| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1399 - Controlled Maintenance | ||
| Id | 2256e638-eb23-480f-9e15-6cf1af0a76b3 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Maintenance control | ||
| Additional metadata |
Name/Id: ACF1399 / Microsoft Managed Control 1399 Category: Maintenance Title: Controlled Maintenance - Off-site Sanitization Ownership: Microsoft Description: The organization: Sanitizes equipment to remove all information from associated media prior to removal from organizational facilities for off-site maintenance or repairs; Requirements: Data Bearing Equipment and Site Services Assets that are to be destroyed are stored in locked storage bins that are under CCTV camera coverage. When the assets are ready to be destroyed, a physical security officer and a Microsoft full time employee (FTE) from Asset Management must escort the locked bin from the Azure colocation to where the onsite shredding is to occur. As shredding occurs at the datacenter and under Microsoft supervision, Azure assets do not leave the controlled areas of the datacenter. Any production device that is to be removed off-site with drives intact require a policy exception . |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|