AzPolicyAdvertizer

last sync: 2025-Apr-29 17:16:02 UTC

Deploy a flow log resource with target network security group

Azure BuiltIn Policy definition

Source Azure Portal
Display name Deploy a flow log resource with target network security group
Id 0db34a60-64f4-4bf6-bd44-f95c16cf34b9
Version 1.1.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]
Category Network
Microsoft Learn
Description Configures flow log for specific network security group. It will allow to log information about IP traffic flowing through an network security group. Flow log helps to identify unknown or undesired traffic, verify network isolation and compliance with enterprise access rules, analyze network flows from compromised IPs and network interfaces.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Fixed
deployIfNotExists
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
Rule aliases THEN-Details (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/networkSecurityGroups/flowLogs Microsoft.Network networkSecurityGroups properties.flowLogs True False
Microsoft.Network/networkSecurityGroups/flowLogs[*].id Microsoft.Network networkSecurityGroups properties.flowLogs[*].id True False
THEN-ExistenceCondition (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/networkWatchers/flowLogs/enabled Microsoft.Network networkWatchers/flowLogs properties.enabled True False
Microsoft.Network/networkWatchers/flowLogs/storageId Microsoft.Network networkWatchers/flowLogs properties.storageId True False
Rule resource types IF (1)
THEN-Deployment (2)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-01-27 18:40:07 change Minor (1.0.1 > 1.1.0)
2021-12-10 17:29:56 change Patch (1.0.0 > 1.0.1)
2020-08-27 15:39:26 add 0db34a60-64f4-4bf6-bd44-f95c16cf34b9
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC