AZ-025 Microsoft Azure

Azure Policy assigns guardrails for required configurations.

Azure Policy assigns guardrails for required configurations.

Domain
Microsoft Azure
Area
Governance
Automated / manual
Automated

Risk if it fails

No policy = drift and silent misconfiguration.

Without automated guardrails, every new resource can be created insecurely. Policies stop the bad configuration before it ever becomes an exposure.

How Tess tests it

1 test — each concludes only on cited evidence.

Azure Policy assigns guardrails for required configurations.

Automated
Procedure
List policy assignments and confirm coverage of security baselines.

Read-only command 

az policy assignment list --query '[].{Name:displayName,Policy:policyDefinitionId}' -o table

More in Microsoft Azure

AZ-001 MFA is enforced for all users, especially privileged roles. AZ-002 Number of Global Administrators is limited (typically 2-4). AZ-003 Privileged Identity Management (PIM) provides just-in-time elevation. AZ-004 Legacy/basic authentication is blocked.

Want Tess to test AZ-025 against your evidence?

Book a demo