| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1058 - Permitted Actions Without Identification Or Authentication | ||
| Id | 76e85d08-8fbb-4112-a1c1-93521e6a9254 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Access Control control | ||
| Additional metadata |
Name/Id: ACF1058 / Microsoft Managed Control 1058 Category: Access Control Title: Permitted Actions Without Identification or Authentication - Documentation of Actions Ownership: Customer, Microsoft Description: The organization: Documents and provides supporting rationale in the security plan for the information system, user actions not requiring identification or authentication. Requirements: The information in the Feature Descriptions, Developer Documents, Legal, Privacy Statement, Help, and Language Preference is either legally required or foundational to an internet-facing service and none of it impacts the security of the system if disclosed. Service teams also make aspects of their services consumable as needed. For instance, Azure Active Directory (AAD) DNS responds to unauthenticated DNS queries by design, as this is required to be compliant with the DNS specification and to ensure customers can successfully resolve AAD URLs. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|