| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1423 - Maintenance Personnel | Individuals Without Appropriate Access | ||
| Id | 7741669e-d4f6-485a-83cb-e70ce7cbbc20 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Maintenance control | ||
| Additional metadata |
Name/Id: ACF1423 / Microsoft Managed Control 1423 Category: Maintenance Title: Maintenance Personnel | Individuals Without Appropriate Access - Required Safeguards Ownership: Microsoft Description: The organization: Implements procedures for the use of maintenance personnel that lack appropriate security clearances or are not U.S. citizens, that include the following requirements: Maintenance personnel who do not have needed access authorizations, clearances, or formal access approvals are escorted and supervised during the performance of maintenance and diagnostic activities on the information system by approved organizational personnel who are fully cleared, have appropriate access authorizations, and are technically qualified; Prior to initiating maintenance or diagnostic activities by personnel who do not have needed access authorizations, clearances or formal access approvals, all volatile information storage components within the information system are sanitized and all nonvolatile storage media are removed or physically disconnected from the system and secured; and Requirements: All visitors to datacenters who must gain physical access to perform maintenance must be approved by the Datacenter Management (DCM) team for access through a DCAT request . When arriving at the datacenter, a person’s identity is matched against their approved DCAT request. Additionally, visitors that do not have appropriate access approvals, such as maintenance vendors, are escorted by someone who possesses the technical competence to supervise the work they are performing. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|