| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1330 - Authenticator Management | Password-Based Authentication | ||
| Id | f75cedb2-5def-4b31-973e-b69e8c7bd031 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Identification and Authentication control | ||
| Additional metadata |
Name/Id: ACF1330 / Microsoft Managed Control 1330 Category: Identification and Authentication Title: Authenticator Management | Password-Based Authentication - Lifetime Restrictions Ownership: Customer, Microsoft Description: The information system, for password-based authentication: Enforces password minimum and maximum lifetime restrictions of 1 day minimum, 70 day maximum; Requirements: Where passwords exist, Azure enforces password minimum and maximum lifetime restrictions of at least one (1) day minimum and seventy (70) days maximum age in accordance with C+AI Security policy. Azure implements strong password complexity, password expiration, password history, account lockout, and minimum password length to provide mitigation to the risks of not applying minimum and maximum life-time password restrictions to authorizing official requirements. Additionally, the use of multifactor authentication provides strong security controls against credential guessing attacks. Azure considers these mitigating factors sufficient to address the incremental risk between Azure and required values for password length and expiration. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|