| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1017 - Account Management | Inactivity Logout | ||
| Id | 0fc3db37-e59a-48c1-84e9-1780cedb409e | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Access Control control | ||
| Additional metadata |
Name/Id: ACF1017 / Microsoft Managed Control 1017 Category: Access Control Title: Account Management | Inactivity Logout Ownership: Customer, Microsoft Description: The organization requires that users log out when at the end of the user’s work period, in advance of any expected unattended inactivity exceeding 15 minutes, when the task for which the user logged on is complete, or when JIT access expires. Requirements: Azure requires that all personnel log out at the end of their work period, in advance of any expected unattended inactivity exceeding fifteen (15) minutes, or when they have completed the task that was the purpose of the login, including at the end of their workday. Additionally, when a user has elevated to administrative access using the JIT process, that user’s connections are automatically terminated upon expiration of the elevation. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|