last sync: 2025-Mar-24 20:12:39 UTC

[Preview]: NIS2

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display name[Preview]: NIS2
Id32ff9e30-4725-4ca7-ba3a-904a7721ee87
Version1.0.0-preview
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]
CategoryRegulatory Compliance
Microsoft Learn
DescriptionThe NIS2 Directive enhances the cybersecurity and resilience of critical infrastructure and digital services across the European Union, ensuring a higher level of protection against cyber threats.
Cloud environmentsAzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = unknown
Available in AzUSGovUnknown, no evidence if Policy definition is/not available in AzureUSGovernment
TypeBuiltIn
DeprecatedFalse
PreviewTrue
Policy count Total Policies: 239
Builtin Policies: 67
Static Policies: 172
Policy used
Policy DisplayName Policy Id Category Version Versioning Effect Roles# Roles State policy in AzUSGov
[Preview]: ChangeTracking extension should be installed on your Linux Arc machine fc47609f-4d9b-4aed-806b-446816cc63a3 Security Center 1.0.0-preview 1x
1.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: ChangeTracking extension should be installed on your Linux virtual machine 8893442c-e7cb-4637-bab8-299a5d4ed96a Security Center 2.0.0-preview 1x
2.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: ChangeTracking extension should be installed on your Linux virtual machine scale sets e71c1e29-9c76-4532-8c4b-cb0573b0014c Security Center 2.0.0-preview 1x
2.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: ChangeTracking extension should be installed on your Windows Arc machine a7f5e735-d212-4c32-9229-d12bffbc7e00 Security Center 1.0.0-preview 1x
1.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: ChangeTracking extension should be installed on your Windows virtual machine 221aac80-54d8-484b-83d7-24f4feac2ce0 Security Center 2.0.0-preview 1x
2.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: ChangeTracking extension should be installed on your Windows virtual machine scale sets 4bb303db-d051-4099-95d2-e3e1428a4d00 Security Center 2.0.0-preview 1x
2.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: Guest Attestation extension should be installed on supported Linux virtual machines 672fe5a1-2fcd-42d7-b85d-902b6e28c6ff Security Center 6.0.0-preview 1x
6.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview true
[Preview]: Guest Attestation extension should be installed on supported Windows virtual machines 1cb4d9c2-f88f-4069-bee0-dba239a57b09 Security Center 4.0.0-preview 1x
4.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview true
[Preview]: Linux virtual machines should use only signed and trusted boot components 13a6c84f-49a5-410a-b5df-5b880c3fe009 Security Center 1.0.0-preview 1x
1.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 Preview unknown
[Preview]: Secure Boot should be enabled on supported Windows virtual machines 97566dd7-78ae-4997-8b36-1c7bfe0d8121 Security Center 4.0.0-preview 1x
4.0.0-preview
Default
Audit
Allowed
Audit, Disabled
0 Preview true
[Preview]: vTPM should be enabled on supported virtual machines 1c30f9cd-b84c-49cc-aa2c-9288447cc3b3 Security Center 2.0.0-preview 1x
2.0.0-preview
Default
Audit
Allowed
Audit, Disabled
0 Preview true
Add system-assigned managed identity to enable Guest Configuration assignments on virtual machines with no identities 3cf2ab00-13f1-4d0c-8971-2ac904541a7e Guest Configuration 4.1.0 2x
4.1.0, 4.0.0
Fixed
modify
1 Contributor GA true
Add system-assigned managed identity to enable Guest Configuration assignments on VMs with a user-assigned identity 497dff13-db2a-4c0f-8603-28fa3b331ab6 Guest Configuration 4.1.0 2x
4.1.0, 4.0.0
Fixed
modify
1 Contributor GA true
Adhere to retention periods defined 1ecb79d7-1a06-9a3b-3be8-f434d04d1ec1 Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
Alert personnel of information spillage 9622aaa9-5c49-40e2-5bf8-660b7cd23deb Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
All network ports should be restricted on network security groups associated to your virtual machine 9daedab3-fb2d-461e-b861-71790eead4f6 Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
API Management should disable public network access to the service configuration endpoints df73bd95-24da-4a4f-96b9-4e8b94b402bd API Management 1.0.1 1x
1.0.1
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA unknown
API Management subscriptions should not be scoped to all APIs 3aa03346-d8c5-4994-a5bc-7652c2a2aef1 API Management 1.1.0 1x
1.1.0
Default
Audit
Allowed
Audit, Disabled, Deny
0 GA unknown
App Service apps should only be accessible over HTTPS a4af4a39-4135-47fb-b175-47fbdf85311d App Service 4.0.0 1x
4.0.0
Default
Audit
Allowed
Audit, Disabled, Deny
0 GA true
Audit Windows machines that do not store passwords using reversible encryption da0f98fe-a24b-4ad5-af69-bd0400233661 Guest Configuration 2.0.0 1x
2.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Automation account variables should be encrypted 3657f5a0-770e-44a3-b44e-9431ba1e9735 Automation 1.1.0 1x
1.1.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Azure AI Services resources should restrict network access 037eea7a-bd0a-46c5-9a66-03aea78705d3 Azure Ai Services 3.2.0 3x
3.2.0, 3.1.0, 3.0.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Azure Backup should be enabled for Virtual Machines 013e242c-8828-4970-87b3-ab247555486d Backup 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Azure Defender for Azure SQL Database servers should be enabled 7fe3b40f-802b-4cdd-8bd4-fd799c948cc2 Security Center 1.0.2 1x
1.0.2
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Azure Kubernetes Service clusters should have Defender profile enabled a1840de2-8088-4ea8-b153-b4c723e9cb01 Kubernetes 2.0.1 1x
2.0.1
Default
Audit
Allowed
Audit, Disabled
0 GA true
Azure Machine Learning Computes should have local authentication methods disabled e96a9a5f-07ca-471b-9bc5-6a0f33cbd68f Machine Learning 2.1.0 2x
2.1.0, 2.0.1
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Blocked accounts with owner permissions on Azure resources should be removed 0cfea604-3201-4e14-88fc-fae4c427a6c5 Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Blocked accounts with read and write permissions on Azure resources should be removed 8d7e1fde-fe26-4b5f-8108-f8e432cbc2be Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Conduct capacity planning 33602e78-35e3-4f06-17fb-13dd887448e4 Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
Dependency agent should be enabled for listed virtual machine images 11ac78e3-31bc-4f0c-8434-37ab963cea07 Monitoring 2.0.0 1x
2.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Dependency agent should be enabled in virtual machine scale sets for listed virtual machine images e2dd799a-a932-4e9d-ac17-d473bc3c6c10 Monitoring 2.0.0 1x
2.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Deploy the Windows Guest Configuration extension to enable Guest Configuration assignments on Windows VMs 385f5831-96d4-41db-9a3c-cd3af78aaae6 Guest Configuration 1.2.0 1x
1.2.0
Fixed
deployIfNotExists
1 Contributor GA true
Develop audit and accountability policies and procedures a28323fe-276d-3787-32d2-cef6395764c4 Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
Diagnostic logs in Azure AI services resources should be enabled 1b4d1c4e-934c-4703-944c-27c82c06bebb Azure Ai Services 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Email notification for high severity alerts should be enabled 6e2593d9-add6-4083-9c9b-4b7d2188c899 Security Center 1.2.0 3x
1.2.0, 1.1.0, 1.0.1
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Email notification to subscription owner for high severity alerts should be enabled 0b15565f-aa9e-48ba-8619-45960f2c314d Security Center 2.1.0 2x
2.1.0, 2.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Function apps should only be accessible over HTTPS 6d555dd1-86f2-4f1c-8ed7-5abae7c6cbab App Service 5.0.0 1x
5.0.0
Default
Audit
Allowed
Audit, Disabled, Deny
0 GA true
Geo-redundant backup should be enabled for Azure Database for MySQL 82339799-d096-41ae-8538-b108becf0970 SQL 1.0.1 1x
1.0.1
Default
Audit
Allowed
Audit, Disabled
0 GA true
Geo-redundant backup should be enabled for Azure Database for PostgreSQL 48af4db5-9b8b-401c-8e74-076be876a430 SQL 1.0.1 1x
1.0.1
Default
Audit
Allowed
Audit, Disabled
0 GA true
Govern and monitor audit processing activities 333b4ada-4a02-0648-3d4d-d812974f1bb2 Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
Guest accounts with owner permissions on Azure resources should be removed 339353f6-2387-4a45-abe4-7f529d121046 Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Guest accounts with read permissions on Azure resources should be removed e9ac8f8e-ce22-4355-8f04-99b911d6be52 Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Guest accounts with write permissions on Azure resources should be removed 94e1c2ac-cbbe-4cac-a2b5-389c812dee87 Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Internet-facing virtual machines should be protected with network security groups f6de0be7-9a8a-4b8a-b349-43cf02d22f7c Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
IP Forwarding on your virtual machine should be disabled bd352bd5-2853-4985-bf0d-73806b4a5744 Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Management ports of virtual machines should be protected with just-in-time network access control b0f33259-77d7-4c9e-aac6-3aabcfae693c Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Management ports should be closed on your virtual machines 22730e10-96f6-4aac-ad84-9383d35b5917 Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Microsoft Defender for Containers should be enabled 1c988dd6-ade4-430f-a608-2a3e5b0a6d38 Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Microsoft Defender for SQL status should be protected for Arc-enabled SQL Servers 938c4981-c2c9-4168-9cd6-972b8675f906 Security Center 1.1.0 2x
1.1.0, 1.0.1
Default
Audit
Allowed
Audit, Disabled
0 GA unknown
Microsoft Managed Control 1000 - Access Control Policy And Procedures Requirements 2ef3cc79-733e-48ed-ab6f-7bf439e9b406 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1001 - Access Control Policy And Procedures Requirements 4e26f8c3-4bf3-4191-b8fc-d888805101b7 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1004 - Account Management c17822dc-736f-4eb4-a97d-e6be662ff835 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1005 - Account Management 5b626abc-26d4-4e22-9de8-3831818526b1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1008 - Account Management 8356cfc6-507a-4d20-b818-08038011cd07 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1009 - Account Management b26f8610-e615-47c2-abd6-c00b2b0b503a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1010 - Account Management 784663a8-1eb0-418a-a98c-24d19bc1bb62 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1011 - Account Management 7e6a54f3-883f-43d5-87c4-172dfd64a1f5 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1027 - Access Enforcement a76ca9b0-3f4a-4192-9a38-b25e4f8ae48c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1028 - Information Flow Enforcement f171df5c-921b-41e9-b12b-50801c315475 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1029 - Information Flow Enforcement | Security Policy Filters 53ac8f8e-c2b5-4d44-8a2d-058e9ced9b69 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1030 - Information Flow Enforcement | Physical / Logical Separation Of Information Flows d3531453-b869-4606-9122-29c1cd6e7ed1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1031 - Separation Of Duties 6b93a801-fe25-4574-a60d-cb22acffae00 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1033 - Separation Of Duties 48540f01-fc11-411a-b160-42807c68896e Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1057 - Permitted Actions Without Identification Or Authentication 78255758-6d45-4bf0-a005-7016bc03b13c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1059 - Remote Access a29b5d9f-4953-4afe-b560-203a6410b6b4 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1062 - Remote Access | Protection Of Confidentiality / Integrity Using Encryption 4708723f-e099-4af1-bbf9-b6df7642e444 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1067 - Wireless Access Restrictions 5c5e54f6-0127-44d0-8b61-f31dc8dd6190 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1069 - Wireless Access Restrictions | Authentication And Encryption 91c97b44-791e-46e9-bad7-ab7c4949edbb Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1074 - Access Control for Portable And Mobile Systems 27a69937-af92-4198-9b86-08d355c7e59a Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1089 - Security Awareness ef080e67-0d1a-4f76-a0c5-fb9b0358485e Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1090 - Security Awareness 2fb740e5-cbc7-4d10-8686-d1bf826652b1 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1091 - Security Awareness b23bd715-5d1c-4e5c-9759-9cbdf79ded9d Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1092 - Security Awareness | Insider Threat 8a29d47b-8604-4667-84ef-90d203fcb305 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1093 - Role-Based Security Training 7a0bdeeb-15f4-47e8-a1da-9f769f845fdf Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1096 - Role-Based Security Training | Practical Exercises 420c1477-aa43-49d0-bd7e-c4abdd9addff Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1097 - Role-Based Security Training | Suspicious Communications And Anomalous System Behavior cf3e4836-f19e-47eb-a8cd-c3ca150452c0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1098 - Security Training Records 84363adb-dde3-411a-9fc1-36b56737f822 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1111 - Response To Audit Processing Failures 21de687c-f15e-4e51-bf8d-f35c8619965b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1142 - Certification, Authorization, Security Assessment Policy And Procedures 01524fa8-4555-48ce-ba5f-c3b8dcef5147 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1152 - System Interconnections beff0acf-7e67-40b2-b1ca-1a0e8205cf1b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1161 - Continuous Monitoring e2f8f6c6-dde4-436b-a79d-bc50e129eb3a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1162 - Continuous Monitoring 5770f3d6-8c2b-4f6f-bf0e-c8c8fc36d592 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1174 - Configuration Management Policy And Procedures 42a9a714-8fbb-43ac-b115-ea12d2bd652f Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1176 - Baseline Configuration c30690a5-7bf3-467f-b0cd-ef5c7c7449cd Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1202 - Access Restrictions For Change 40a2a83b-74f2-4c02-ae65-f460a5d2792a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1224 - Information System Component Inventory | Updates During Installations / Removals 28cfa30b-7f72-47ce-ba3b-eed26c8d2c82 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1229 - Information System Component Inventory | No Duplicate Accounting Of Components 03752212-103c-4ab8-a306-7e813022ca9d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1242 - Contingency Planning Policy And Procedures cf3b3293-667a-445e-a722-fa0b0afc0958 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1243 - Contingency Planning Policy And Procedures ca9a4469-d6df-4ab2-a42f-1213c396f0ec Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1246 - Contingency Plan 398eb61e-8111-40d5-a0c9-003df28f1753 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1253 - Contingency Plan | Resume Essential Missions / Business Functions 0afce0b3-dd9f-42bb-af28-1e4284ba8311 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1255 - Contingency Plan | Continue Essential Missions / Business Functions f3793f5e-937f-44f7-bfba-40647ef3efa0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1261 - Contingency Plan Testing 65aeceb5-a59c-4cb1-8d82-9c474be5d431 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1264 - Contingency Plan Testing | Coordinate With Related Plans dd280d4b-50a1-42fb-a479-ece5878acf19 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1267 - Alternate Storage Site 4e97ba1d-be5d-4953-8da4-0cccf28f4805 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1281 - Telecommunications Services | Priority Of Service Provisions 8dc459b3-0e77-45af-8d71-cfd8c9654fe2 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1293 - Information System Backup | Separate Storage For Critical Information 87f7cd82-2e45-4d0f-9e2f-586b0962d142 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1294 - Information System Backup | Transfer To Alternate Storage Site 49dbe627-2c1e-438c-979e-dd7a39bbf81d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1295 - Information System Recovery And Reconstitution a895fbdb-204d-4302-9689-0a59dc42b3d9 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1298 - Identification And Authentication Policy And Procedures 1dc784b5-4895-4d27-9d40-a06b032bd1ee Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1300 - User Identification And Authentication 99deec7d-5526-472e-b07c-3645a792026a Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1301 - User Identification And Authentication | Network Access To Privileged Accounts b6a8e0cc-ac23-468b-abe4-a8a1cc6d7a08 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1302 - User Identification And Authentication | Network Access To Non-Privileged Accounts 09828c65-e323-422b-9774-9d5c646124da Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1303 - User Identification And Authentication | Local Access To Privileged Accounts 80ca0a27-918a-4604-af9e-723a27ee51e8 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1304 - User Identification And Authentication | Local Access To Non-Privileged Accounts 6ca71be3-16cb-4d39-8b50-7f8fd5e2f11b Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1305 - User Identification And Authentication | Group Authentication 9d9166a8-1722-4b8f-847c-2cf3f2618b3d Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1306 - User Identification And Authentication | Network Access To Privileged Accounts - Replay... cafc6c3c-5fc5-4c5e-a99b-a0ccb1d34eff Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1307 - User Identification And Authentication | Network Access To Non-Privileged Accounts - Replay... 84e622c8-4bed-417c-84c6-b2fb0dd73682 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1308 - User Identification And Authentication | Remote Access - Separate Device 81817e1c-5347-48dd-965a-40159d008229 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1309 - User Identification And Authentication | Acceptance Of Piv Credentials f355d62b-39a8-4ba3-abf7-90f71cb3b000 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1310 - Device Identification And Authentication 450d7ede-823d-4931-a99d-57f6a38807dc Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1317 - Authenticator Management 8877f519-c166-47b7-81b7-8a8eb4ff3775 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1318 - Authenticator Management fced5fda-3bdb-4d73-bfea-0e2c80428b66 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1319 - Authenticator Management 66f7ae57-5560-4fc5-85c9-659f204e7a42 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1327 - Authenticator Management | Password-Based Authentication 03188d8f-1ae5-4fe1-974d-2d7d32ef937d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1328 - Authenticator Management | Password-Based Authentication f5c66fdc-3d02-4034-9db5-ba57802609de Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1329 - Authenticator Management | Password-Based Authentication 498f6234-3e20-4b6a-a880-cbd646d973bd Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1330 - Authenticator Management | Password-Based Authentication f75cedb2-5def-4b31-973e-b69e8c7bd031 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1332 - Authenticator Management | Password-Based Authentication 068260be-a5e6-4b0a-a430-cd27071c226a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1335 - Authenticator Management | Pki-Based Authentication 382016f3-d4ba-4e15-9716-55077ec4dc2a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1337 - Authenticator Management | In-Person Or Trusted Third-Party Registration 463e5220-3f79-4e24-a63f-343e4096cd22 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1339 - Authenticator Management | Protection Of Authenticators 367ae386-db7f-4167-b672-984ff86277c0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1341 - Authenticator Management | Multiple Information System Accounts 34cb7e92-fe4c-4826-b51e-8cd203fa5d35 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1342 - Authenticator Management | Hardware Token-Based Authentication 283a4e29-69d5-4c94-b99e-29acf003c899 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1345 - Cryptographic Module Authentication f86aa129-7c07-4aa4-bbf5-792d93ffd9ea Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1351 - Incident Response Policy And Procedures bcfb6683-05e5-4ce6-9723-c3fbe9896bdd Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1353 - Incident Response Training c785ad59-f78f-44ad-9a7f-d1202318c748 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1358 - Incident Response Testing effbaeef-5bf4-400d-895e-ef8cbc0e64c7 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1359 - Incident Response Testing | Coordination With Related Plans 47bc7ea0-7d13-4f7c-a154-b903f7194253 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1360 - Incident Handling be5b05e7-0b82-4ebc-9eda-25e447b1a41e Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1361 - Incident Handling 03ed3be1-7276-4452-9a5d-e4168565ac67 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1362 - Incident Handling 5d169442-d6ef-439b-8dca-46c2c3248214 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1363 - Incident Handling | Automated Incident Handling Processes ea3e8156-89a1-45b1-8bd6-938abc79fdfd Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1364 - Incident Handling | Dynamic Reconfiguration 4c615c2a-dc83-4dda-8220-abce7b50c9bc Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1365 - Incident Handling | Continuity Of Operations 4116891d-72f7-46ee-911c-8056cc8dcbd5 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1366 - Incident Handling | Information Correlation 06c45c30-ae44-4f0f-82be-41331da911cc Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1367 - Incident Handling | Insider Threats - Specific Capabilities 435b2547-6374-4f87-b42d-6e8dbe6ae62a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1368 - Incident Handling | Correlation With External Organizations 465f32da-0ace-4603-8d1b-7be5a3a702de Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1369 - Incident Monitoring 18cc35ed-a429-486d-8d59-cb47e87304ed Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1370 - Incident Monitoring | Automated Tracking / Data Collection / Analysis 924e1b2d-c502-478f-bfdb-a7e09a0d5c01 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1371 - Incident Reporting 9447f354-2c85-4700-93b3-ecdc6cb6a417 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1372 - Incident Reporting 25b96717-c912-4c00-9143-4e487f411726 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1373 - Incident Reporting | Automated Reporting 4cca950f-c3b7-492a-8e8f-ea39663c14f9 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1374 - Incident Response Assistance cc5c8616-52ef-4e5e-8000-491634ed9249 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1375 - Incident Response Assistance | Automation Support For Availability Of Information / Support 00379355-8932-4b52-b63a-3bc6daf3451a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1376 - Incident Response Assistance | Coordination With External Providers 493a95f3-f2e3-47d0-af02-65e6d6decc2f Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1377 - Incident Response Assistance | Coordination With External Providers 68434bd1-e14b-4031-9edb-a4adf5f84a67 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1378 - Incident Response Plan 97fceb70-6983-42d0-9331-18ad8253184d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1381 - Incident Response Plan e5368258-9684-4567-8126-269f34e65eab Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1490 - Security Planning Policy And Procedures 9e61da80-0957-4892-b70c-609d5eaafb6b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1491 - Security Planning Policy And Procedures 1571dd40-dafc-4ef4-8f55-16eba27efc7b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1492 - System Security Plan 7ad5f307-e045-46f7-8214-5bdb7e973737 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1503 - Information Security Architecture c1fa9c2f-d439-4ab9-8b83-81fb1934f81d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1529 - Third-Party Personnel Security d74fdc92-1cb8-4a34-9978-8556425cd14c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1536 - Risk Assessment Policy And Procedures 6e40d9de-2ad4-4cb5-8945-23143326a502 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1537 - Risk Assessment Policy And Procedures b19454ca-0d70-42c0-acf5-ea1c1e5726d1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1541 - Risk Assessment 70f6af82-7be6-44aa-9b15-8b9231b2e434 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1542 - Risk Assessment eab340d0-3d55-4826-a0e5-feebfeb0131d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1544 - Risk Assessment 43ced7c9-cd53-456b-b0da-2522649a4271 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1545 - Risk Assessment 3f4b171a-a56b-4328-8112-32cf7f947ee1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1546 - Vulnerability Scanning 2ce1ea7e-4038-4e53-82f4-63e8859333c1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1547 - Vulnerability Scanning 58abf9b8-c6d4-4b4b-bfb9-fe98fe295f52 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1548 - Vulnerability Scanning 3afe6c78-6124-4d95-b85c-eb8c0c9539cb Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1549 - Vulnerability Scanning d6976a08-d969-4df2-bb38-29556c2eb48a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1550 - Vulnerability Scanning 902908fb-25a8-4225-a3a5-5603c80066c9 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1551 - Vulnerability Scanning | Update Tool Capability 5bbda922-0172-4095-89e6-5b4a0bf03af7 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1552 - Vulnerability Scanning | Update By Frequency / Prior To New Scan / When Identified 43684572-e4f1-4642-af35-6b933bc506da Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1553 - Vulnerability Scanning | Breadth / Depth Of Coverage 9e5225fe-cdfb-4fce-9aec-0fe20dd53b62 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1558 - Vulnerability Scanning | Correlate Scanning Information 65592b16-4367-42c5-a26e-d371be450e17 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1559 - System And Services Acquisition Policy And Procedures 45692294-f074-42bd-ac54-16f1a3c07554 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1560 - System And Services Acquisition Policy And Procedures e29e0915-5c2f-4d09-8806-048b749ad763 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1577 - Acquisitions Process | Continuous Monitoring Plan d922484a-8cfc-4a6b-95a4-77d6a685407f Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1578 - Acquisitions Process | Functions / Ports / Protocols / Services In Use 45b7b644-5f91-498e-9d89-7402532d3645 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1580 - Information System Documentation 854db8ac-6adf-42a0-bef3-b73f764f40b9 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1591 - External Information System Services | Identification Of Functions / Ports / Protocols... f751cdb7-fbee-406b-969b-815d367cb9b3 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1606 - Developer Security Testing And Evaluation | Threat And Vulnerability Analyses baa8a9a4-5bbe-4c72-98f6-a3a47ae2b1ca Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1608 - Supply Chain Protection b73b7b3b-677c-4a2a-b949-ad4dc4acd89f Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1615 - System And Communications Protection Policy And Procedures f35e02aa-0a55-49f8-8811-8abfa7e6f2c0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1616 - System And Communications Protection Policy And Procedures 2006457a-48b3-4f7b-8d2e-1532287f9929 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1619 - Information In Shared Resources c722e569-cb52-45f3-a643-836547d016e1 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1622 - Boundary Protection ecf56554-164d-499a-8d00-206b07c27bed Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1631 - Boundary Protection | Deny By Default / Allow By Exception 74ae9b8e-e7bb-4c9c-992f-c535282f7a2c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1635 - Boundary Protection | Host-Based Protection 87551b5d-1deb-4d0f-86cc-9dc14cb4bf7e Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1640 - Transmission Confidentiality And Integrity 05a289ce-6a20-4b75-a0f3-dc8601b6acd0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1641 - Transmission Confidentiality And Integrity | Cryptographic Or Alternate Physical Protection d39d4f68-7346-4133-8841-15318a714a24 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1643 - Cryptographic Key Establishment And Management 6d8d492c-dd7a-46f7-a723-fa66a425b87c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1645 - Cryptographic Key Establishment And Management | Symmetric Keys afbd0baf-ff1a-4447-a86f-088a97347c0c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1646 - Cryptographic Key Establishment And Management | Asymmetric Keys 506814fa-b930-4b10-894e-a45b98c40e1a Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1647 - Use of Cryptography 791cfc15-6974-42a0-9f4c-2d4b82f4a78c Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1650 - Public Key Infrastructure Certificates 201d3740-bd16-4baf-b4b8-7cda352228b7 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1657 - Secure Name / Address Resolution Service (Authoritative Source) 90f01329-a100-43c2-af31-098996135d2b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1663 - Protection Of Information At Rest 60171210-6dde-40af-a144-bf2670518bfa Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1664 - Protection Of Information At Rest | Cryptographic Protection a2cdf6b8-9505-4619-b579-309ba72037ac Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1667 - System And Information Integrity Policy And Procedures d61880dc-6e38-4f2a-a30c-3406a98f8220 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1668 - Flaw Remediation 8fb0966e-be1d-42c3-baca-60df5c0bcc61 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1683 - Information System Monitoring 8c79fee4-88dd-44ce-bbd4-4de88948c4f8 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1684 - Information System Monitoring 16bfdb59-db38-47a5-88a9-2e9371a638cf Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1687 - Information System Monitoring 7a87fc7f-301e-49f3-ba2a-4d74f424fa97 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1694 - Information System Monitoring | Analyze Communications Traffic Anomalies 426c4ac9-ff17-49d0-acd7-a13c157081c0 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1703 - Security Alerts & Advisories 804faf7d-b687-40f7-9f74-79e28adf4205 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1705 - Security Alerts & Advisories f82e3639-fa2b-4e06-a786-932d8379b972 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1706 - Security Alerts & Advisories f475ee0e-f560-4c9b-876b-04a77460a404 Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1707 - Security Alerts & Advisories | Automated Alerts And Advisories fd4a2ac8-868a-4702-a345-6c896c3361ce Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1711 - Security Functionality Verification b083a535-a66a-41ec-ba7f-f9498bf67cde Regulatory Compliance 1.0.1 1x
1.0.1
Fixed
audit
0 GA true
Microsoft Managed Control 1729 - Information Security Program Plan f5a44e7d-77a2-474e-b2e3-4e8c42ba514b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1730 - Information Security Program Plan 1fa50212-51a9-471b-95cf-3a23410ec9e9 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1731 - Information Security Program Plan 59a7116d-19fd-49e9-a068-dec4460b97e5 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1733 - Senior Information Security Officer 4152937a-1a44-401a-a179-04b44ea15f4c Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1734 - Information Security Resources 5fd9ced5-18e8-4c09-91b7-3725680f8ade Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1739 - Information System Inventory 74520428-3aa8-449c-938d-93f51940759e Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1740 - Information Security Measures Of Performance e4df5fb7-58e9-41de-9399-f043c7a931f8 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1742 - Critical Infrastructure Plan d461dd50-c8fb-4ccb-93bf-61f53b44e54d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1743 - Risk Management Strategy 66a56404-7b65-4e33-b371-28d069172dd4 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1744 - Risk Management Strategy 07458826-9325-4481-abaf-bc9ed043459d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1749 - Mission/Business Process Definition 1c0b3710-03dc-450a-a56a-77b85e744f0d Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1807 - Governance And Privacy Program 7cb8a3d2-a208-4b6f-95e8-e8f0bb85a7a6 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1818 - Accounting of Disclosures d39620a4-95c6-4d4f-8aa4-83c0c6a2c640 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1819 - Accounting of Disclosures c6c43097-8552-4279-8b38-7dcabff781d3 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1856 - Privacy Incident Response 2d5600ed-575a-4723-9ff4-52d694be0a59 Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1857 - Privacy Incident Response fb845c34-808d-4c17-a0ce-85a530e9164b Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Microsoft Managed Control 1860 - Privacy Notice 2234feec-08c6-4fc9-af78-df0dcc482efd Regulatory Compliance 1.0.0 1x
1.0.0
Fixed
audit
0 GA true
Non-internet-facing virtual machines should be protected with network security groups bb91dfba-c30d-4263-9add-9c2384e659a6 Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Only secure connections to your Azure Cache for Redis should be enabled 22bee202-a82f-4305-9a2a-6d7f44d4dedb Cache 1.0.0 1x
1.0.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Perform audit for configuration change control 1282809c-9001-176b-4a81-260a085f4872 Regulatory Compliance 1.1.0 1x
1.1.0
Default
Manual
Allowed
Manual, Disabled
0 GA true
Resource logs in Azure Databricks Workspaces should be enabled 138ff14d-b687-4faa-a81c-898c91a87fa2 Azure Databricks 1.0.1 1x
1.0.1
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Secure transfer to storage accounts should be enabled 404c3081-a854-4457-ae30-26a93ef643f9 Storage 2.0.0 1x
2.0.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Service Fabric clusters should have the ClusterProtectionLevel property set to EncryptAndSign 617c02be-7f02-4efd-8836-3180d47b6c68 Service Fabric 1.1.0 1x
1.1.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Service Fabric clusters should only use Azure Active Directory for client authentication b54ed75b-3e1a-44ac-a333-05ba39b99ff0 Service Fabric 1.1.0 1x
1.1.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
SQL databases should have vulnerability findings resolved feedbf84-6b99-488c-acc2-71c829aa5ffc Security Center 4.1.0 1x
4.1.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
SQL servers on machines should have vulnerability findings resolved 6ba6d016-e7c3-4842-b8f2-4992ebc0d72d Security Center 1.0.0 1x
1.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Storage accounts should restrict network access 34c877ad-507e-4c82-993e-3452a6e0ad3c Storage 1.1.1 1x
1.1.1
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Storage accounts should restrict network access using virtual network rules 2a1a9cdf-e04d-429a-8416-3bfb72a1b26f Storage 1.0.1 1x
1.0.1
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Subnets should be associated with a Network Security Group e71308d3-144b-4262-b144-efdc3cc90517 Security Center 3.0.0 1x
3.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Subscriptions should have a contact email address for security issues 4f4f78b8-e367-4b10-a341-d9a4ad5cf1c7 Security Center 1.0.1 1x
1.0.1
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
System updates should be installed on your machines (powered by Update Center) f85bf3e0-d513-442e-89c3-1784ad63382b Security Center 1.0.1 2x
1.0.1, 1.0.0-preview
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Transparent Data Encryption on SQL databases should be enabled 17k78e20-9358-41c9-923c-fb736d382a12 SQL 2.0.0 1x
2.0.0
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
Virtual machines' Guest Configuration extension should be deployed with system-assigned managed identity d26f7642-7545-4e18-9b75-8c9bbdee3a9a Security Center 1.0.1 1x
1.0.1
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
0 GA true
VM Image Builder templates should use private link 2154edb9-244f-4741-9970-660785bccdaa VM Image Builder 1.1.0 1x
1.1.0
Default
Audit
Allowed
Audit, Disabled, Deny
0 GA unknown
Web Application Firewall (WAF) should be enabled for Application Gateway 564feb30-bf6a-4854-b4bb-0d2d2d1e6c66 Network 2.0.0 1x
2.0.0
Default
Audit
Allowed
Audit, Deny, Disabled
0 GA true
Roles used Total Roles usage: 3
Total Roles unique usage: 1
Role Role Id Policies count Policies
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c 3 Add system-assigned managed identity to enable Guest Configuration assignments on virtual machines with no identities, Add system-assigned managed identity to enable Guest Configuration assignments on VMs with a user-assigned identity, Deploy the Windows Guest Configuration extension to enable Guest Configuration assignments on Windows VMs
History
Date/Time (UTC ymd) (i) Changes
2025-01-28 19:35:17 add Initiative 32ff9e30-4725-4ca7-ba3a-904a7721ee87
JSON compare n/a
JSON
api-version=2023-04-01
EPAC