Benchmark: Azure CIS v5.0.0
Overview
The CIS Microsoft Azure Foundations Security Benchmark v5.0.0 provides prescriptive guidance for establishing a secure baseline configuration for Microsoft Azure.
This benchmark is a set of security configuration best practices for Microsoft Azure. These best practices are based on the experience of the CIS community members and their deployments of Azure services.
Sections
The benchmark is organized into the following sections:
- Section 2: Analytics Services
- Section 3: Compute Services
- Section 4: Database Services
- Section 5: Identity Services
- Section 6: Management and Governance Services
- Section 7: Networking Services
- Section 8: Security Services
- Section 9: Storage Services
Getting Started
To run the benchmark, you can use the following command:
powerpipe benchmark run azure_compliance.benchmark.cis_v500
Documentation
For more information about the CIS Microsoft Azure Foundations Security Benchmark, please refer to the official CIS documentation.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select Azure CIS v5.0.0.
Run this benchmark in your terminal:
powerpipe benchmark run azure_compliance.benchmark.cis_v500Snapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_compliance.benchmark.cis_v500 --shareBenchmarks
- 2 Analytics Services
- 3 Compute Services
- 5 Identity Services
- 6 Management and Governance Services
- 7 Networking Services
- 8 Security Services
- 9 Storage Services