| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1136 - Audit Record Retention | ||
| Id | 97ed5bac-a92f-4f6d-a8ed-dc094723597c | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Audit and Accountability control | ||
| Additional metadata |
Name/Id: ACF1136 / Microsoft Managed Control 1136 Category: Audit and Accountability Title: Audit Record Retention Ownership: Customer, Microsoft Description: The organization retains audit records for 1 year to provide support for after-the-fact investigations of security incidents and to meet regulatory and organizational information retention requirements. Requirements: Azure retains collected logs in storage for at least ninety (90) days to support investigations of security incidents and to meet regulatory retention requirements. Azure stores audit logs offline for at least one (1) year within Kusto storage. C+AI Security has developed an archiving infrastructure to securely store audit records on servers dedicated to archival purposes. The servers are designed to verify the integrity of archived files and allows authorized user to browse to an archive location. Audit records are stored in centralized log servers that are protected against alteration. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|