AzPolicyAdvertizer

last sync: 2023-Jun-09 17:46:13 UTC

Azure Policy definition

Deploy Diagnostic Settings for Key Vault to Log Analytics workspace

Name Deploy Diagnostic Settings for Key Vault to Log Analytics workspace
Azure Portal
Id bef3f64c-5290-43b7-85b0-9b254eef4c47
Version 3.0.0
details on versioning
Category Monitoring
Microsoft docs
Description Deploys the diagnostic settings for Key Vault to stream to a regional Log Analytics workspace when any Key Vault which is missing this diagnostic settings is created or updated.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Monitoring Contributor 749f88d5-cbae-40b8-bcfc-e573ddc772fa
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293
Rule
Aliases		 THEN-ExistenceCondition (6)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs[*] microsoft.insights diagnosticSettings properties.logs[*] false
Microsoft.Insights/diagnosticSettings/logs[*].category microsoft.insights diagnosticSettings properties.logs[*].category false
Microsoft.Insights/diagnosticSettings/logs[*].enabled microsoft.insights diagnosticSettings properties.logs[*].enabled false
Microsoft.Insights/diagnosticSettings/metrics[*] microsoft.insights diagnosticSettings properties.metrics[*] false
Microsoft.Insights/diagnosticSettings/metrics[*].enabled microsoft.insights diagnosticSettings properties.metrics[*].enabled false
Microsoft.Insights/diagnosticSettings/workspaceId microsoft.insights diagnosticSettings properties.workspaceId false
Rule
ResourceTypes		 IF (1)
Microsoft.KeyVault/vaults
Compliance The following 1 compliance controls are associated with this Policy definition 'Deploy Diagnostic Settings for Key Vault to Log Analytics workspace' (bef3f64c-5290-43b7-85b0-9b254eef4c47)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
RMiT_v1.0 10.66 RMiT_v1.0_10.66 RMiT 10.66 Security of Digital Services Security of Digital Services - 10.66 Shared n/a A financial institution must implement robust technology security controls in providing digital services which assure the following: (a) confidentiality and integrity of customer and counterparty information and transactions; (b) reliability of services delivered via channels and devices with minimum disruption to services; (c) proper authentication of users or devices and authorisation of transactions; (d) sufficient audit trail and monitoring of anomalous transactions; (e) ability to identify and revert to the recovery point prior to incident or service disruption; and (f) strong physical control and logical control measures link 32
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-08-26 16:33:38 change Major (2.0.0 > 3.0.0)
2021-10-08 15:47:40 change Major (1.0.0 > 2.0.0)
2019-10-29 23:04:36 add bef3f64c-5290-43b7-85b0-9b254eef4c47
Initiatives
usage
Initiative DisplayName Initiative Id Initiative Category State Type
Deploy Diagnostic Settings to Azure Services Deploy-Diagnostics-LogAnalytics Monitoring GA ALZ
RMIT Malaysia 97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6 Regulatory Compliance GA BuiltIn
JSON