| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1635 - Boundary Protection | Host-Based Protection | ||
| Id | 87551b5d-1deb-4d0f-86cc-9dc14cb4bf7e | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this System and Communications Protection control | ||
| Additional metadata |
Name/Id: ACF1635 / Microsoft Managed Control 1635 Category: System and Communications Protection Title: Boundary Protection | Host-Based Protection Ownership: Customer, Microsoft Description: The organization implements Packet Filtering, Firewalls, Event Reporting, Vulnerability Scanning Tools at all servers in the Microsoft Azure environment. Requirements: Azure implements the following host-based boundary protection mechanisms: * IP Filtering * VFP Filtering (for virtual machines) * Host-based firewalls * Guest firewalls (for virtual machines) Azure uses a combination of detection and fast response via several methods to address the risk of intrusion. This includes the use of event forwarding tools, security incident and event management tools, vulnerability scanning and reporting tools, and centrally managed anti-virus on Azure assets. These tools are forms of host-based protection. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|