azure_compliance

Azure Compliance

Although SSH itself provides an encrypted connection, using passwords with SSH still leaves the VM vulnerable to brute-force attacks. The most secure option for authenticating to an Azure Linux virtual machine over SSH is with a public-private key pair, also known as SSH keys.

compute_vm_ssh_key_authentication_linux

nist_sp_800_171_rev_2_3_1_1

3.1.1 Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems)

nist_sp_800_171_rev_2_3_5_2

3.5.2 Authenticate (or verify) the identities of users, processes, or devices, as a prerequisite to allowing access to organizational systems.

nist_sp_800_53_rev_5_ac_3

Access Enforcement (AC-3)

fedramp_high_ac_3

fedramp_high_ia_5

Authenticator Management (IA-5)

nist_sp_800_53_rev_5_ia_5

all_controls_compute

Compute

Authentication to Linux machines should require SSH keys

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: Authentication to Linux machines should require SSH keys

Description

Usage

SQL

Tags