last sync: 2024-Mar-27 18:49:11 UTC

Azure Application Gateway should have Resource logs enabled

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Application Gateway should have Resource logs enabled
Id 8a04f872-51e9-4313-97fb-fc1c3543011c
Version 1.0.0
Details on versioning
Category Monitoring
Microsoft Learn
Description Enable Resource logs for Azure Application Gateway (plus WAF) and stream to a Log Analytics workspace. Get detailed visibility into inbound web traffic and actions taken to mitigate attacks.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs.enabled microsoft.insights diagnosticSettings properties.logs[*].enabled false
Microsoft.Insights/diagnosticSettings/metrics.enabled microsoft.insights diagnosticSettings properties.metrics[*].enabled false
Microsoft.Insights/diagnosticSettings/workspaceId microsoft.insights diagnosticSettings properties.workspaceId false
Rule resource types IF (1)
Microsoft.Network/applicationGateways
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-10-21 16:42:13 add 8a04f872-51e9-4313-97fb-fc1c3543011c
JSON compare n/a
JSON
api-version=2021-06-01
EPAC