Control: Audit Windows machines that have extra accounts in the Administrators group
Description
Requires that prerequisites are deployed to the policy assignment scope. Machines are non-compliant if the local Administrators group contains members that are not listed in the policy parameter.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.compute_vm_administrators_group_with_extra_accounts_windows
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.compute_vm_administrators_group_with_extra_accounts_windows --share
SQL
This control uses a named query:
manual_control_hipaa