| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1134 - Protection Of Audit Information | Access By Subset Of Privileged Users | ||
| Id | 4e95f70e-181c-4422-9da2-43079710c789 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Audit and Accountability control | ||
| Additional metadata |
Name/Id: ACF1134 / Microsoft Managed Control 1134 Category: Audit and Accountability Title: Protection Of Audit Information | Access By Subset Of Privileged Users Ownership: Customer, Microsoft Description: The organization authorizes access to management of audit functionality to only Service Engineer Operations. Requirements: Azure restricts management of audit functionality within Azure to the service teams and Azure Security team with approved least privilege and separation of duties role-based access. If the audit logs contain customer information, the logs are further restricted to a defined access group managed by the service team and restricted to need-to-know personnel. These personnel do not have the ability to modify or delete audit records from the central log repositories, and if they disable logging, that action itself is logged and investigated. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|