You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/security-center/release-notes.md
+17-3Lines changed: 17 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -34,8 +34,7 @@ Security Center includes an optional feature to protect the management ports of
34
34
35
35
This update brings the following changes to this feature:
36
36
37
-
- The recommendation that advises you to enable JIT on a VM has been renamed. Formerly, "Just-in-time network access control should be applied on virtual machines" it's now:
38
-
"**Management ports should be protected with just-in-time network access control**"
37
+
- The recommendation that advises you to enable JIT on a VM has been renamed. Formerly, "Just-in-time network access control should be applied on virtual machines" it's now: "Management ports of virtual machines should be protected with just-in-time network access control".
39
38
40
39
- The recommendation has been set to be triggered only if there are open management ports.
41
40
@@ -74,4 +73,19 @@ To immediately see how well your organization is securing each individual attack
74
73
75
74
By default, your recommendations are shown in the security controls, but from this update you can display them as a list. To view them as simple list sorted by the health status of the affected resources, use the new toggle 'Group by controls' at the top of the list in the portal.
76
75
77
-
Learn more about security controls in [Enhanced secure score (preview) in Azure Security Center](secure-score-security-controls.md).
76
+
Learn more about security controls in [Enhanced secure score (preview) in Azure Security Center](secure-score-security-controls.md).
77
+
78
+
79
+
### Account security recommendations moved to "Security best practices" security control
80
+
81
+
One of the security controls introduced with the enhanced secure score was "Security best practices".
82
+
83
+
With this update, three recommendations have moved out of the controls in which they were originally placed, and into this best practices control.
84
+
85
+
The recommendations are:
86
+
87
+
- MFA should be enabled on accounts with read permissions on your subscription (this was originally in the "Enable MFA" control)
88
+
- External accounts with read permissions should be removed from your subscription (this was originally in the "Manage access and permissions" control)
89
+
- A maximum of 3 owners should be designated for your subscription (this was originally in the "Manage access and permissions" control)
90
+
91
+
Learn more about security controls in [Enhanced secure score (preview) in Azure Security Center](secure-score-security-controls.md).
0 commit comments