Loading controls...
Control: 1.11 Ensure that 'Users can register applications' is set to 'No'
Description
Require administrators to register third-party applications.
It is recommended to let administrator register custom-developed applications. This ensures that the application undergoes a security review before exposing active directory data to it.
Remediation
From Console
- Log in to Azure Active Directory
- Go to
Users
- Go to
User settings
in side bar - Set
Users can register applications
to No
Note: By default, Users can add gallery apps to their Access Panel
is set to 'No'.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.cis_v130_1_11
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.cis_v130_1_11 --share
SQL
This control uses a named query:
ad_manual_control