Name | Log Analytics Workspaces should block non-Azure Active Directory based ingestion. Azure Portal |
||||||||||
Id | e15effd4-2278-4c65-a0da-4d6f6d1890e2 | ||||||||||
Version | 1.0.0 details on versioning |
||||||||||
Category | Monitoring Microsoft docs |
||||||||||
Description | Enforcing log ingestion to require Azure Active Directory authentication prevents unauthenticated logs from an attacker which could lead to incorrect status, false alerts, and incorrect logs stored in the system. | ||||||||||
Mode | Indexed | ||||||||||
Type | BuiltIn | ||||||||||
Preview | FALSE | ||||||||||
Deprecated | FALSE | ||||||||||
Effect | Default: Audit Allowed: (Deny, Audit, Disabled) |
||||||||||
Used RBAC Role | none | ||||||||||
Rule Aliases | IF (1)
|
||||||||||
Rule ResourceTypes | IF (1) Microsoft.OperationalInsights/workspaces |
||||||||||
History |
|
||||||||||
Used in Initiatives |
|
||||||||||
JSON |
|