Benchmark: 11 Access Control
Description
Default and unnecessary system accounts are removed, disabled, or otherwise secured (e.g., the passwords are changed, and privileges are reduced to the lowest access levels). Account managers are notified when users' access rights change (e.g., termination, change in position) and modify the user's account accordingly.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select 11 Access Control.
Run this benchmark in your terminal:
powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_access_controlSnapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_access_control --shareBenchmarks
- 11109.01q1Organizational.57-01.q 01.05 Operating System Access Control
- 11111.01q2System.4-01.q 01.05 Operating System Access Control
- 11112.01q2Organizational.67-01.q 01.05 Operating System Access Control
- 1116.01j1Organizational.145-01.j 01.04 Network Access Control
- 1118.01j2Organizational.124-01.j 01.04 Network Access Control
- 11180.01c3System.6-01.c 01.02 Authorized Access to Information Systems
- 1119.01j2Organizational.3-01.j 01.04 Network Access Control
- 1120.09ab3System.9-09.ab 09.10 Monitoring
- 1121.01j3Organizational.2-01.j 01.04 Network Access Control
- 1123.01q1System.2-01.q 01.05 Operating System Access Control
- 1125.01q2System.1-01.q 01.05 Operating System Access Control
- 1127.01q2System.3-01.q 01.05 Operating System Access Control
- 1143.01c1System.123-01.c 01.02 Authorized Access to Information Systems
- 1144.01c1System.4-01.c 01.02 Authorized Access to Information Systems
- 1145.01c2System.1-01.c 01.02 Authorized Access to Information Systems
- 1146.01c2System.23-01.c 01.02 Authorized Access to Information Systems
- 1147.01c2System.456-01.c 01.02 Authorized Access to Information Systems
- 1148.01c2System.78-01.c 01.02 Authorized Access to Information Systems
- 1150.01c2System.10-01.c 01.02 Authorized Access to Information Systems
- 1151.01c3System.1-01.c 01.02 Authorized Access to Information Systems
- 1152.01c3System.2-01.c 01.02 Authorized Access to Information Systems
- 1153.01c3System.35-01.c 01.02 Authorized Access to Information Systems
- 1175.01j1Organizational.8-01.j 01.04 Network Access Control
- 1178.01j2Organizational.7-01.j 01.04 Network Access Control
- 1179.01j3Organizational.1-01.j 01.04 Network Access Control
- 1192.01l1Organizational.1-01.l 01.04 Network Access Control
- 1193.01l2Organizational.13-01.l 01.04 Network Access Control
- 1194.01l2Organizational.2-01.l 01.04 Network Access Control
- 1195.01l3Organizational.1-01.l 01.04 Network Access Control
- 1197.01l3Organizational.3-01.l 01.04 Network Access Control