Control: Azure > CIS v1 > 8 Other Security Considerations > 8.03 Ensure that Resource Locks are set for mission critical Azure resources (Not Scored)
Configures auditing against a CIS Benchmark item.
Level: 2 (Not Scored)
Resource Manager Locks provide a way for administrators to lock down Azure resources to prevent deletion of, or modifications to, a resource. These locks sit outside of the Role Based Access Controls (RBAC) hierarchy and, when applied, will place restrictions on the resource for all users. These are very useful when there is have an important resource in a subscription that users should not be able to delete or change and can help prevent accidental and malicious changes or deletion.
Resource Types
This control targets the following resource types:
Primary Policies
The following policies can be used to configure this control:
- 8.03 Ensure that Resource Locks are set for mission critical Azure resources (Not Scored)
- 8.03 Ensure that Resource Locks are set for mission critical Azure resources (Not Scored) > Attestation
Category
In Your Workspace
Developers
- tmod:@turbot/azure-cisv1#/control/types/r0803
- tmod:@turbot/cis#/control/categories/v0714
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/azure-cisv1#/control/types/r0803"
Get Controls
Control Type URI
Category URI
GraphQL
CLI