5. Logging and Monitoring
Description: Enable Diagnostic settings for exporting activity logs. Diagnostic settings are available for each individual resource within a subscription. ...
Fri, 8 Sep, 2023 at 5:53 AM
Description: The diagnostic setting should be configured to log the appropriate activities from the control/management plane. Rationale: A diagnostic ...
Fri, 8 Sep, 2023 at 5:54 AM
Description: The storage account container containing the activity log export should not be publicly accessible. Rationale: Allowing public access to ...
Tue, 2 Nov, 2021 at 8:45 PM
Description: The storage account with the activity log export container is configured to use BYOK (Use Your Own Key). Rationale: Configuring the stora...
Fri, 8 Sep, 2023 at 5:55 AM
Description: Create an activity log alert for the Delete Policy Assignment event. Rationale: Monitoring for delete policy assignment events gives insi...
Tue, 22 Aug, 2023 at 5:02 AM
Description: Create an activity log alert for the Delete Network Security Group event. Rationale: Monitoring for "Delete Network Security Group&q...
Tue, 22 Aug, 2023 at 4:46 AM
Description: Create an activity log alert for the Create or Update Network Security Group Rule event. Rationale: Monitoring for Create or Update Netwo...
Wed, 9 Aug, 2023 at 8:23 AM
Description: Create an activity log alert for the Create or Update Security Solution event. Rationale: Monitoring for Create or Update Security Soluti...
Mon, 25 Jul, 2022 at 5:33 AM