| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1213 - Configuration Settings | Respond To Unauthorized Changes | ||
| Id | 81f11e32-a293-4a58-82cd-134af52e2318 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Configuration Management control | ||
| Additional metadata |
Name/Id: ACF1213 / Microsoft Managed Control 1213 Category: Configuration Management Title: Configuration Settings | Respond To Unauthorized Changes Ownership: Customer, Microsoft Description: The organization employs The incident response process to respond to unauthorized changes to Security-relevant configuration settings. Requirements: Azure Security has developed a set of auditable events specific to Azure. In the event of changes to security-relevant configuration settings, Azure Security invokes the incident management process. In addition to auditable events, Azure utilizes Azure Security Monitoring (ASM) which is SCAP compatible to scan the environment for mandatory configuration changes. In the event of unauthorized changes to security-relevant configuration settings, Azure Security would invoke the incident management process. Each service team has a rotating list of members that are on call for response team efforts to investigate any unauthorized changes to security settings. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|