatestForWebApp",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/8c122334-9d20-4eb8-89ea-ac9a705b74ae",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "apiAppRequireLatestTlsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/8cb6aa8b-9e41-4f4e-aa25-089a7ac2581e",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "AuditWindowsVMsThatDoNotStorePasswordsUsingReversibleEncryption",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/da0f98fe-a24b-4ad5-af69-bd0400233661",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "identityEnableMFAForWritePermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/9297c21d-2ed6-4474-b48f-163f75654ce3",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.1",
"NIST_SP_800-171_R2_3.5.3"
]
},
{
"policyDefinitionReferenceId": "AdministratorsGroupInsideWindowsVMsIncludesTheSpecifiedMembers",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/30f71ea1-ac77-4f26-9fc5-2d926bbd4ba7",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
},
"membersToInclude": {
"value": "[parameters('membersToIncludeInLocalAdministratorsGroup')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.4"
]
},
{
"policyDefinitionReferenceId": "ensureHTTPVersionLatestForAPIApp",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/991310cd-e9f3-47bc-b7b6-f57b557d07db",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "anitmalwareRequiredForWindowsServers",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/9b597639-28e4-48eb-b506-56b05d366257",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.2"
]
},
{
"policyDefinitionReferenceId": "9d0b6ea493e24578bf2f6bb17d22b4bc",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/9d0b6ea4-93e2-4578-bf2f-6bb17d22b4bc",
"parameters": {
"javaLatestVersion": {
"value": "[parameters('javaLatestVersionForAppServices')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "nextGenerationFirewallMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/9daedab3-fb2d-461e-b861-71790eead4f6",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.5"
]
},
{
"policyDefinitionReferenceId": "webAppEnforceHttpsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/a4af4a39-4135-47fb-b175-47fbdf85311d",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "sqlServerAuditingMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/a6fb4358-5bf4-4ad7-ba82-2cd2f41ce5e9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2",
"NIST_SP_800-171_R2_3.3.4"
]
},
{
"policyDefinitionReferenceId": "theLogAnalyticsAgentShouldBeInstalledOnVirtualMachines",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/a70ca396-0a34-413a-88e1-b956c1e683be",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2"
]
},
{
"policyDefinitionReferenceId": "identityEnableMFAForOwnerPermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/aa633080-8b72-40c4-a2d7-d00c03e80bed",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.1",
"NIST_SP_800-171_R2_3.5.3"
]
},
{
"policyDefinitionReferenceId": "advancedDataSecurityShouldBeEnabledOnYourSQLServers",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/abfb4388-5bf4-4ad7-ba82-2cd2f41ceae9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2",
"NIST_SP_800-171_R2_3.3.4",
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.13.16",
"NIST_SP_800-171_R2_3.14.6"
]
},
{
"policyDefinitionReferenceId": "advancedDataSecurityShouldBeEnabledOnYourSQLManagedInstances",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/abfb7388-5bf4-4ad7-ba99-2cd2f41cebb9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2",
"NIST_SP_800-171_R2_3.3.4",
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.13.16",
"NIST_SP_800-171_R2_3.14.6"
]
},
{
"policyDefinitionReferenceId": "endpointProtectionMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/af6cd1bd-1635-48cb-bde7-5b15693900b9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.2"
]
},
{
"policyDefinitionReferenceId": "auditWindowsTLS",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5752e6d6-1206-46d8-8ab1-ecc2f71a8112",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
},
"minimumTLSVersion": {
"value": "[parameters('minimumTLSVersionForWindowsServers')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "networkWatcherShouldBeEnabled",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/b6e2945c-0b7b-40f5-9233-7a5323b5cdc6",
"parameters": {
"listOfLocations": {
"value": "[parameters('listOfLocationsForNetworkWatcher')]"
},
"resourceGroupName": {
"value": "[parameters('NetworkWatcherResourceGroupName')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.6"
]
},
{
"policyDefinitionReferenceId": "apiAppEnforceHttpsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/b7ddfbdc-1260-477d-91fd-98bd9be789a6",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.13.8"
]
},
{
"policyDefinitionReferenceId": "vmssSystemUpdatesMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/c3f317a7-a95c-4547-b7e7-11017ebdf2fe",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "webAppDisableRemoteDebuggingMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/cb510bfd-1cba-4d9f-a230-cb0976f4bb71",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12"
]
},
{
"policyDefinitionReferenceId": "systemConfigurationsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e1e5fd5d-3e4c-4ce1-8661-7d1873ae6b15",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "ensureHTTPVersionLatestForFunctionApp",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e2c1c086-2d84-4019-bff3-c44ccd95113c",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "identityEnableMFAForReadPermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e3576e28-8b17-4677-84c3-db2990658d64",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.3"
]
},
{
"policyDefinitionReferenceId": "containerBenchmarkMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e8cbc669-f12d-49eb-93e7-9273119e9933",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.11.2"
]
},
{
"policyDefinitionReferenceId": "apiAppDisableRemoteDebuggingMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e9c8d085-d9cc-4b17-9cdc-059f1f01f19e",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12"
]
},
{
"policyDefinitionReferenceId": "identityRemoveDeprecatedAccountWithOwnerPermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/ebb62a0c-3560-49e1-89ed-27e074e9f8ad",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1"
]
},
{
"policyDefinitionReferenceId": "previewAuditLinuxVmAllowingRemoteConnectionsFromAccountsWithNoPasswords",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/ea53dbee-c6c9-4f0e-9f9e-de0039b78023",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1",
"NIST_SP_800-171_R2_3.1.12"
]
},
{
"policyDefinitionReferenceId": "theLogAnalyticsAgentShouldBeInstalledOnVirtualMachineScaleSets",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/efbde977-ba53-4479-b8e9-10b957924fbf",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2"
]
},
{
"policyDefinitionReferenceId": "webAppRequireLatestTlsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f0e6e85b-9b9f-4a4b-b67b-f730d42f1b0b",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "previewAuditLinuxVmPasswdFilePermissions",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/e6955644-301c-44b5-a4c4-528577de6861",
"parameters": {
"IncludeArcMachines": {
"value": "[parameters('IncludeArcMachines')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.5.10"
]
},
{
"policyDefinitionReferenceId": "previewAuditLogAnalyticsWorkspaceForVmReportMismatch",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f47b5582-33ec-4c5c-87c0-b010a6b2e917",
"parameters": {
"logAnalyticsWorkspaceId": {
"value": "[parameters('logAnalyticsWorkspaceIDForVMAgents')]"
}
},
"groupNames": [
"NIST_SP_800-171_R2_3.3.1",
"NIST_SP_800-171_R2_3.3.2"
]
},
{
"policyDefinitionReferenceId": "networkSecurityGroupsOnVirtualMachinesMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f6de0be7-9a8a-4b8a-b349-43cf02d22f7c",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.5"
]
},
{
"policyDefinitionReferenceId": "identityRemoveExternalAccountWithOwnerPermissionsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f8456c1c-aa66-4dfb-861a-25d127b775c9",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.1.1"
]
},
{
"policyDefinitionReferenceId": "functionAppRequireLatestTlsMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/f9d614c5-c173-4d56-95a7-b4437057d193",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.13.1",
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "kubernetesServiceVersionUpToDateMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/fb893a29-21bb-418c-a157-e99480ec364c",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.14.1"
]
},
{
"policyDefinitionReferenceId": "sqlDbVulnerabilityAssesmentMonitoring",
"policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/feedbf84-6b99-488c-acc2-71c829aa5ffc",
"parameters": {
},
"groupNames": [
"NIST_SP_800-171_R2_3.11.2",
"NIST_SP_800-171_R2_3.14.1"
]
}
],
"policyDefinitionGroups": [
{
"name": "NIST_SP_800-171_R2_3.1.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.1"
},
{
"name": "NIST_SP_800-171_R2_3.1.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.2"
},
{
"name": "NIST_SP_800-171_R2_3.1.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.3"
},
{
"name": "NIST_SP_800-171_R2_3.1.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.4"
},
{
"name": "NIST_SP_800-171_R2_3.1.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.5"
},
{
"name": "NIST_SP_800-171_R2_3.1.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.6"
},
{
"name": "NIST_SP_800-171_R2_3.1.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.7"
},
{
"name": "NIST_SP_800-171_R2_3.1.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.8"
},
{
"name": "NIST_SP_800-171_R2_3.1.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.9"
},
{
"name": "NIST_SP_800-171_R2_3.1.10",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.10"
},
{
"name": "NIST_SP_800-171_R2_3.1.11",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.11"
},
{
"name": "NIST_SP_800-171_R2_3.1.12",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.12"
},
{
"name": "NIST_SP_800-171_R2_3.1.13",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.13"
},
{
"name": "NIST_SP_800-171_R2_3.1.14",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.14"
},
{
"name": "NIST_SP_800-171_R2_3.1.15",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.15"
},
{
"name": "NIST_SP_800-171_R2_3.1.16",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.16"
},
{
"name": "NIST_SP_800-171_R2_3.1.17",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.17"
},
{
"name": "NIST_SP_800-171_R2_3.1.18",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.18"
},
{
"name": "NIST_SP_800-171_R2_3.1.19",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.19"
},
{
"name": "NIST_SP_800-171_R2_3.1.20",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.20"
},
{
"name": "NIST_SP_800-171_R2_3.1.21",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.21"
},
{
"name": "NIST_SP_800-171_R2_3.1.22",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.1.22"
},
{
"name": "NIST_SP_800-171_R2_3.2.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.2.1"
},
{
"name": "NIST_SP_800-171_R2_3.2.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.2.2"
},
{
"name": "NIST_SP_800-171_R2_3.2.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.2.3"
},
{
"name": "NIST_SP_800-171_R2_3.3.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.1"
},
{
"name": "NIST_SP_800-171_R2_3.3.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.2"
},
{
"name": "NIST_SP_800-171_R2_3.3.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.3"
},
{
"name": "NIST_SP_800-171_R2_3.3.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.4"
},
{
"name": "NIST_SP_800-171_R2_3.3.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.5"
},
{
"name": "NIST_SP_800-171_R2_3.3.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.6"
},
{
"name": "NIST_SP_800-171_R2_3.3.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.7"
},
{
"name": "NIST_SP_800-171_R2_3.3.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.8"
},
{
"name": "NIST_SP_800-171_R2_3.3.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.3.9"
},
{
"name": "NIST_SP_800-171_R2_3.4.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.1"
},
{
"name": "NIST_SP_800-171_R2_3.4.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.2"
},
{
"name": "NIST_SP_800-171_R2_3.4.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.3"
},
{
"name": "NIST_SP_800-171_R2_3.4.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.4"
},
{
"name": "NIST_SP_800-171_R2_3.4.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.5"
},
{
"name": "NIST_SP_800-171_R2_3.4.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.6"
},
{
"name": "NIST_SP_800-171_R2_3.4.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.7"
},
{
"name": "NIST_SP_800-171_R2_3.4.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.8"
},
{
"name": "NIST_SP_800-171_R2_3.4.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.4.9"
},
{
"name": "NIST_SP_800-171_R2_3.5.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.1"
},
{
"name": "NIST_SP_800-171_R2_3.5.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.2"
},
{
"name": "NIST_SP_800-171_R2_3.5.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.3"
},
{
"name": "NIST_SP_800-171_R2_3.5.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.4"
},
{
"name": "NIST_SP_800-171_R2_3.5.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.5"
},
{
"name": "NIST_SP_800-171_R2_3.5.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.6"
},
{
"name": "NIST_SP_800-171_R2_3.5.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.7"
},
{
"name": "NIST_SP_800-171_R2_3.5.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.8"
},
{
"name": "NIST_SP_800-171_R2_3.5.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.9"
},
{
"name": "NIST_SP_800-171_R2_3.5.10",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.10"
},
{
"name": "NIST_SP_800-171_R2_3.5.11",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.5.11"
},
{
"name": "NIST_SP_800-171_R2_3.6.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.6.1"
},
{
"name": "NIST_SP_800-171_R2_3.6.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.6.2"
},
{
"name": "NIST_SP_800-171_R2_3.6.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.6.3"
},
{
"name": "NIST_SP_800-171_R2_3.7.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.1"
},
{
"name": "NIST_SP_800-171_R2_3.7.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.2"
},
{
"name": "NIST_SP_800-171_R2_3.7.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.3"
},
{
"name": "NIST_SP_800-171_R2_3.7.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.4"
},
{
"name": "NIST_SP_800-171_R2_3.7.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.5"
},
{
"name": "NIST_SP_800-171_R2_3.7.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.7.6"
},
{
"name": "NIST_SP_800-171_R2_3.8.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.1"
},
{
"name": "NIST_SP_800-171_R2_3.8.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.2"
},
{
"name": "NIST_SP_800-171_R2_3.8.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.3"
},
{
"name": "NIST_SP_800-171_R2_3.8.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.4"
},
{
"name": "NIST_SP_800-171_R2_3.8.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.5"
},
{
"name": "NIST_SP_800-171_R2_3.8.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.6"
},
{
"name": "NIST_SP_800-171_R2_3.8.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.7"
},
{
"name": "NIST_SP_800-171_R2_3.8.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.8"
},
{
"name": "NIST_SP_800-171_R2_3.8.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.8.9"
},
{
"name": "NIST_SP_800-171_R2_3.9.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.9.1"
},
{
"name": "NIST_SP_800-171_R2_3.9.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.9.2"
},
{
"name": "NIST_SP_800-171_R2_3.10.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.1"
},
{
"name": "NIST_SP_800-171_R2_3.10.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.2"
},
{
"name": "NIST_SP_800-171_R2_3.10.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.3"
},
{
"name": "NIST_SP_800-171_R2_3.10.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.4"
},
{
"name": "NIST_SP_800-171_R2_3.10.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.5"
},
{
"name": "NIST_SP_800-171_R2_3.10.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.10.6"
},
{
"name": "NIST_SP_800-171_R2_3.11.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.11.1"
},
{
"name": "NIST_SP_800-171_R2_3.11.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.11.2"
},
{
"name": "NIST_SP_800-171_R2_3.11.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.11.3"
},
{
"name": "NIST_SP_800-171_R2_3.12.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.12.1"
},
{
"name": "NIST_SP_800-171_R2_3.12.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.12.2"
},
{
"name": "NIST_SP_800-171_R2_3.12.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.12.3"
},
{
"name": "NIST_SP_800-171_R2_3.12.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.12.4"
},
{
"name": "NIST_SP_800-171_R2_3.13.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.1"
},
{
"name": "NIST_SP_800-171_R2_3.13.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.2"
},
{
"name": "NIST_SP_800-171_R2_3.13.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.3"
},
{
"name": "NIST_SP_800-171_R2_3.13.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.4"
},
{
"name": "NIST_SP_800-171_R2_3.13.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.5"
},
{
"name": "NIST_SP_800-171_R2_3.13.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.6"
},
{
"name": "NIST_SP_800-171_R2_3.13.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.7"
},
{
"name": "NIST_SP_800-171_R2_3.13.8",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.8"
},
{
"name": "NIST_SP_800-171_R2_3.13.9",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.9"
},
{
"name": "NIST_SP_800-171_R2_3.13.10",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.10"
},
{
"name": "NIST_SP_800-171_R2_3.13.11",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.11"
},
{
"name": "NIST_SP_800-171_R2_3.13.12",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.12"
},
{
"name": "NIST_SP_800-171_R2_3.13.13",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.13"
},
{
"name": "NIST_SP_800-171_R2_3.13.14",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.14"
},
{
"name": "NIST_SP_800-171_R2_3.13.15",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.15"
},
{
"name": "NIST_SP_800-171_R2_3.13.16",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.13.16"
},
{
"name": "NIST_SP_800-171_R2_3.14.1",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.1"
},
{
"name": "NIST_SP_800-171_R2_3.14.2",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.2"
},
{
"name": "NIST_SP_800-171_R2_3.14.3",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.3"
},
{
"name": "NIST_SP_800-171_R2_3.14.4",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.4"
},
{
"name": "NIST_SP_800-171_R2_3.14.5",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.5"
},
{
"name": "NIST_SP_800-171_R2_3.14.6",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.6"
},
{
"name": "NIST_SP_800-171_R2_3.14.7",
"additionalMetadataId": "/providers/Microsoft.PolicyInsights/policyMetadata/NIST_SP_800-171_R2_3.14.7"
}
]
},
"id": "/providers/Microsoft.Authorization/policySetDefinitions/03055927-78bd-4236-86c0-f36125a10dc9",
"type": "Microsoft.Authorization/policySetDefinitions",
"name": "03055927-78bd-4236-86c0-f36125a10dc9"
}
|