azure_compliance

Azure Compliance

The Guest Configuration extension requires a system assigned managed identity. Azure virtual machines in the scope of this policy will be non-compliant when they have the Guest Configuration extension installed but do not have a system assigned managed identity.

compute_vm_guest_configuration_with_system_assigned_managed_identity

nist_sp_800_53_rev_5_au_12

Audit Record Generation (AU-12)

nist_sp_800_53_rev_5_au_6_4

Central Review and Analysis AU-6(4)

all_controls_compute

Compute

nist_sp_800_53_rev_5_au_6_5

Integrated Analysis of Audit Records AU-6(5)

nist_sp_800_53_rev_5_si_4

System Monitoring (SI-4)

nist_sp_800_53_rev_5_au_12_1

System-wide and Time-correlated Audit Trail AU-12(1)

Virtual machines' Guest Configuration extension should be deployed with system-assigned managed identity

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: Virtual machines' Guest Configuration extension should be deployed with system-assigned managed identity

Description

Usage

SQL

Tags