Policy: Azure > CIS v1.2 > 7 - Virtual Machines
Covers security recommendations for Azure Compute.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Related Policies
- 7.01 - Ensure Virtual Machines are utilizing Managed Disks (Scored)
- 7.02 - Ensure that 'OS and Data' disks are encrypted with CMK (Scored)
- 7.03 - Ensure that 'Unattached disks' are encrypted with CMK (Scored)
- 7.04 - Ensure that only approved extensions are installed (Not Scored)
- 7.05 - Ensure that the latest OS Patches for all Virtual Machines are applied (Not Scored)
- 7.06 - Ensure that the endpoint protection for all Virtual Machines is installed (Not Scored)
- Maximum Attestation Duration
Controls
Policy Specification
Schema Type |
|
---|---|
Default |
|
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/cis#/control/categories/cis
- tmod:@turbot/azure-cisv1-2#/policy/types/s07
- turbot graphql policy-type --id "tmod:@turbot/azure-cisv1-2#/policy/types/s07"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv1-2#/policy/types/s07"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI