turbot/azure_compliance

Control: Audit Windows machines that have extra accounts in the Administrators group

Description

Requires that prerequisites are deployed to the policy assignment scope. Machines are non-compliant if the local Administrators group contains members that are not listed in the policy parameter.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.compute_vm_administrators_group_with_extra_accounts_windows

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.compute_vm_administrators_group_with_extra_accounts_windows --share

SQL

This control uses a named query:

manual_control_hipaa

Tags