Benchmark: 11111.01q2System.4-01.q 01.05 Operating System Access Control

Description

When PKI-based authentication is used, the information system validates certificates by constructing and verifying a certification path to an accepted trust anchor, including checking certificate status information; enforces access to the corresponding private key; maps the identity to the corresponding account of the individual or group; and implements a local cache of revocation data to support path discovery and validation in case of an inability to access revocation information via the network.

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-azure-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 11111.01q2System.4-01.q 01.05 Operating System Access Control.

Run this benchmark in your terminal:

powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_11111_01q2system

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run azure_compliance.benchmark.hipaa_hitrust_v92_11111_01q2system --share

Controls

Accounts with read permissions on Azure resources should be MFA enabled

Benchmark: 11111.01q2System.4-01.q 01.05 Operating System Access Control

Description

Usage

Controls

Tags