Ensure that the total number of subscription owners created for your Microsoft Azure account subscriptions is monitored by Azure Security Center service. Cloud Conformity recommends designating up to 3 Azure subscription owners in order to reduce the potential for security breaches by one or more compromised owners.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
As a security best practice, a maximum number of 3 owners should be designated for a Microsoft Azure subscription. By monitoring the number of subscription owners using Azure Security Center you can enforce these best practices and always maintain a maximum of 3 subscription owners. This should reduce the risk of a compromised owner's account being used to gain access to your subscription.
Audit
To determine if the number of subscription owners is monitored using Azure Security Center service, perform the following actions:
Remediation / Resolution
To start monitoring the total number of subscription owners using Microsoft Azure Security Center service, perform the following actions:
References
- Azure Official Documentation
- Monitor identity and access
- Azure security policies monitored by Security Center
- Working with security policies
- Azure Command Line Interface (CLI) Documentation
- az
- az account get-access-token
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.

You are auditing:
Monitor the Total Number of Subscription Owners
Risk level: Medium