azure_compliance

Azure Compliance

Open remote management ports are exposing your VM to a high level of risk from Internet-based attacks. These attacks attempt to brute force credentials to gain admin access to the machine.

network_security_group_remote_access_restricted

hipaa_hitrust_v92_1143_01c1system

1143.01c1System.123-01.c 01.02 Authorized Access to Information Systems

hipaa_hitrust_v92_1150_01c2system

1150.01c2System.10-01.c 01.02 Authorized Access to Information Systems

hipaa_hitrust_v92_1193_01l2organizational

1193.01l2Organizational.13-01.l 01.04 Network Access Control

nist_sp_800_171_rev_2_3_1_3

3.1.3 Control the flow of CUI in accordance with approved authorizations

nist_sp_800_171_rev_2_3_13_1

3.13.1 Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the external boundaries and key internal boundaries of organizational systems

nist_sp_800_171_rev_2_3_13_2

3.13.2 Employ architectural designs, software development techniques, and systems engineering principles that promote effective information security within organizational systems

nist_sp_800_171_rev_2_3_13_5

3.13.5 Implement subnetworks for publicly accessible system components that are physically or logically separated from internal networks

nist_sp_800_171_rev_2_3_13_6

3.13.6 Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit by exception)

nist_sp_800_53_rev_5_sc_7_3

Access Points SC-7(3)

fedramp_high_sc_7

Boundary Protection (SC-7)

nist_sp_800_53_rev_5_sc_7

rbi_itf_nbfc_v2017_it_governance_1_1

IT Governance-1.1

nist_sp_800_53_rev_5_ac_4

Information Flow Enforcement (AC-4)

fedramp_high_ac_4

all_controls_network

Network

fedramp_high_sc_7_3

SC-7(3) Access Points

Management ports should be closed on your virtual machines

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: Management ports should be closed on your virtual machines

Description

Usage

SQL

Tags