Framework/Configurations/SVT/AAD/AAD.Group.json
|
{ "FeatureName": "Group", "Reference": "aka.ms/azsktcp/group", "IsMaintenanceMode": false, "Controls": [ { "ControlID": "AAD_Group_Use_Security_Enabled", "Description": "All AAD groups must be security enabled (TBD)", "Id": "Group110", "ControlSeverity": "High", "Automated": "Yes", "MethodName": "CheckGroupsIsSecurityEnabled", "Rationale": "TODO-group-sec-enabled.", "Recommendation": "Refer: TODO", "Tags": [ "SDL", "TCP", "Manual", "AuthZ", "RBAC" ], "Enabled": true }, { "ControlID": "AAD_Group_Must_Have_Native_Owner", "Description": "Group must have at least one non-guest (native) owner", "Id": "Group120", "ControlSeverity": "Medium", "Automated": "Yes", "MethodName": "CheckGroupHasNonGuestOwner", "Rationale": "TODO-group-non-guest-owner", "Recommendation": "Refer: TODO", "Tags": [ "SDL", "TCP", "Manual", "AuthZ", "RBAC" ], "Enabled": true } ] } |