Skip to main content

💼 General Access Controls

Contextual name: 💼 General Access Controls
ID: /frameworks/cloudaware/identity-and-access-governance/general-access-controls
Located in: 💼 Identity & Access Governance

Description

Policies for identifying and managing general permissions for resource access.

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (11)

Policy	Logic Count	Flags
📝 AWS CloudTrail IAM Policy Changes Monitoring is not enabled 🟢		🟢 x3
📝 AWS IAM AWSCloudShellFullAccess Policy is attached 🟢	1	🟢 x6
📝 AWS IAM Policy allows full administrative privileges 🟢	1	🟢 x6
📝 Azure Subscription Leaving Microsoft Entra ID Directory and Subscription Entering Microsoft Entra ID Directory is not set to Permit No One 🟢		🟢 x3
📝 Google Organization Essential Contacts is not configured 🟢	1	🟢 x6
📝 Microsoft Entra ID Conditional Access By Location is not defined 🟢		🟢 x3
📝 Microsoft Entra ID Default User Role can create tenants 🟢	1	🟢 x6
📝 Microsoft Entra ID Device Code Authentication Flow is not restricted 🟢		🟢 x3
📝 Microsoft Entra ID Named Locations are not defined 🟢		🟢 x3
📝 Microsoft Entra ID Remember MFA devices setting is disabled 🟢		🟢 x3
📝 Microsoft Entra ID Security Defaults are not enabled 🟢		🟢 x3

Description
Similar
Sub Sections
Policies (11)