| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1120 - Audit Review, Analysis, And Reporting | Integration / Scanning And Monitoring Capabilities | ||
| Id | c69b870e-857b-458b-af02-bb234f7a00d3 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Audit and Accountability control | ||
| Additional metadata |
Name/Id: ACF1120 / Microsoft Managed Control 1120 Category: Audit and Accountability Title: Audit Review, Analysis, And Reporting | Integration / Scanning And Monitoring Capabilities Ownership: Customer, Microsoft Description: The organization integrates analysis of audit records with analysis of vulnerability scanning information, performance data, information system monitoring information, penetration test data to further enhance the ability to identify inappropriate or unusual activity. Requirements: Azure correlates vulnerability scanning information with internal and external penetration test results and audit records to gain a more complete picture of potential exploits and to enhance the ability to detect inappropriate activity, should it occur. Additionally, Azure uses vulnerability scanning reports in conjunction with performance and system monitoring data to identify unusual activity. Azure combines the use of various sources of intelligence to aid incident investigation on an as-needed basis, including the use of audit logging data, incident response reports, vulnerability scan data, and penetration testing results. The correlation of this information is part of the identification phase of the incident management process and aids in discovering the presence of inappropriate activity in the Azure environment. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|