last sync: 2022-Dec-02 17:43:06 UTC

Azure Policy definition

Deploy - Configure diagnostic settings for Azure Key Vault to Log Analytics workspace

Name Deploy - Configure diagnostic settings for Azure Key Vault to Log Analytics workspace
Azure Portal
Id 951af2fa-529b-416e-ab6e-066fd85ac459
Version 2.0.1
details on versioning
Category Key Vault
Microsoft docs
Description Deploys the diagnostic settings for Azure Key Vault to stream resource logs to a Log Analytics workspace when any Key Vault which is missing this diagnostic settings is created or updated.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Monitoring Contributor 749f88d5-cbae-40b8-bcfc-e573ddc772fa
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293
Rule
Aliases
THEN-ExistenceCondition (5)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs[*] microsoft.insights diagnosticSettings properties.logs[*] false
Microsoft.Insights/diagnosticSettings/logs[*].category microsoft.insights diagnosticSettings properties.logs[*].category false
Microsoft.Insights/diagnosticSettings/logs[*].enabled microsoft.insights diagnosticSettings properties.logs[*].enabled false
Microsoft.Insights/diagnosticSettings/metrics.enabled microsoft.insights diagnosticSettings properties.metrics[*].enabled false
Microsoft.Insights/diagnosticSettings/workspaceId microsoft.insights diagnosticSettings properties.workspaceId false
Rule
ResourceTypes
IF (1)
Microsoft.KeyVault/vaults
Compliance Not a Compliance control
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-08-26 16:33:38 change Major (1.0.1 > 2.0.1)
2021-06-22 14:29:30 change Patch (1.0.0 > 1.0.1) *changes on text case sensitivity are not tracked
2021-02-23 16:24:42 add 951af2fa-529b-416e-ab6e-066fd85ac459
Initiatives
usage
none
JSON
changes

JSON