πΌ 2.8 Ensure that a Custom Bad Password List is set to 'Enforce' for your Organization (Manual)
- Contextual name: πΌ 2.8 Ensure that a Custom Bad Password List is set to 'Enforce' for your Organization (Manual)
- ID:
/frameworks/cis-azure-v3.0.0/02/08
- Located in: πΌ 2 Identity
Descriptionβ
Microsoft Azure provides a Global Banned Password policy that applies to Azure administrative
and normal user accounts. This is not applied to user accounts that are synced from an on-premise
Active Directory unless Microsoft Entra ID Connect is used and you enable
EnforceCloudPasswordPolicyForPasswordSyncedUsers. Please see the list in default values on the
specifics of this policy. To further password security, it is recommended to further define a
custom banned password policy.
Similarβ
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β