Best practices

Subscription has more than three owners

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Subscription '{CloudAccount}' has more than three users assigned as subscription owners. The 'Owner' role grants full access to manage all resources, including the ability to assign roles in Azure RBAC. It is recommended to limit the number of subscription owners in order to reduce the potential for breach by a compromised owner. The current users assigned as owners are {CloudAccount.AzureUser}
  • Recommended Mitigation

    It is recommended to designate up to 3 subscription owners in order to reduce the potential for breach by a compromised owner