PR.AC-5(a)Key Measure
Network integrity is protected with firewalls
Protect · Access Control
Semi-Automated
Compliance Score
98%
CompliantDocumentation Maturity
4/ 5
x
Target: 2.5
Implementation Maturity
4/ 5
x
Target: 2.5
Control Description
Firewalls are deployed on all networks to control incoming and outgoing traffic. Firewall rules are documented and reviewed regularly.
Microsoft Graph API Endpoints Used
GET /deviceManagement/deviceCompliancePoliciesGET /deviceManagement/managedDevicesRequired Permissions
DeviceManagementConfiguration.Read.AllDeviceManagementManagedDevices.Read.All
Remediation Guidance
Enable Windows Defender Firewall on all endpoints via Intune compliance policy. Deploy a network firewall at the internet gateway. Document firewall rules. Block all inbound traffic by default. Review rules quarterly.