| Policy DisplayName |
Policy Id |
Category |
Version |
Versioning |
Effect |
Roles# |
Roles |
State |
policy in AzUSGov |
| [Preview]: ChangeTracking extension should be installed on your Linux Arc machine |
fc47609f-4d9b-4aed-806b-446816cc63a3 |
Security Center |
1.0.0-preview |
1x
1.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: ChangeTracking extension should be installed on your Linux virtual machine |
8893442c-e7cb-4637-bab8-299a5d4ed96a |
Security Center |
2.0.0-preview |
1x
2.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: ChangeTracking extension should be installed on your Linux virtual machine scale sets |
e71c1e29-9c76-4532-8c4b-cb0573b0014c |
Security Center |
2.0.0-preview |
1x
2.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: ChangeTracking extension should be installed on your Windows Arc machine |
a7f5e735-d212-4c32-9229-d12bffbc7e00 |
Security Center |
1.0.0-preview |
1x
1.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: ChangeTracking extension should be installed on your Windows virtual machine |
221aac80-54d8-484b-83d7-24f4feac2ce0 |
Security Center |
2.0.0-preview |
1x
2.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: ChangeTracking extension should be installed on your Windows virtual machine scale sets |
4bb303db-d051-4099-95d2-e3e1428a4d00 |
Security Center |
2.0.0-preview |
1x
2.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: Guest Attestation extension should be installed on supported Linux virtual machines |
672fe5a1-2fcd-42d7-b85d-902b6e28c6ff |
Security Center |
6.0.0-preview |
1x
6.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
true |
| [Preview]: Guest Attestation extension should be installed on supported Windows virtual machines |
1cb4d9c2-f88f-4069-bee0-dba239a57b09 |
Security Center |
4.0.0-preview |
1x
4.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
true |
| [Preview]: Linux virtual machines should use only signed and trusted boot components |
13a6c84f-49a5-410a-b5df-5b880c3fe009 |
Security Center |
1.0.0-preview |
1x
1.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
Preview |
unknown |
| [Preview]: Secure Boot should be enabled on supported Windows virtual machines |
97566dd7-78ae-4997-8b36-1c7bfe0d8121 |
Security Center |
4.0.0-preview |
1x
4.0.0-preview |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
Preview |
true |
| [Preview]: vTPM should be enabled on supported virtual machines |
1c30f9cd-b84c-49cc-aa2c-9288447cc3b3 |
Security Center |
2.0.0-preview |
1x
2.0.0-preview |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
Preview |
true |
| Add system-assigned managed identity to enable Guest Configuration assignments on virtual machines with no identities |
3cf2ab00-13f1-4d0c-8971-2ac904541a7e |
Guest Configuration |
4.1.0 |
2x
4.1.0, 4.0.0 |
Fixed
modify |
1 |
Contributor |
GA |
true |
| Add system-assigned managed identity to enable Guest Configuration assignments on VMs with a user-assigned identity |
497dff13-db2a-4c0f-8603-28fa3b331ab6 |
Guest Configuration |
4.1.0 |
2x
4.1.0, 4.0.0 |
Fixed
modify |
1 |
Contributor |
GA |
true |
| Adhere to retention periods defined |
1ecb79d7-1a06-9a3b-3be8-f434d04d1ec1 |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| Alert personnel of information spillage |
9622aaa9-5c49-40e2-5bf8-660b7cd23deb |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| All network ports should be restricted on network security groups associated to your virtual machine |
9daedab3-fb2d-461e-b861-71790eead4f6 |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| API Management should disable public network access to the service configuration endpoints |
df73bd95-24da-4a4f-96b9-4e8b94b402bd |
API Management |
1.0.1 |
1x
1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
unknown |
| API Management subscriptions should not be scoped to all APIs |
3aa03346-d8c5-4994-a5bc-7652c2a2aef1 |
API Management |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Disabled, Deny |
0 |
|
GA |
unknown |
| App Service apps should only be accessible over HTTPS |
a4af4a39-4135-47fb-b175-47fbdf85311d |
App Service |
4.0.0 |
1x
4.0.0 |
Default
Audit
Allowed
Audit, Disabled, Deny |
0 |
|
GA |
true |
| Audit Windows machines that do not store passwords using reversible encryption |
da0f98fe-a24b-4ad5-af69-bd0400233661 |
Guest Configuration |
2.0.0 |
1x
2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Automation account variables should be encrypted |
3657f5a0-770e-44a3-b44e-9431ba1e9735 |
Automation |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Azure AI Services resources should restrict network access |
037eea7a-bd0a-46c5-9a66-03aea78705d3 |
Azure Ai Services |
3.2.0 |
3x
3.2.0, 3.1.0, 3.0.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Azure Backup should be enabled for Virtual Machines |
013e242c-8828-4970-87b3-ab247555486d |
Backup |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure Defender for Azure SQL Database servers should be enabled |
7fe3b40f-802b-4cdd-8bd4-fd799c948cc2 |
Security Center |
1.0.2 |
1x
1.0.2 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure Kubernetes Service clusters should have Defender profile enabled |
a1840de2-8088-4ea8-b153-b4c723e9cb01 |
Kubernetes |
2.0.1 |
1x
2.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure Machine Learning Computes should have local authentication methods disabled |
e96a9a5f-07ca-471b-9bc5-6a0f33cbd68f |
Machine Learning |
2.1.0 |
2x
2.1.0, 2.0.1 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Blocked accounts with owner permissions on Azure resources should be removed |
0cfea604-3201-4e14-88fc-fae4c427a6c5 |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Blocked accounts with read and write permissions on Azure resources should be removed |
8d7e1fde-fe26-4b5f-8108-f8e432cbc2be |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Conduct capacity planning |
33602e78-35e3-4f06-17fb-13dd887448e4 |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| Dependency agent should be enabled for listed virtual machine images |
11ac78e3-31bc-4f0c-8434-37ab963cea07 |
Monitoring |
2.0.0 |
1x
2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Dependency agent should be enabled in virtual machine scale sets for listed virtual machine images |
e2dd799a-a932-4e9d-ac17-d473bc3c6c10 |
Monitoring |
2.0.0 |
1x
2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Deploy the Windows Guest Configuration extension to enable Guest Configuration assignments on Windows VMs |
385f5831-96d4-41db-9a3c-cd3af78aaae6 |
Guest Configuration |
1.2.0 |
1x
1.2.0 |
Fixed
deployIfNotExists |
1 |
Contributor |
GA |
true |
| Develop audit and accountability policies and procedures |
a28323fe-276d-3787-32d2-cef6395764c4 |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| Diagnostic logs in Azure AI services resources should be enabled |
1b4d1c4e-934c-4703-944c-27c82c06bebb |
Azure Ai Services |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Email notification for high severity alerts should be enabled |
6e2593d9-add6-4083-9c9b-4b7d2188c899 |
Security Center |
1.2.0 |
3x
1.2.0, 1.1.0, 1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Email notification to subscription owner for high severity alerts should be enabled |
0b15565f-aa9e-48ba-8619-45960f2c314d |
Security Center |
2.1.0 |
2x
2.1.0, 2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Function apps should only be accessible over HTTPS |
6d555dd1-86f2-4f1c-8ed7-5abae7c6cbab |
App Service |
5.0.0 |
1x
5.0.0 |
Default
Audit
Allowed
Audit, Disabled, Deny |
0 |
|
GA |
true |
| Geo-redundant backup should be enabled for Azure Database for MySQL |
82339799-d096-41ae-8538-b108becf0970 |
SQL |
1.0.1 |
1x
1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Geo-redundant backup should be enabled for Azure Database for PostgreSQL |
48af4db5-9b8b-401c-8e74-076be876a430 |
SQL |
1.0.1 |
1x
1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Govern and monitor audit processing activities |
333b4ada-4a02-0648-3d4d-d812974f1bb2 |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| Guest accounts with owner permissions on Azure resources should be removed |
339353f6-2387-4a45-abe4-7f529d121046 |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Guest accounts with read permissions on Azure resources should be removed |
e9ac8f8e-ce22-4355-8f04-99b911d6be52 |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Guest accounts with write permissions on Azure resources should be removed |
94e1c2ac-cbbe-4cac-a2b5-389c812dee87 |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Internet-facing virtual machines should be protected with network security groups |
f6de0be7-9a8a-4b8a-b349-43cf02d22f7c |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| IP Forwarding on your virtual machine should be disabled |
bd352bd5-2853-4985-bf0d-73806b4a5744 |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Management ports of virtual machines should be protected with just-in-time network access control |
b0f33259-77d7-4c9e-aac6-3aabcfae693c |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Management ports should be closed on your virtual machines |
22730e10-96f6-4aac-ad84-9383d35b5917 |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Microsoft Defender for Containers should be enabled |
1c988dd6-ade4-430f-a608-2a3e5b0a6d38 |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Microsoft Defender for SQL status should be protected for Arc-enabled SQL Servers |
938c4981-c2c9-4168-9cd6-972b8675f906 |
Security Center |
1.1.0 |
2x
1.1.0, 1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
unknown |
| Microsoft Managed Control 1000 - Access Control Policy And Procedures Requirements |
2ef3cc79-733e-48ed-ab6f-7bf439e9b406 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1001 - Access Control Policy And Procedures Requirements |
4e26f8c3-4bf3-4191-b8fc-d888805101b7 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1004 - Account Management |
c17822dc-736f-4eb4-a97d-e6be662ff835 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1005 - Account Management |
5b626abc-26d4-4e22-9de8-3831818526b1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1008 - Account Management |
8356cfc6-507a-4d20-b818-08038011cd07 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1009 - Account Management |
b26f8610-e615-47c2-abd6-c00b2b0b503a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1010 - Account Management |
784663a8-1eb0-418a-a98c-24d19bc1bb62 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1011 - Account Management |
7e6a54f3-883f-43d5-87c4-172dfd64a1f5 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1027 - Access Enforcement |
a76ca9b0-3f4a-4192-9a38-b25e4f8ae48c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1028 - Information Flow Enforcement |
f171df5c-921b-41e9-b12b-50801c315475 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1029 - Information Flow Enforcement | Security Policy Filters |
53ac8f8e-c2b5-4d44-8a2d-058e9ced9b69 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1030 - Information Flow Enforcement | Physical / Logical Separation Of Information Flows |
d3531453-b869-4606-9122-29c1cd6e7ed1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1031 - Separation Of Duties |
6b93a801-fe25-4574-a60d-cb22acffae00 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1033 - Separation Of Duties |
48540f01-fc11-411a-b160-42807c68896e |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1057 - Permitted Actions Without Identification Or Authentication |
78255758-6d45-4bf0-a005-7016bc03b13c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1059 - Remote Access |
a29b5d9f-4953-4afe-b560-203a6410b6b4 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1062 - Remote Access | Protection Of Confidentiality / Integrity Using Encryption |
4708723f-e099-4af1-bbf9-b6df7642e444 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1067 - Wireless Access Restrictions |
5c5e54f6-0127-44d0-8b61-f31dc8dd6190 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1069 - Wireless Access Restrictions | Authentication And Encryption |
91c97b44-791e-46e9-bad7-ab7c4949edbb |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1074 - Access Control for Portable And Mobile Systems |
27a69937-af92-4198-9b86-08d355c7e59a |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1089 - Security Awareness |
ef080e67-0d1a-4f76-a0c5-fb9b0358485e |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1090 - Security Awareness |
2fb740e5-cbc7-4d10-8686-d1bf826652b1 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1091 - Security Awareness |
b23bd715-5d1c-4e5c-9759-9cbdf79ded9d |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1092 - Security Awareness | Insider Threat |
8a29d47b-8604-4667-84ef-90d203fcb305 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1093 - Role-Based Security Training |
7a0bdeeb-15f4-47e8-a1da-9f769f845fdf |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1096 - Role-Based Security Training | Practical Exercises |
420c1477-aa43-49d0-bd7e-c4abdd9addff |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1097 - Role-Based Security Training | Suspicious Communications And Anomalous System Behavior |
cf3e4836-f19e-47eb-a8cd-c3ca150452c0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1098 - Security Training Records |
84363adb-dde3-411a-9fc1-36b56737f822 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1111 - Response To Audit Processing Failures |
21de687c-f15e-4e51-bf8d-f35c8619965b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1142 - Certification, Authorization, Security Assessment Policy And Procedures |
01524fa8-4555-48ce-ba5f-c3b8dcef5147 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1152 - System Interconnections |
beff0acf-7e67-40b2-b1ca-1a0e8205cf1b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1161 - Continuous Monitoring |
e2f8f6c6-dde4-436b-a79d-bc50e129eb3a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1162 - Continuous Monitoring |
5770f3d6-8c2b-4f6f-bf0e-c8c8fc36d592 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1174 - Configuration Management Policy And Procedures |
42a9a714-8fbb-43ac-b115-ea12d2bd652f |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1176 - Baseline Configuration |
c30690a5-7bf3-467f-b0cd-ef5c7c7449cd |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1202 - Access Restrictions For Change |
40a2a83b-74f2-4c02-ae65-f460a5d2792a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1224 - Information System Component Inventory | Updates During Installations / Removals |
28cfa30b-7f72-47ce-ba3b-eed26c8d2c82 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1229 - Information System Component Inventory | No Duplicate Accounting Of Components |
03752212-103c-4ab8-a306-7e813022ca9d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1242 - Contingency Planning Policy And Procedures |
cf3b3293-667a-445e-a722-fa0b0afc0958 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1243 - Contingency Planning Policy And Procedures |
ca9a4469-d6df-4ab2-a42f-1213c396f0ec |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1246 - Contingency Plan |
398eb61e-8111-40d5-a0c9-003df28f1753 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1253 - Contingency Plan | Resume Essential Missions / Business Functions |
0afce0b3-dd9f-42bb-af28-1e4284ba8311 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1255 - Contingency Plan | Continue Essential Missions / Business Functions |
f3793f5e-937f-44f7-bfba-40647ef3efa0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1261 - Contingency Plan Testing |
65aeceb5-a59c-4cb1-8d82-9c474be5d431 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1264 - Contingency Plan Testing | Coordinate With Related Plans |
dd280d4b-50a1-42fb-a479-ece5878acf19 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1267 - Alternate Storage Site |
4e97ba1d-be5d-4953-8da4-0cccf28f4805 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1281 - Telecommunications Services | Priority Of Service Provisions |
8dc459b3-0e77-45af-8d71-cfd8c9654fe2 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1293 - Information System Backup | Separate Storage For Critical Information |
87f7cd82-2e45-4d0f-9e2f-586b0962d142 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1294 - Information System Backup | Transfer To Alternate Storage Site |
49dbe627-2c1e-438c-979e-dd7a39bbf81d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1295 - Information System Recovery And Reconstitution |
a895fbdb-204d-4302-9689-0a59dc42b3d9 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1298 - Identification And Authentication Policy And Procedures |
1dc784b5-4895-4d27-9d40-a06b032bd1ee |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1300 - User Identification And Authentication |
99deec7d-5526-472e-b07c-3645a792026a |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1301 - User Identification And Authentication | Network Access To Privileged Accounts |
b6a8e0cc-ac23-468b-abe4-a8a1cc6d7a08 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1302 - User Identification And Authentication | Network Access To Non-Privileged Accounts |
09828c65-e323-422b-9774-9d5c646124da |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1303 - User Identification And Authentication | Local Access To Privileged Accounts |
80ca0a27-918a-4604-af9e-723a27ee51e8 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1304 - User Identification And Authentication | Local Access To Non-Privileged Accounts |
6ca71be3-16cb-4d39-8b50-7f8fd5e2f11b |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1305 - User Identification And Authentication | Group Authentication |
9d9166a8-1722-4b8f-847c-2cf3f2618b3d |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1306 - User Identification And Authentication | Network Access To Privileged Accounts - Replay... |
cafc6c3c-5fc5-4c5e-a99b-a0ccb1d34eff |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1307 - User Identification And Authentication | Network Access To Non-Privileged Accounts - Replay... |
84e622c8-4bed-417c-84c6-b2fb0dd73682 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1308 - User Identification And Authentication | Remote Access - Separate Device |
81817e1c-5347-48dd-965a-40159d008229 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1309 - User Identification And Authentication | Acceptance Of Piv Credentials |
f355d62b-39a8-4ba3-abf7-90f71cb3b000 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1310 - Device Identification And Authentication |
450d7ede-823d-4931-a99d-57f6a38807dc |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1317 - Authenticator Management |
8877f519-c166-47b7-81b7-8a8eb4ff3775 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1318 - Authenticator Management |
fced5fda-3bdb-4d73-bfea-0e2c80428b66 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1319 - Authenticator Management |
66f7ae57-5560-4fc5-85c9-659f204e7a42 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1327 - Authenticator Management | Password-Based Authentication |
03188d8f-1ae5-4fe1-974d-2d7d32ef937d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1328 - Authenticator Management | Password-Based Authentication |
f5c66fdc-3d02-4034-9db5-ba57802609de |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1329 - Authenticator Management | Password-Based Authentication |
498f6234-3e20-4b6a-a880-cbd646d973bd |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1330 - Authenticator Management | Password-Based Authentication |
f75cedb2-5def-4b31-973e-b69e8c7bd031 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1332 - Authenticator Management | Password-Based Authentication |
068260be-a5e6-4b0a-a430-cd27071c226a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1335 - Authenticator Management | Pki-Based Authentication |
382016f3-d4ba-4e15-9716-55077ec4dc2a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1337 - Authenticator Management | In-Person Or Trusted Third-Party Registration |
463e5220-3f79-4e24-a63f-343e4096cd22 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1339 - Authenticator Management | Protection Of Authenticators |
367ae386-db7f-4167-b672-984ff86277c0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1341 - Authenticator Management | Multiple Information System Accounts |
34cb7e92-fe4c-4826-b51e-8cd203fa5d35 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1342 - Authenticator Management | Hardware Token-Based Authentication |
283a4e29-69d5-4c94-b99e-29acf003c899 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1345 - Cryptographic Module Authentication |
f86aa129-7c07-4aa4-bbf5-792d93ffd9ea |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1351 - Incident Response Policy And Procedures |
bcfb6683-05e5-4ce6-9723-c3fbe9896bdd |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1353 - Incident Response Training |
c785ad59-f78f-44ad-9a7f-d1202318c748 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1358 - Incident Response Testing |
effbaeef-5bf4-400d-895e-ef8cbc0e64c7 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1359 - Incident Response Testing | Coordination With Related Plans |
47bc7ea0-7d13-4f7c-a154-b903f7194253 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1360 - Incident Handling |
be5b05e7-0b82-4ebc-9eda-25e447b1a41e |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1361 - Incident Handling |
03ed3be1-7276-4452-9a5d-e4168565ac67 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1362 - Incident Handling |
5d169442-d6ef-439b-8dca-46c2c3248214 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1363 - Incident Handling | Automated Incident Handling Processes |
ea3e8156-89a1-45b1-8bd6-938abc79fdfd |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1364 - Incident Handling | Dynamic Reconfiguration |
4c615c2a-dc83-4dda-8220-abce7b50c9bc |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1365 - Incident Handling | Continuity Of Operations |
4116891d-72f7-46ee-911c-8056cc8dcbd5 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1366 - Incident Handling | Information Correlation |
06c45c30-ae44-4f0f-82be-41331da911cc |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1367 - Incident Handling | Insider Threats - Specific Capabilities |
435b2547-6374-4f87-b42d-6e8dbe6ae62a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1368 - Incident Handling | Correlation With External Organizations |
465f32da-0ace-4603-8d1b-7be5a3a702de |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1369 - Incident Monitoring |
18cc35ed-a429-486d-8d59-cb47e87304ed |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1370 - Incident Monitoring | Automated Tracking / Data Collection / Analysis |
924e1b2d-c502-478f-bfdb-a7e09a0d5c01 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1371 - Incident Reporting |
9447f354-2c85-4700-93b3-ecdc6cb6a417 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1372 - Incident Reporting |
25b96717-c912-4c00-9143-4e487f411726 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1373 - Incident Reporting | Automated Reporting |
4cca950f-c3b7-492a-8e8f-ea39663c14f9 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1374 - Incident Response Assistance |
cc5c8616-52ef-4e5e-8000-491634ed9249 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1375 - Incident Response Assistance | Automation Support For Availability Of Information / Support |
00379355-8932-4b52-b63a-3bc6daf3451a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1376 - Incident Response Assistance | Coordination With External Providers |
493a95f3-f2e3-47d0-af02-65e6d6decc2f |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1377 - Incident Response Assistance | Coordination With External Providers |
68434bd1-e14b-4031-9edb-a4adf5f84a67 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1378 - Incident Response Plan |
97fceb70-6983-42d0-9331-18ad8253184d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1381 - Incident Response Plan |
e5368258-9684-4567-8126-269f34e65eab |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1490 - Security Planning Policy And Procedures |
9e61da80-0957-4892-b70c-609d5eaafb6b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1491 - Security Planning Policy And Procedures |
1571dd40-dafc-4ef4-8f55-16eba27efc7b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1492 - System Security Plan |
7ad5f307-e045-46f7-8214-5bdb7e973737 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1503 - Information Security Architecture |
c1fa9c2f-d439-4ab9-8b83-81fb1934f81d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1529 - Third-Party Personnel Security |
d74fdc92-1cb8-4a34-9978-8556425cd14c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1536 - Risk Assessment Policy And Procedures |
6e40d9de-2ad4-4cb5-8945-23143326a502 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1537 - Risk Assessment Policy And Procedures |
b19454ca-0d70-42c0-acf5-ea1c1e5726d1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1541 - Risk Assessment |
70f6af82-7be6-44aa-9b15-8b9231b2e434 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1542 - Risk Assessment |
eab340d0-3d55-4826-a0e5-feebfeb0131d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1544 - Risk Assessment |
43ced7c9-cd53-456b-b0da-2522649a4271 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1545 - Risk Assessment |
3f4b171a-a56b-4328-8112-32cf7f947ee1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1546 - Vulnerability Scanning |
2ce1ea7e-4038-4e53-82f4-63e8859333c1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1547 - Vulnerability Scanning |
58abf9b8-c6d4-4b4b-bfb9-fe98fe295f52 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1548 - Vulnerability Scanning |
3afe6c78-6124-4d95-b85c-eb8c0c9539cb |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1549 - Vulnerability Scanning |
d6976a08-d969-4df2-bb38-29556c2eb48a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1550 - Vulnerability Scanning |
902908fb-25a8-4225-a3a5-5603c80066c9 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1551 - Vulnerability Scanning | Update Tool Capability |
5bbda922-0172-4095-89e6-5b4a0bf03af7 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1552 - Vulnerability Scanning | Update By Frequency / Prior To New Scan / When Identified |
43684572-e4f1-4642-af35-6b933bc506da |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1553 - Vulnerability Scanning | Breadth / Depth Of Coverage |
9e5225fe-cdfb-4fce-9aec-0fe20dd53b62 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1558 - Vulnerability Scanning | Correlate Scanning Information |
65592b16-4367-42c5-a26e-d371be450e17 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1559 - System And Services Acquisition Policy And Procedures |
45692294-f074-42bd-ac54-16f1a3c07554 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1560 - System And Services Acquisition Policy And Procedures |
e29e0915-5c2f-4d09-8806-048b749ad763 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1577 - Acquisitions Process | Continuous Monitoring Plan |
d922484a-8cfc-4a6b-95a4-77d6a685407f |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1578 - Acquisitions Process | Functions / Ports / Protocols / Services In Use |
45b7b644-5f91-498e-9d89-7402532d3645 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1580 - Information System Documentation |
854db8ac-6adf-42a0-bef3-b73f764f40b9 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1591 - External Information System Services | Identification Of Functions / Ports / Protocols... |
f751cdb7-fbee-406b-969b-815d367cb9b3 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1606 - Developer Security Testing And Evaluation | Threat And Vulnerability Analyses |
baa8a9a4-5bbe-4c72-98f6-a3a47ae2b1ca |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1608 - Supply Chain Protection |
b73b7b3b-677c-4a2a-b949-ad4dc4acd89f |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1615 - System And Communications Protection Policy And Procedures |
f35e02aa-0a55-49f8-8811-8abfa7e6f2c0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1616 - System And Communications Protection Policy And Procedures |
2006457a-48b3-4f7b-8d2e-1532287f9929 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1619 - Information In Shared Resources |
c722e569-cb52-45f3-a643-836547d016e1 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1622 - Boundary Protection |
ecf56554-164d-499a-8d00-206b07c27bed |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1631 - Boundary Protection | Deny By Default / Allow By Exception |
74ae9b8e-e7bb-4c9c-992f-c535282f7a2c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1635 - Boundary Protection | Host-Based Protection |
87551b5d-1deb-4d0f-86cc-9dc14cb4bf7e |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1640 - Transmission Confidentiality And Integrity |
05a289ce-6a20-4b75-a0f3-dc8601b6acd0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1641 - Transmission Confidentiality And Integrity | Cryptographic Or Alternate Physical Protection |
d39d4f68-7346-4133-8841-15318a714a24 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1643 - Cryptographic Key Establishment And Management |
6d8d492c-dd7a-46f7-a723-fa66a425b87c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1645 - Cryptographic Key Establishment And Management | Symmetric Keys |
afbd0baf-ff1a-4447-a86f-088a97347c0c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1646 - Cryptographic Key Establishment And Management | Asymmetric Keys |
506814fa-b930-4b10-894e-a45b98c40e1a |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1647 - Use of Cryptography |
791cfc15-6974-42a0-9f4c-2d4b82f4a78c |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1650 - Public Key Infrastructure Certificates |
201d3740-bd16-4baf-b4b8-7cda352228b7 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1657 - Secure Name / Address Resolution Service (Authoritative Source) |
90f01329-a100-43c2-af31-098996135d2b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1663 - Protection Of Information At Rest |
60171210-6dde-40af-a144-bf2670518bfa |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1664 - Protection Of Information At Rest | Cryptographic Protection |
a2cdf6b8-9505-4619-b579-309ba72037ac |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1667 - System And Information Integrity Policy And Procedures |
d61880dc-6e38-4f2a-a30c-3406a98f8220 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1668 - Flaw Remediation |
8fb0966e-be1d-42c3-baca-60df5c0bcc61 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1683 - Information System Monitoring |
8c79fee4-88dd-44ce-bbd4-4de88948c4f8 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1684 - Information System Monitoring |
16bfdb59-db38-47a5-88a9-2e9371a638cf |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1687 - Information System Monitoring |
7a87fc7f-301e-49f3-ba2a-4d74f424fa97 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1694 - Information System Monitoring | Analyze Communications Traffic Anomalies |
426c4ac9-ff17-49d0-acd7-a13c157081c0 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1703 - Security Alerts & Advisories |
804faf7d-b687-40f7-9f74-79e28adf4205 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1705 - Security Alerts & Advisories |
f82e3639-fa2b-4e06-a786-932d8379b972 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1706 - Security Alerts & Advisories |
f475ee0e-f560-4c9b-876b-04a77460a404 |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1707 - Security Alerts & Advisories | Automated Alerts And Advisories |
fd4a2ac8-868a-4702-a345-6c896c3361ce |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1711 - Security Functionality Verification |
b083a535-a66a-41ec-ba7f-f9498bf67cde |
Regulatory Compliance |
1.0.1 |
1x
1.0.1 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1729 - Information Security Program Plan |
f5a44e7d-77a2-474e-b2e3-4e8c42ba514b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1730 - Information Security Program Plan |
1fa50212-51a9-471b-95cf-3a23410ec9e9 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1731 - Information Security Program Plan |
59a7116d-19fd-49e9-a068-dec4460b97e5 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1733 - Senior Information Security Officer |
4152937a-1a44-401a-a179-04b44ea15f4c |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1734 - Information Security Resources |
5fd9ced5-18e8-4c09-91b7-3725680f8ade |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1739 - Information System Inventory |
74520428-3aa8-449c-938d-93f51940759e |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1740 - Information Security Measures Of Performance |
e4df5fb7-58e9-41de-9399-f043c7a931f8 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1742 - Critical Infrastructure Plan |
d461dd50-c8fb-4ccb-93bf-61f53b44e54d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1743 - Risk Management Strategy |
66a56404-7b65-4e33-b371-28d069172dd4 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1744 - Risk Management Strategy |
07458826-9325-4481-abaf-bc9ed043459d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1749 - Mission/Business Process Definition |
1c0b3710-03dc-450a-a56a-77b85e744f0d |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1807 - Governance And Privacy Program |
7cb8a3d2-a208-4b6f-95e8-e8f0bb85a7a6 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1818 - Accounting of Disclosures |
d39620a4-95c6-4d4f-8aa4-83c0c6a2c640 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1819 - Accounting of Disclosures |
c6c43097-8552-4279-8b38-7dcabff781d3 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1856 - Privacy Incident Response |
2d5600ed-575a-4723-9ff4-52d694be0a59 |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1857 - Privacy Incident Response |
fb845c34-808d-4c17-a0ce-85a530e9164b |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Microsoft Managed Control 1860 - Privacy Notice |
2234feec-08c6-4fc9-af78-df0dcc482efd |
Regulatory Compliance |
1.0.0 |
1x
1.0.0 |
Fixed
audit |
0 |
|
GA |
true |
| Non-internet-facing virtual machines should be protected with network security groups |
bb91dfba-c30d-4263-9add-9c2384e659a6 |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Only secure connections to your Azure Cache for Redis should be enabled |
22bee202-a82f-4305-9a2a-6d7f44d4dedb |
Cache |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Perform audit for configuration change control |
1282809c-9001-176b-4a81-260a085f4872 |
Regulatory Compliance |
1.1.0 |
1x
1.1.0 |
Default
Manual
Allowed
Manual, Disabled |
0 |
|
GA |
true |
| Resource logs in Azure Databricks Workspaces should be enabled |
138ff14d-b687-4faa-a81c-898c91a87fa2 |
Azure Databricks |
1.0.1 |
1x
1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Secure transfer to storage accounts should be enabled |
404c3081-a854-4457-ae30-26a93ef643f9 |
Storage |
2.0.0 |
1x
2.0.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Service Fabric clusters should have the ClusterProtectionLevel property set to EncryptAndSign |
617c02be-7f02-4efd-8836-3180d47b6c68 |
Service Fabric |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Service Fabric clusters should only use Azure Active Directory for client authentication |
b54ed75b-3e1a-44ac-a333-05ba39b99ff0 |
Service Fabric |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| SQL databases should have vulnerability findings resolved |
feedbf84-6b99-488c-acc2-71c829aa5ffc |
Security Center |
4.1.0 |
1x
4.1.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| SQL servers on machines should have vulnerability findings resolved |
6ba6d016-e7c3-4842-b8f2-4992ebc0d72d |
Security Center |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Storage accounts should restrict network access |
34c877ad-507e-4c82-993e-3452a6e0ad3c |
Storage |
1.1.1 |
1x
1.1.1 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Storage accounts should restrict network access using virtual network rules |
2a1a9cdf-e04d-429a-8416-3bfb72a1b26f |
Storage |
1.0.1 |
1x
1.0.1 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Subnets should be associated with a Network Security Group |
e71308d3-144b-4262-b144-efdc3cc90517 |
Security Center |
3.0.0 |
1x
3.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Subscriptions should have a contact email address for security issues |
4f4f78b8-e367-4b10-a341-d9a4ad5cf1c7 |
Security Center |
1.0.1 |
1x
1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| System updates should be installed on your machines (powered by Update Center) |
f85bf3e0-d513-442e-89c3-1784ad63382b |
Security Center |
1.0.1 |
2x
1.0.1, 1.0.0-preview |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Transparent Data Encryption on SQL databases should be enabled |
17k78e20-9358-41c9-923c-fb736d382a12 |
SQL |
2.0.0 |
1x
2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Virtual machines' Guest Configuration extension should be deployed with system-assigned managed identity |
d26f7642-7545-4e18-9b75-8c9bbdee3a9a |
Security Center |
1.0.1 |
1x
1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| VM Image Builder templates should use private link |
2154edb9-244f-4741-9970-660785bccdaa |
VM Image Builder |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Disabled, Deny |
0 |
|
GA |
unknown |
| Web Application Firewall (WAF) should be enabled for Application Gateway |
564feb30-bf6a-4854-b4bb-0d2d2d1e6c66 |
Network |
2.0.0 |
1x
2.0.0 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |