| Source | Azure Portal | ||||||
| Display name | Microsoft Managed Control 1308 - User Identification And Authentication | Remote Access - Separate Device | ||||||
| Id | 81817e1c-5347-48dd-965a-40159d008229 | ||||||
| Version | 1.0.1 Details on versioning |
||||||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||||||
| Category | Regulatory Compliance Microsoft Learn |
||||||
| Description | Microsoft implements this Identification and Authentication control | ||||||
| Additional metadata |
Name/Id: ACF1308 / Microsoft Managed Control 1308 Category: Identification and Authentication Title: User Identification And Authentication | Remote Access - Separate Device Ownership: Customer, Microsoft Description: The information system implements multifactor authentication for remote access to privileged and non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access and the device meets approved PKI Class 3 certificates for smart cards. Requirements: Azure uses multifactor authentication for Azure personnel by using eAuth Level 4 and FIPS 140-2 compliant Thales smart cards. All Microsoft users connect to the system via Jumpboxes, Debug servers, and Network Hop Boxes. This requires the user to present a certificate bound to the card along with a PIN. |
||||||
| Mode | Indexed | ||||||
| Type | Static | ||||||
| Preview | False | ||||||
| Deprecated | False | ||||||
| Effect | Fixed audit |
||||||
| RBAC role(s) | none | ||||||
| Rule aliases | none | ||||||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||||||
| Compliance | Not a Compliance control | ||||||
| Initiatives usage | none | ||||||
| History |
|
||||||
| JSON compare |
compare mode:
version left:
version right:
|
||||||
| JSON |
|