last sync: 2022-Sep-26 16:35:35 UTC

Azure Policy definition

Resource logs should be enabled for Audit on supported resources

Name Resource logs should be enabled for Audit on supported resources
Azure Portal
Id 187242f4-89c6-4c43-9a4e-188c0efacc5f
Version 1.0.0
details on versioning
Category Monitoring
Microsoft docs
Description Resource logs should be enabled to track activities and events that take place on your resources and give you visibility and insights into any changes that occur. The existence of a diagnostic setting for category group Audit on the selected resource types ensures that these logs are enabled and captured. Applicable resource types are those that support the "Audit" category group.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs[*] microsoft.insights diagnosticSettings properties.logs[*] false
microsoft.insights/diagnosticSettings/logs[*].categoryGroup microsoft.insights diagnosticSettings properties.logs[*].categoryGroup false
Microsoft.Insights/diagnosticSettings/logs[*].enabled microsoft.insights diagnosticSettings properties.logs[*].enabled false
Rule ResourceTypes
Date/Time (UTC ymd) (i) Change type Change detail
2022-08-09 17:24:03 add 187242f4-89c6-4c43-9a4e-188c0efacc5f
Used in Initiatives none