| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1122 - Audit Review, Analysis, And Reporting | Permitted Actions | ||
| Id | 243ec95e-800c-49d4-ba52-1fdd9f6b8b57 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Audit and Accountability control | ||
| Additional metadata |
Name/Id: ACF1122 / Microsoft Managed Control 1122 Category: Audit and Accountability Title: Audit Review, Analysis, And Reporting | Permitted Actions Ownership: Customer, Microsoft Description: The organization specifies the permitted actions for each information system process, role, or user associated with the review, analysis, and reporting of audit information. Requirements: Azure specifies the permitted actions for each process, role, or user via role-based access control. Security groups are defined in OneIdentityand MyAccess; each security group has specified access rights and permitted actions. Users are added to security groups via the account management process managed and implemented by Azure service teams. The Azure Security Response Team, responsible for both incident management and monitoring, define the roles and responsibilities in the Incident Management SOP. Additionally, the Security Response Team performs both incident management and monitors analytics from the logging systems. Only authorized members of the Security Response Team have access to audit log information. This information is only used to aid in incident management and investigation and is not available to personnel outside the incident management function. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|