AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

Configure virtual networks to enforce workspace, storage account and retention interval for Flow logs and Traffic Analytics

Azure BuiltIn Policy definition

Source

Display name

Configure virtual networks to enforce workspace, storage account and retention interval for Flow logs and Traffic Analytics

052c180e-287d-44c3-86ef-01aeae2d9774

Version

1.1.2
Details on versioning

Category

Network
Microsoft Learn

Description

If a virtual network already has traffic analytics enabled, then, this policy will overwrite its existing settings with the ones provided during policy creation. Traffic analytics is a cloud-based solution that provides visibility into user and application activity in cloud networks.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Contributor	b24988ac-6180-42a0-ab88-20f7382dd24c

Rule aliases

THEN-Details (2)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Network/virtualNetworks/flowLogs	Microsoft.Network	virtualNetworks	properties.flowLogs	True		False
Microsoft.Network/virtualNetworks/flowLogs[*].id	Microsoft.Network	virtualNetworks	properties.flowLogs[*].id	True		False

THEN-ExistenceCondition (7)

Alias	Namespace	ResourceType	Path	PathIsDefault	Modifiable
Microsoft.Network/networkWatchers/flowLogs/enabled	Microsoft.Network	networkWatchers/flowLogs	properties.enabled	True	False
Microsoft.Network/networkWatchers/flowLogs/flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.enabled	Microsoft.Network	networkWatchers/flowLogs	properties.flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.enabled	True	False
Microsoft.Network/networkWatchers/flowLogs/flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.trafficAnalyticsInterval	Microsoft.Network	networkWatchers/flowLogs	properties.flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.trafficAnalyticsInterval	True	False
Microsoft.Network/networkWatchers/flowLogs/flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.workspaceResourceId	Microsoft.Network	networkWatchers/flowLogs	properties.flowAnalyticsConfiguration.networkWatcherFlowAnalyticsConfiguration.workspaceResourceId	True	False
Microsoft.Network/networkWatchers/flowLogs/retentionPolicy.days	Microsoft.Network	networkWatchers/flowLogs	properties.retentionPolicy.days	True	True
Microsoft.Network/networkWatchers/flowLogs/retentionPolicy.enabled	Microsoft.Network	networkWatchers/flowLogs	properties.retentionPolicy.enabled	True	False
Microsoft.Network/networkWatchers/flowLogs/storageId	Microsoft.Network	networkWatchers/flowLogs	properties.storageId	True	False

Rule resource types

IF (1)
Microsoft.Network/virtualNetworks
THEN-Deployment (2)
Microsoft.Network/networkWatchers/flowLogs
Microsoft.Resources/deployments

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2024-03-29 18:59:24	change	Patch (1.1.1 > 1.1.2)
2024-02-13 19:27:15	change	Patch (1.1.0 > 1.1.1)
2024-01-12 18:35:06	change	Minor (1.0.0 > 1.1.0)
2023-04-06 17:42:16	add	052c180e-287d-44c3-86ef-01aeae2d9774

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC