last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

Storage account containing the container with activity logs must be encrypted with BYOK

Name Storage account containing the container with activity logs must be encrypted with BYOK
Azure Portal
Id fbb99e8e-e444-4da0-9ff1-75c92f5a85b2
Version 1.0.0
details on versioning
Category Monitoring
Microsoft docs
Description This policy audits if the Storage account containing the container with activity logs is encrypted with BYOK. The policy works only if the storage account lies on the same subscription as activity logs by design. More information on Azure Storage encryption at rest can be found here https://aka.ms/azurestoragebyok.
Mode All
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)
Used RBAC Role none
Rule Aliases IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/logProfiles/storageAccountId microsoft.insights logprofiles properties.storageAccountId false
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Storage/storageAccounts/encryption.keySource Microsoft.Storage storageAccounts properties.encryption.keySource false
Rule ResourceTypes IF (1)
Microsoft.Insights/logProfiles
History
Date/Time (UTC ymd) (i) Change type Change detail
2019-12-11 09:18:30 add fbb99e8e-e444-4da0-9ff1-75c92f5a85b2
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: New Zealand ISM Restricted v3.5 93d2179e-3068-c82f-2428-d614ae836a04 Regulatory Compliance Preview BuiltIn
[Preview]: Reserve Bank of India - IT Framework for NBFC 7f89f09c-48c1-f28d-1bd5-84f3fb22f86c Regulatory Compliance Preview BuiltIn
[Preview]: RMIT Malaysia 97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6 Regulatory Compliance Preview BuiltIn
[Preview]: SWIFT CSP-CSCF v2022 7bc7cd6c-4114-ff31-3cac-59be3157596d Regulatory Compliance Preview BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.1.0 1a5bb27d-173f-493e-9568-eb56638dde4d Regulatory Compliance GA BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.3.0 612b5213-9160-4969-8578-1518bd2a000c Regulatory Compliance GA BuiltIn
JSON