| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1466 - Visitor Access Records | ||
| Id | 0d943a9c-a6f1-401f-a792-740cdb09c451 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Physical and Environmental Protection control | ||
| Additional metadata |
Name/Id: ACF1466 / Microsoft Managed Control 1466 Category: Physical and Environmental Protection Title: Visitor Access Records - Maintaining Records Ownership: Microsoft Description: The organization: Maintains visitor access records to the facility where the information system resides for At least one year; and Requirements: Visitor datacenter access records are maintained in DCAT in the form of approved DCAT requests. DCAT requests can only be approved by the Datacenter Management (DCM) team. All visitor access requests to Azure datacenters is recorded in DCAT and is available for future possible investigations. Visitors are always required to be escorted and are not granted any access to Azure datacenters. The escort’s access within the datacenter is logged within Lenel Onguard Alarm Monitoring System and, if necessary, can be correlated to the visitor for future review. Azure Third-Party (Leased) Datacenters For leased datacenters, Azure is provided monthly with a log of all access attempts to the Microsoft areas. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|