Interpretation of the Columns in Benchmark Compliance Rules:
Rule ID: A unique identifier for the specific security rule or check
Title: A brief description of the security issue or misconfiguration
Severity — Low to High: Determines the risk of being exposed to attacks
Service Type: The AWS service affected or evaluated by the rule
Resource Type: The specific AWS resource being audited
| Rule ID | Title | Severity | Service Type | Resource Type |
|---|---|---|---|---|
| CSPM-AZURE-2024-0001 | The Use of Guest Users Detected | Medium | Microsoft Graph API | Guest Users |
| CSPM-AZURE-2024-0047 | Microsoft Cloud App Security (MCAS) is Disabled in Security Center | High | Security | Security Settings |
| CSPM-AZURE-2024-0048 | Windows Defender ATP (WDATP) is Disabled in Security Center | High | Security | Security Settings |
| CSPM-AZURE-2024-0082 | Ensure Security Defaults is enabled on Microsoft Entra ID | Medium | Microsoft Entra ID | Security Defaults |
| CSPM-AZURE-2024-0086 | Ensure Trusted Locations Are Defined (Manual) | Medium | Microsoft Entra ID Conditional Access | Named Locations |
| CSPM-AZURE-2024-0104 | Ensure That ‘Guest users access restrictions’ is set to ‘Guest user access is restricted to properties and memberships of their own directory objects’ (Manual) | Medium | Microsoft Entra ID | Authorization Policies |
| CSPM-AZURE-2024-0105 | Ensure that ‘Guest invite restrictions’ is set to “Only users assigned to specific admin roles can invite guest users” (Manual) | Medium | Microsoft Entra ID | Authorization Policies |
| CSPM-AZURE-2024-0114 | Ensure That Microsoft Defender for App Services Is Set To ‘On’ (Automated) | Medium | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0115 | Ensure That Microsoft Defender for (Managed Instance) Azure SQL Databases Is Set To ‘On’ (Automated) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0116 | Ensure That Microsoft Defender for SQL Servers on Machines Is Set To ‘On’ (Automated) | High | Microsoft Defender | Pricings |
| CSPM-AZURE-2024-0117 | Ensure That Microsoft Defender for Open Source Relational Databases Is Set To ‘On’ (Automated) | Medium | Microsoft Defender | Pricings |
| CSPM-AZURE-2024-0118 | Ensure That Microsoft Defender for Azure Cosmos DB Is Set To ‘On’ (Automated) | High | Microsoft Defender | Pricings |
| CSPM-AZURE-2024-0119 | Ensure That Microsoft Defender for Storage Is Set To ‘On’ (Automated) | High | Microsoft Defender | Pricings |
| CSPM-AZURE-2024-0120 | Ensure That Microsoft Defender for Containers Is Set To ‘On’ (Automated) | High | Microsoft Defender | Pricings |
| CSPM-AZURE-2024-0121 | Ensure That Microsoft Defender for Key Vault Is Set To ‘On’ (Automated) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0122 | Ensure That Microsoft Defender for DNS Is Set To ‘On’ (Automated) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0123 | Ensure That Microsoft Defender for Resource Manager Is Set To ‘On’ (Automated) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0129 | Ensure that Microsoft Defender External Attack Surface Monitoring (EASM) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0130 | Ensure That Microsoft Defender for IoT Hub Is Set To ‘On’ (Manual) | High | Microsoft Defender | Security Configurations |
| CSPM-AZURE-2024-0167-01 | Ensure that SKU Basic/Consumption is not used on artifacts that need to be monitored (Particularly for Production Workloads) | Medium | Virtual Networks | Public IP Addresses |
| CSPM-AZURE-2024-0167-02 | Ensure that SKU Basic/Consumption is not used on artifacts that need to be monitored (Particularly for Production Workloads) | Medium | Load Balancer | Load Balancer |
| CSPM-AZURE-2024-0167-05 | Ensure that SKU Basic/Consumption is not used on artifacts that need to be monitored (Particularly for Production Workloads) | Medium | SQL Database | Database |
