| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1137 - Audit Generation | ||
| Id | 4344df62-88ab-4637-b97b-bcaf2ec97e7c | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Audit and Accountability control | ||
| Additional metadata |
Name/Id: ACF1137 / Microsoft Managed Control 1137 Category: Audit and Accountability Title: Audit Generation - Auditable Event Capability Ownership: Customer, Microsoft Description: The information system: Provides audit record generation capability for the auditable events defined in AU-2 a. at All information system components where audit capability is deployed; Requirements: Azure implements audit generation by configuring all servers, network devices, and services to have the capability to generate audit records and audit record metadata as required. Azure sets standard configuration baselines for all servers and network devices, ensuring the consistent generation of the required audit logs. Service teams ensure the required audit logs are captured at the service layer through the Azure Security Development Lifecycle (SDL) process. Azure also utilizes Azure Security Pack (AzSecPack) and Geneva Monitoring to ensure the central ingestion of those logs. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|