azure_compliance

Multi-Factor Authentication (MFA) should be enabled for all subscription accounts with owner permissions to prevent a breach of accounts or resources.

iam_user_with_owner_permission_on_subscription_mfa_enabled

hipaa_hitrust_v92_11109_01q1organizational

11109.01q1Organizational.57-01.q 01.05 Operating System Access Control

hipaa_hitrust_v92_1116_01j1organizational

1116.01j1Organizational.145-01.j 01.04 Network Access Control

hipaa_hitrust_v92_1121_01j3organizational

1121.01j3Organizational.2-01.j 01.04 Network Access Control

nist_sp_800_53_rev_5_ac_3

Access Enforcement (AC-3)

nist_sp_800_53_rev_5_ia_2

Identification and Authentication (organizational Users) (IA-2)

nist_sp_800_53_rev_5_ia_2_1

Multi-factor Authentication to Privileged Accounts IA-2(1)

pci_dss_v321_requirement_3_2

PCI DSS requirement 3.2

pci_dss_v321_requirement_7_2_1

PCI DSS requirement 7.2.1

pci_dss_v321_requirement_8_3_1

PCI DSS requirement 8.3.1

hipaa_hitrust_v92_1176_01j2organizational

The organization requires a callback capability with re-authentication to verify dial-up connections from authorized locations

Accounts with owner permissions on Azure resources should be MFA enabled

azure

arc_kubernetes_cluster_azure_defender_extension_installed

authorize_access_to_security_functions_and_information

automation_account_encrypted_with_cmk

bot_service_encrypted_with_cmk

cis_v130_3_2

cis_v130_3_4

cis_v130_4_3_8

cis_v130_5_1_1

cis_v130_5_3

cis_v130_7_4

cis_v130_7_5

cis_v130_7_6

cis_v130_7_7

cis_v130_8_3

cis_v130_9_11

cis_v130_9_6

cis_v130_9_7

cis_v130_9_8

cis_v140_3_2

cis_v140_3_4

cis_v140_4_3_7

cis_v140_5_1_1

cis_v140_5_3

cis_v140_7_4

cis_v140_7_5

cis_v140_7_6

cis_v140_7_7

cis_v140_8_5

cis_v140_9_11

cis_v140_9_6

cis_v140_9_7

cis_v140_9_8

cis_v150_10_1

cis_v150_2_1_12

cis_v150_2_2_2

cis_v150_2_2_3

cis_v150_2_5

cis_v150_3_4

cis_v150_3_6

cis_v150_4_3_7

cis_v150_5_1_1

cis_v150_5_1_7

cis_v150_5_3

cis_v150_7_4

cis_v150_7_5

cis_v150_7_6

cis_v150_9_11

cis_v150_9_6

cis_v150_9_7

cis_v150_9_8

cis_v200_10_1

cis_v200_2_1_12

cis_v200_2_1_13

cis_v200_2_1_16

cis_v200_2_1_17

cis_v200_2_2_1

cis_v200_3_4

cis_v200_3_6

cis_v200_4_5_3

cis_v200_5_1_1

cis_v200_5_4

cis_v200_6_7

cis_v200_7_5

cis_v200_7_6

cis_v200_7_7

cis_v200_9_11

cis_v200_9_6

cis_v200_9_7

cis_v200_9_8

cis_v210_10_1

cis_v210_2_1_12

cis_v210_2_1_13

cis_v210_2_1_15

cis_v210_2_1_22

cis_v210_2_2_1

cis_v210_3_16

cis_v210_3_3

cis_v210_3_4

cis_v210_3_6

cis_v210_4_5_3

cis_v210_5_1_1

cis_v210_5_4

cis_v210_6_7

cis_v210_7_5

cis_v210_7_6

cis_v210_7_7

cis_v210_7_8

cis_v210_9_10

cis_v300_10_1

cis_v300_3_1_10

cis_v300_3_1_11

cis_v300_3_1_15

cis_v300_3_1_3_2

cis_v300_3_1_3_4

cis_v300_3_1_3_5

cis_v300_3_1_4_2

cis_v300_3_1_4_3

cis_v300_3_2_1

cis_v300_4_4

cis_v300_4_5

manual_control

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Azure Compliance

Apache License 2.0

steampipe-mod-azure-compliance

Control: Accounts with owner permissions on Azure resources should be MFA enabled

Description

Usage

SQL

Tags