5. Logging and Monitoring

5.1.1 Ensure that a 'Diagnostics Setting' exists for exporting activity logs
Description: Enable Diagnostic settings for exporting activity logs. Diagnostic settings are available for each individual resource within a subscription. ...
Fri, 8 Sep, 2023 at 5:53 AM
Ensure Diagnostic Setting captures appropriate categories from the control/management plane
Description: The diagnostic setting should be configured to log the appropriate activities from the control/management plane. Rationale: A diagnostic ...
Fri, 8 Sep, 2023 at 5:54 AM
5.1.3 Ensure the storage container storing the activity logs is not publicly accessible
Description: The storage account container containing the activity log export should not be publicly accessible. Rationale: Allowing public access to ...
Tue, 2 Nov, 2021 at 8:45 PM
Ensure the storage account containing the container with activity logs is encrypted with Customer Managed Key
Description: The storage account with the activity log export container is configured to use BYOK (Use Your Own Key). Rationale: Configuring the stora...
Fri, 8 Sep, 2023 at 5:55 AM
5.2.2 Ensure that Activity Log Alert exists for Delete Policy Assignment
Description: Create an activity log alert for the Delete Policy Assignment event. Rationale: Monitoring for delete policy assignment events gives insi...
Tue, 22 Aug, 2023 at 5:02 AM
5.2.4 Ensure that Activity Log Alert exists for Delete Network Security Group
Description: Create an activity log alert for the Delete Network Security Group event. Rationale: Monitoring for "Delete Network Security Group&q...
Tue, 22 Aug, 2023 at 4:46 AM
5.2.5 Ensure that Activity Log Alert exists for Create or Update Network Security Group Rule
Description: Create an activity log alert for the Create or Update Network Security Group Rule event. Rationale: Monitoring for Create or Update Netwo...
Wed, 9 Aug, 2023 at 8:23 AM
5.2.7 Ensure that Activity Log Alert exists for Create or Update Security Solution
Description: Create an activity log alert for the Create or Update Security Solution event. Rationale: Monitoring for Create or Update Security Soluti...
Mon, 25 Jul, 2022 at 5:33 AM