You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: azure-stack/hci/assurance/azure-stack-hipaa-guidance.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: HIPAA guidance for Azure Local
3
3
description: Learn about HIPAA compliance using Azure Local.
4
-
ms.date: 10/24/2024
4
+
ms.date: 11/08/2024
5
5
ms.topic: conceptual
6
6
ms.service: azure-stack-hci
7
7
ms.author: nguyenhung
@@ -15,7 +15,7 @@ This article provides guidance on how organizations can most efficiently navigat
15
15
16
16
## Healthcare compliance
17
17
18
-
The [Health Insurance Portability and Accountability Act of 1996](https://www.cdc.gov/phlp/php/resources/health-insurance-portability-and-accountability-act-of-1996-hipaa.html) (HIPAA) and healthcare standards such as Health Information Technology for Economic and Clinical Health (HITECH) and [Health Information Trust Alliance](https://hitrustalliance.net/hitrust-csf/) (HITRUST) protect the confidentiality, integrity, and availability of patients' protected health information (PHI). These regulations and standards ensure that healthcare organizations such as doctors' offices, hospitals, and health insurers ("covered entities") create, receive, maintain, transmit, or access PHI appropriately. In addition, their requirements extend to business associates who provide services that involve PHI for the covered entities. Microsoft is an example of a business associate that provides information technology services like Azure Local to help healthcare companies store and process PHI more efficiently and securely. The following sections provide information on how Azure Local capabilities help organizations meet these requirements.
18
+
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) and healthcare standards such as Health Information Technology for Economic and Clinical Health (HITECH) and [Health Information Trust Alliance](https://hitrustalliance.net/hitrust-csf/) (HITRUST) protect the confidentiality, integrity, and availability of patients' protected health information (PHI). These regulations and standards ensure that healthcare organizations such as doctors' offices, hospitals, and health insurers ("covered entities") create, receive, maintain, transmit, or access PHI appropriately. In addition, their requirements extend to business associates who provide services that involve PHI for the covered entities. Microsoft is an example of a business associate that provides information technology services like Azure Local to help healthcare companies store and process PHI more efficiently and securely. The following sections provide information on how Azure Local capabilities help organizations meet these requirements.
19
19
20
20
## Shared responsibilities
21
21
@@ -96,7 +96,7 @@ Microsoft Defender for Cloud and Microsoft Sentinel is natively integrated with
96
96
97
97
#### Azure Local Insights
98
98
99
-
Azure Local Insights enables you to monitor health, performance, and usage information for clusters that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for a single cluster or multiple clusters from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
99
+
Azure Local Insights enables you to monitor health, performance, and usage information for systems that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for single node or multi-node systems from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
100
100
101
101
#### Azure Local Metrics
102
102
@@ -126,7 +126,7 @@ Windows Defender Application Control (WDAC) is enabled by default on Azure Local
126
126
127
127
#### Microsoft Defender for Cloud
128
128
129
-
Microsoft Defender for Cloud with Endpoint Protection (enabled through server plans) provides a security posture management solution with advanced threat protection capabilities. It provides you with tools to assess the security status of your infrastructure, protect workloads, raise security alerts, and follow specific recommendations to remediate attacks and address future threats. It performs all these services at high speed in the cloud with no deployment overhead through autoprovisioning and protection with Azure services. Learn more at [Microsoft Defender for Cloud](https://azure.microsoft.com/products/defender-for-cloud/).
129
+
Microsoft Defender for Cloud with Endpoint Protection (enabled through the [Defender for Servers plan](/azure/defender-for-cloud/plan-defender-for-servers-select-plan)) provides a security posture management solution with advanced threat protection capabilities. It provides you with tools to assess the security status of your infrastructure, protect workloads, raise security alerts, and follow specific recommendations to remediate attacks and address future threats. It performs all these services at high speed in the cloud with no deployment overhead through autoprovisioning and protection with Azure services. Learn more at [Microsoft Defender for Cloud](https://azure.microsoft.com/products/defender-for-cloud/).
130
130
131
131
### Backup and recovery
132
132
@@ -147,7 +147,7 @@ This service allows you to replicate workloads running on your on-premises Azure
147
147
This service enables you to back up Azure Local virtual machines, specifying a desired frequency and retention period. You can use MABS to back up most of your resources across the environment, including:
148
148
149
149
- System State/Bare-Metal Recovery (BMR) of Azure Local host
150
-
- Guest VMs in a cluster that has local or directly attached storage
150
+
- Guest VMs in a system that has local or directly attached storage
151
151
- Guest VMs on Azure Local instance with CSV storage
Copy file name to clipboardExpand all lines: azure-stack/hci/assurance/azure-stack-iso27001-guidance.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: ISO 27001 guidance for Azure Local
3
3
description: Learn about ISO 27001 compliance using Azure Local.
4
-
ms.date: 10/29/2024
4
+
ms.date: 11/07/2024
5
5
ms.topic: conceptual
6
6
ms.service: azure-stack-hci
7
7
ms.author: nguyenhung
@@ -11,7 +11,7 @@ ms.reviewer: alkohli
11
11
12
12
# Azure Local and ISO/IEC 27001:2022
13
13
14
-
This article outlines how Azure Local helps organizations meet the security control requirements of ISO/IEC 27001:2022, both in cloud and on premises. Learn more about Azure Stack and other security standards at [Azure Stack and security standards](azure-stack-security-standards.md).
14
+
This article outlines how Azure Local helps organizations meet the security control requirements of ISO/IEC 27001:2022, both in cloud and on premises. Learn more about Azure Local and other security standards at [Azure Local and security standards](azure-stack-security-standards.md).
15
15
16
16
## ISO/IEC 27001:2022
17
17
@@ -132,15 +132,15 @@ The monitoring functionality described in this section can assist you in meeting
132
132
133
133
#### Insights for Azure Local
134
134
135
-
Insights for Azure Local enables you to monitor health, performance, and usage information for systems that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for a single cluster or multiple clusters from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
135
+
Insights for Azure Local enables you to monitor health, performance, and usage information for systems that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for both single node and multi-node systems from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
136
136
137
137
#### Metrics for Azure Local
138
138
139
139
Metrics for Azure Local stores numeric data from monitored resources into a time-series database. You can use [Azure Monitor metrics explorer](/azure/azure-monitor/essentials/analyze-metrics) to interactively analyze the data in your metric database and chart the values of multiple metrics over time. With Metrics, you can create charts from metric values and visually correlate trends.
140
140
141
141
#### Log alerts
142
142
143
-
To indicate problems in real time, you may set up alerts for Azure Local systems, using pre-existing sample log queries such as average server CPU, available memory, available volume capacity and more. Learn more at [Set up alerts for Azure Local systems](/azure-stack/hci/manage/setup-hci-system-alerts).
143
+
To indicate problems in real time, set up alerts for Azure Local, using pre-existing sample log queries such as average server CPU, available memory, available volume capacity and more. Learn more at [Set up alerts for Azure Local systems](/azure-stack/hci/manage/setup-hci-system-alerts).
144
144
145
145
#### Metric alerts
146
146
@@ -237,4 +237,4 @@ Azure Local uses hyperconverged models of Storage Spaces Direct to deploy worklo
237
237
238
238
#### Failover clusters
239
239
240
-
Azure Local instances are failover clusters. If a server that is part of Azure Local fails or becomes unavailable, another server in the same failover cluster takes over the task of providing the services offered by the failed node. You create a failover cluster by enabling Storage Spaces Direct on multiple servers running Azure Local.
240
+
Azure Local instances are failover clusters. If a server that is part of Azure Local fails or becomes unavailable, another server in the same failover cluster takes over the task of providing the services offered by the failed node. You create a failover cluster by enabling Storage Spaces direct on multiple machines running Azure Local.
Copy file name to clipboardExpand all lines: azure-stack/hci/assurance/azure-stack-pci-dss-guidance.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,7 +1,7 @@
1
1
---
2
2
title: PCI DSS guidance for Azure Local
3
3
description: Learn about PCI DSS compliance using Azure Local.
4
-
ms.date: 10/29/2024
4
+
ms.date: 11/07/2024
5
5
ms.topic: conceptual
6
6
ms.service: azure-stack-hci
7
7
ms.author: nguyenhung
@@ -101,7 +101,7 @@ Windows Defender Application Control (WDAC) is enabled by default on Azure Local
101
101
102
102
#### Microsoft Defender for Cloud
103
103
104
-
Microsoft Defender for Cloud with Endpoint Protection (enabled through server plans) provides a security posture management solution with advanced threat protection capabilities. It provides you with tools to assess the security status of your infrastructure, protect workloads, raise security alerts, and follow specific recommendations to remediate attacks and address future threats. It performs all these services at high speed in the cloud with no deployment overhead through autoprovisioning and protection with Azure services. Learn more at [Microsoft Defender for Cloud](https://azure.microsoft.com/products/defender-for-cloud/).
104
+
Microsoft Defender for Cloud with Endpoint Protection (enabled through the [Defender for Servers plan](/azure/defender-for-cloud/plan-defender-for-servers-select-plan)) provides a security posture management solution with advanced threat protection capabilities. It provides you with tools to assess the security status of your infrastructure, protect workloads, raise security alerts, and follow specific recommendations to remediate attacks and address future threats. It performs all these services at high speed in the cloud with no deployment overhead through autoprovisioning and protection with Azure services. Learn more at [Microsoft Defender for Cloud](https://azure.microsoft.com/products/defender-for-cloud/).
105
105
106
106
### Requirement 6: Develop and maintain secure systems and software
107
107
@@ -119,7 +119,7 @@ It is your responsibility to identify roles and their access needs based on the
119
119
120
120
### Requirement 8: Identify users and authenticate access to system components
121
121
122
-
Azure Local provides full and direct access to the underlying system running on cluster nodes via multiple interfaces such as Azure Arc and Windows PowerShell. You can use either conventional Windows tools in local environments or cloud-based solutions like Microsoft Entra ID (formerly Azure Active Directory) to manage identity and access to the platform. In both cases, you can take advantage of built-in security features, such as multifactor authentication (MFA), conditional access, role-based access control (RBAC), and privileged identity management (PIM) to ensure your environment is secure and compliant.
122
+
Azure Local provides full and direct access to the underlying system running on machines via multiple interfaces such as Azure Arc and Windows PowerShell. You can use either conventional Windows tools in local environments or cloud-based solutions like Microsoft Entra ID (formerly Azure Active Directory) to manage identity and access to the platform. In both cases, you can take advantage of built-in security features, such as multifactor authentication (MFA), conditional access, role-based access control (RBAC), and privileged identity management (PIM) to ensure your environment is secure and compliant.
123
123
124
124
Learn more about local identity and access management at [Microsoft Identity Manager](/microsoft-identity-manager/microsoft-identity-manager-2016) and [Privileged Access Management for Active Directory Domain Services](/microsoft-identity-manager/pam/privileged-identity-management-for-active-directory-domain-services). Learn more about cloud-based identity and access management at [Microsoft Entra ID](/entra/fundamentals/whatis).
125
125
@@ -139,7 +139,7 @@ Azure Local Lifecycle Manager creates and stores activity logs for any action pl
139
139
140
140
#### Cloud activity logs
141
141
142
-
By registering your clusters with Azure, you can use [Azure Monitor activity logs](/azure/azure-monitor/essentials/activity-log) to record operations on each resource at the subscription layer to determine the what, who, and when for any write operations (put, post, or delete) taken on the resources in your subscription.
142
+
By registering your systems with Azure, you can use [Azure Monitor activity logs](/azure/azure-monitor/essentials/activity-log) to record operations on each resource at the subscription layer to determine the what, who, and when for any write operations (put, post, or delete) taken on the resources in your subscription.
143
143
144
144
#### Cloud identity logs
145
145
@@ -151,7 +151,7 @@ Microsoft Defender for Cloud and Microsoft Sentinel is natively integrated with
151
151
152
152
#### Azure Local Insights
153
153
154
-
Azure Local Insights enables you to monitor health, performance, and usage information for clusters that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for a single cluster or multiple clusters from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
154
+
Azure Local Insights enables you to monitor health, performance, and usage information for systems that are connected to Azure and are enrolled in monitoring. During Insights configuration, a data collection rule is created, which specifies the data to be collected. This data is stored in a Log Analytics workspace, which is then aggregated, filtered, and analyzed to provide prebuilt monitoring dashboards using Azure workbooks. You can view the monitoring data for both single node and multi-node systems from your Azure Local resource page or Azure Monitor. Learn more at [Monitor Azure Local with Insights](/azure-stack/hci/manage/monitor-hci-single?tabs=22h2-and-later).
0 commit comments