AzPolicyAdvertizer

last sync: 2025-Aug-20 17:22:59 UTC

Key Vault - Diagnostic Settings AINE

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy c6a36b44-0a98-4857-9890-0b836a3fbd91 (1.0.0) to Azure
Display name Key Vault - Diagnostic Settings AINE
Id c6a36b44-0a98-4857-9890-0b836a3fbd91
Version 1.0.0
Details on versioning
Category Key Vault
Microsoft Learn
Description This Azure Policy creates an audit event when all logs and metrics are not send to a specified Log Analytics Workspace
Mode All
Type Custom Community
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (7)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs[*] microsoft.insights diagnosticSettings properties.logs[*] True False
Microsoft.Insights/diagnosticSettings/logs[*].category microsoft.insights diagnosticSettings properties.logs[*].category True False
Microsoft.Insights/diagnosticSettings/logs[*].enabled microsoft.insights diagnosticSettings properties.logs[*].enabled True False
Microsoft.Insights/diagnosticSettings/metrics[*] microsoft.insights diagnosticSettings properties.metrics[*] True False
Microsoft.Insights/diagnosticSettings/metrics[*].category microsoft.insights diagnosticSettings properties.metrics[*].category True False
Microsoft.Insights/diagnosticSettings/metrics[*].enabled microsoft.insights diagnosticSettings properties.metrics[*].enabled True False
Microsoft.Insights/diagnosticSettings/workspaceId microsoft.insights diagnosticSettings properties.workspaceId True False
Rule resource types IF (1)
Microsoft.KeyVault/vaults
JSON
EPAC
Deploy policy c6a36b44-0a98-4857-9890-0b836a3fbd91 (1.0.0) to Azure