AzPolicyAdvertizer

last sync: 2024-Nov-25 18:54:24 UTC

Define and enforce inactivity log policy | Regulatory Compliance - Operational

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Define and enforce inactivity log policy

2af4640d-11a6-a64b-5ceb-a468f4341c0c

Version

1.1.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]

Category

Regulatory Compliance
Microsoft Learn

Description

CMA_C1017 - Define and enforce inactivity log policy

Additional metadata

Name/Id: CMA_C1017 / CMA_C1017
Category: Operational
Title: Define and enforce inactivity log policy
Ownership: Customer
Description: The customer is responsible for defining and enforcing an inactivity log out policy.
Requirements: The customer is responsible for implementing this recommendation.

Mode

All

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Manual
Allowed
Manual, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (1)
Microsoft.Resources/subscriptions

Compliance

The following 5 compliance controls are associated with this Policy definition 'Define and enforce inactivity log policy' (2af4640d-11a6-a64b-5ceb-a468f4341c0c)

Control Domain	Control	Name	MetadataId	Category	Title	Owner	Requirements	Description	Info	Policy#
FedRAMP_High_R4	AC-2(5)	FedRAMP_High_R4_AC-2(5)	FedRAMP High AC-2 (5)	Access Control	Inactivity Logout	Shared	n/a	The organization requires that users log out when [Assignment: organization-defined time-period of expected inactivity or description of when to log out]. Supplemental Guidance: Related control: SC-23.	link	1
FedRAMP_Moderate_R4	AC-2(5)	FedRAMP_Moderate_R4_AC-2(5)	FedRAMP Moderate AC-2 (5)	Access Control	Inactivity Logout	Shared	n/a	The organization requires that users log out when [Assignment: organization-defined time-period of expected inactivity or description of when to log out]. Supplemental Guidance: Related control: SC-23.	link	1
NIST_SP_800-53_R4	AC-2(5)	NIST_SP_800-53_R4_AC-2(5)	NIST SP 800-53 Rev. 4 AC-2 (5)	Access Control	Inactivity Logout	Shared	n/a	The organization requires that users log out when [Assignment: organization-defined time-period of expected inactivity or description of when to log out]. Supplemental Guidance: Related control: SC-23.	link	1
NIST_SP_800-53_R5	AC-2(5)	NIST_SP_800-53_R5_AC-2(5)	NIST SP 800-53 Rev. 5 AC-2 (5)	Access Control	Inactivity Logout	Shared	n/a	Require that users log out when [Assignment: organization-defined time period of expected inactivity or description of when to log out].	link	1
PCI_DSS_v4.0	8.2.8	PCI_DSS_v4.0_8.2.8	PCI DSS v4.0 8.2.8	Requirement 08: Identify Users and Authenticate Access to System Components	User identification and related accounts for users and administrators are strictly managed throughout an account’s lifecycle	Shared	n/a	If a user session has been idle for more than 15 minutes, the user is required to re-authenticate to re-activate the terminal or session.	link	2

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
FedRAMP High	d5264498-16f4-418a-b659-fa7ef418175f	Regulatory Compliance	GA	BuiltIn
FedRAMP Moderate	e95f5a9f-57ad-4d03-bb0b-b1d16db93693	Regulatory Compliance	GA	BuiltIn
NIST SP 800-53 Rev. 4	cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f	Regulatory Compliance	GA	BuiltIn
NIST SP 800-53 Rev. 5	179d1daa-458f-4e47-8086-2a68d0d6c38f	Regulatory Compliance	GA	BuiltIn
PCI DSS v4	c676748e-3af9-4e22-bc28-50feed564afb	Regulatory Compliance	GA	BuiltIn

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-09-27 16:35:32	change	Minor (1.0.0 > 1.1.0)
2022-09-19 17:41:40	add	2af4640d-11a6-a64b-5ceb-a468f4341c0c

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC