| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1150 - Security Assessments | External Organizations | ||
| Id | d630429d-e763-40b1-8fba-d20ba7314afb | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Security Assessment and Authorization control | ||
| Additional metadata |
Name/Id: ACF1150 / Microsoft Managed Control 1150 Category: Security Assessment and Authorization Title: Security Assessments | External Organizations Ownership: Customer, Microsoft Description: The organization accepts the results of an assessment of Microsoft Azure performed by FedRAMP-certified 3PAO, specific to FedRAMP certification when the assessment meets the requirements of NIST SP 800-53r4 framework. Requirements: Microsoft utilizes the Third Party Assessment Organization (3PAO) as an independent assessor to conduct a security control assessment of Azure and its components against the requirements of NIST SP 800-53, Rev. 4, Security and Privacy Controls for Federal Information Systems and Organizations. Azure accepts the results of the assessment from the 3PAO when the assessment meets the conditions of the Provisional ATO. The results of the assessment are documented in the SAR and submitted for authorizing official approval. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|