AzInitiativeAdvertizer

last sync: 2025-Jul-11 17:23:50 UTC

Audit machines with insecure password security settings

Azure BuiltIn Policy Initiative (PolicySet)

Source

Azure Portal

Display name

Audit machines with insecure password security settings

095e4ed9-c835-4ab6-9439-b5644362a06c

Version

1.1.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]

Category

Guest Configuration
Microsoft Learn

Description

This initiative deploys the policy requirements and audits machines with insecure password security settings. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol

Cloud environments

AzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = true

Available in AzUSGov

The PolicySet is available in AzureUSGovernment cloud. Version: '1.1.0'
Repository: Azure-Policy 095e4ed9-c835-4ab6-9439-b5644362a06c

Type

BuiltIn

Deprecated

False

Preview

False

Policy-used summary

Policy types	Policy states	Policy categories
Total Policies: 9 Builtin Policies: 9 Static Policies: 0	GA: 9	1 categories: Guest Configuration: 9

Policy-used

Policy DisplayName	Policy Id	Category	Version	Versioning	Effect	State	policy in AzUSGov
Audit Linux machines that allow remote connections from accounts without passwords	ea53dbee-c6c9-4f0e-9f9e-de0039b78023	Guest Configuration	3.1.0	2x 3.1.0, 3.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Linux machines that do not have the passwd file permissions set to 0644	e6955644-301c-44b5-a4c4-528577de6861	Guest Configuration	3.1.0	2x 3.1.0, 3.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Linux machines that have accounts without passwords	f6ec09a3-78bf-4f8f-99dc-6c77182d0f99	Guest Configuration	3.1.0	2x 3.1.0, 3.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that allow re-use of the passwords after the specified number of unique passwords	5b054a0d-39e2-4d53-bea3-9734cad2c69b	Guest Configuration	2.1.0	1x 2.1.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that do not have the maximum password age set to specified number of days	4ceb8dc2-559c-478b-a15b-733fbf1e3738	Guest Configuration	2.1.0	1x 2.1.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that do not have the minimum password age set to specified number of days	237b38db-ca4d-4259-9e47-7882441ca2c0	Guest Configuration	2.1.0	1x 2.1.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that do not have the password complexity setting enabled	bf16e0bb-31e1-4646-8202-60a235cc7e74	Guest Configuration	2.0.0	1x 2.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that do not restrict the minimum password length to specified number of characters	a2d0e922-65d0-40c4-8f87-ea6da2d307a2	Guest Configuration	2.1.0	1x 2.1.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true
Audit Windows machines that do not store passwords using reversible encryption	da0f98fe-a24b-4ad5-af69-bd0400233661	Guest Configuration	2.0.0	1x 2.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	GA	true

Roles used

No Roles used

History

Date/Time (UTC ymd) (i)	Changes
2023-04-28 17:43:07	Version change: '1.0.0' to '1.1.0'
2020-09-09 11:24:08	add Initiative 095e4ed9-c835-4ab6-9439-b5644362a06c

JSON compare

compare mode: version left: version right:

JSON

api-version=2023-04-01
EPAC