💼 5.3.5 Ensure Disabled User Accounts do not Have Read, Write, or Owner Permissions (Manual)

ID: /frameworks/cis-azure-v6.0.0/05/03/05

Description

Ensure that any roles granting read, write, or owner permissions are removed from disabled Azure user accounts.

While an automated assessment procedure exists for this recommendation, the assessment status remains manual. Removing role assignments from disabled user accounts depends on the context and requirements of each organization and environment.

Similar

Sections
- /frameworks/cis-azure-v5.0.0/05/03/05

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v5.0.0 → 💼 5.3.5 Ensure disabled user accounts do not have read, write, or owner permissions (Manual)			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v5.0.0 → 💼 5.3.5 Ensure disabled user accounts do not have read, write, or owner permissions (Manual)			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ Azure disabled User Accounts have read, write, or owner permissions🟢⚪		🟢 x2, ⚪ x1	no data

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​