| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1005 - Account Management | ||
| Id | 5b626abc-26d4-4e22-9de8-3831818526b1 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Access Control control | ||
| Additional metadata |
Name/Id: ACF1005 / Microsoft Managed Control 1005 Category: Access Control Title: Account Management - Authorized Users Ownership: Customer, Microsoft Description: The organization: Specifies authorized users of the information system, group and role membership, and access authorizations (i.e., privileges) and other attributes (as required) for each account; Requirements: The Azure service team's management identifies service team personnel who should be given authorization to access the system and specifies the type of privilege each service team personnel should have based on their role. Azure utilizes Role-Based Access Control (RBAC) to identify and control the access privileges of each service team user in accordance with OneIdentity restrictions. Access privileges vary depending on the role a specified service team member assumes within the service team. Access privileges are defined by the service teams in OneIdentity and enforced by Active Directory. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|