| Source | Azure Portal | |||||||||||||||||||||||||||||||||
| Display name | Microsoft Managed Control 1238 - User-Installed Software | |||||||||||||||||||||||||||||||||
| Id | a36cedd4-3ffd-4b1f-8b18-aa71d8d87ce1 | |||||||||||||||||||||||||||||||||
| Version | 1.0.0 Details on versioning |
|||||||||||||||||||||||||||||||||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
|||||||||||||||||||||||||||||||||
| Category | Regulatory Compliance Microsoft Learn |
|||||||||||||||||||||||||||||||||
| Description | Microsoft implements this Configuration Management control | |||||||||||||||||||||||||||||||||
| Additional metadata |
Name/Id: ACF1238 / Microsoft Managed Control 1238 Category: Configuration Management Title: User-Installed Software - Establish Policies Ownership: Customer, Microsoft Description: The organization: Establishes Microsoft Azure policy governing the installation of software by users; Requirements: The Microsoft Security Policy outlines the Microsoft user-installed software restrictions for Azure. In accordance with the policy, all software installed in the Azure environment, prior to being released into production, must go through the change management process and be approved by the appropriate stakeholders. The following guidelines are in place regarding the installation of software, including open source software, within the Azure environment: * All software installed within Azure must be approved by the appropriate stakeholders prior to being released into production. * Prior to deployment in Azure, all software must be tested in a manner suitable to Microsoft to evaluate its impact on system performance, stability (failure and recovery characteristics) and security state (security controls work as expected and the product does not contain malicious code). * Software submitted for approval must have a legitimate business purpose. Additionally, open source software must be evaluated by CELA in accordance with the policies and processes set out in Microsoft’s open source software resource website. Requests for evaluation of open source software require approval through the OSS Registration Tool. |
|||||||||||||||||||||||||||||||||
| Mode | Indexed | |||||||||||||||||||||||||||||||||
| Type | Static | |||||||||||||||||||||||||||||||||
| Preview | False | |||||||||||||||||||||||||||||||||
| Deprecated | False | |||||||||||||||||||||||||||||||||
| Effect | Fixed audit |
|||||||||||||||||||||||||||||||||
| RBAC role(s) | none | |||||||||||||||||||||||||||||||||
| Rule aliases | none | |||||||||||||||||||||||||||||||||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
|||||||||||||||||||||||||||||||||
| Compliance |
The following 2 compliance controls are associated with this Policy definition 'Microsoft Managed Control 1238 - User-Installed Software' (a36cedd4-3ffd-4b1f-8b18-aa71d8d87ce1)
| |||||||||||||||||||||||||||||||||
| Initiatives usage |
|
|||||||||||||||||||||||||||||||||
| History | none | |||||||||||||||||||||||||||||||||
| JSON compare | n/a | |||||||||||||||||||||||||||||||||
| JSON |
|