| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1173 - Internal System Connections | ||
| Id | c4aff9e7-2e60-46fa-86be-506b79033fc5 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Security Assessment and Authorization control | ||
| Additional metadata |
Name/Id: ACF1173 / Microsoft Managed Control 1173 Category: Security Assessment and Authorization Title: Internal System Connections - Documentation of Interface Characteristics Ownership: Customer, Microsoft Description: The organization: Documents, for each internal connection, the interface characteristics, security requirements, and the nature of the information communicated. Requirements: As part of standard configuration management processes, Azure documents interface characteristics and security requirements for individual components connected to the environment. These documents go through privacy, compliance, and security reviews. To request a change to the host-based firewall, the service team must populate a questionnaire, providing descriptions of the request, requirements, and justification for the change. Depending on the asset classification of data, descriptions may include data types, current compliance with data handling, and any risk assessment or threat analysis the Azure team has conducted in coordination with Privacy, Corporate, External, and Legal Affairs (CELA), or C+AI Security. The Azure team must also provide documentation to help C+AI Security Solutions assess operational risks (e.g. architecture and network diagrams, infrastructure threat models, etc.). |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|