Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[RULE] List Guest and Disabled accounts with Read and/or Write access to Azure subscription #3239

Open
Leandroesc opened this issue Feb 3, 2025 · 0 comments
Open

[RULE] List Guest and Disabled accounts with Read and/or Write access to Azure subscription #3239

Leandroesc opened this issue Feb 3, 2025 · 0 comments
Labels
feature: in-flight-export Issues that related to exporting resource data for in-flight analysis. pillar: operational-execellence Aligned to the Operational Excellence pillar.

Comments

@Leandroesc
Copy link

Existing rule

No response

Suggested rule

Exporting the list of current disabled and guest accounts with read or write access to resources using the Export-AzRuleData script will help customers understand that there are current security risks opened without proper governance in place. These risks are highlighted in Azure Advisor as high severity

Pillar

Operational Excellence

Additional context

This risk could be added to the security pillar in WAF, however as it's an operations activity, it could be also added to the operational excellence pillar.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/managing-and-responding-alerts
@Leandroesc Leandroesc added Needs: Triage 🔍 Needs attention from the team. rule The issue relates to a rule labels Feb 3, 2025
@BernieWhite BernieWhite added pillar: operational-execellence Aligned to the Operational Excellence pillar. feature: in-flight-export Issues that related to exporting resource data for in-flight analysis. and removed rule The issue relates to a rule Needs: Triage 🔍 Needs attention from the team. labels Feb 7, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature: in-flight-export Issues that related to exporting resource data for in-flight analysis. pillar: operational-execellence Aligned to the Operational Excellence pillar.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@BernieWhite @Leandroesc