| Name | Deploy export to Log Analytics workspace for Microsoft Defender for Cloud data Azure Portal |
|||||||||||||||||||||
| Id | ffb6f416-7bd2-4488-8828-56585fef2be9 | |||||||||||||||||||||
| Version | 4.1.0 details on versioning |
|||||||||||||||||||||
| Category | Security Center Microsoft docs |
|||||||||||||||||||||
| Description | Enable export to Log Analytics workspace of Microsoft Defender for Cloud data. This policy deploys an export to Log Analytics workspace configuration with your conditions and target workspace on the assigned scope. To deploy this policy on newly created subscriptions, open the Compliance tab, select the relevant non-compliant assignment and create a remediation task. | |||||||||||||||||||||
| Mode | All | |||||||||||||||||||||
| Type | BuiltIn | |||||||||||||||||||||
| Preview | FALSE | |||||||||||||||||||||
| Deprecated | FALSE | |||||||||||||||||||||
| Effect | Fixed deployIfNotExists |
|||||||||||||||||||||
| RBAC Role(s) |
|
|||||||||||||||||||||
| Rule Aliases |
THEN-ExistenceCondition (3)
|
|||||||||||||||||||||
| Rule ResourceTypes |
IF (1) Microsoft.Resources/subscriptions THEN-Deployment (4) Microsoft.Resources/deployments Microsoft.Resources/resourceGroups Microsoft.Security/assessments Microsoft.Security/automations |
|||||||||||||||||||||
| Compliance | Not a Compliance control | |||||||||||||||||||||
| History |
|
|||||||||||||||||||||
| Initiatives usage |
|
|||||||||||||||||||||
| JSON |
|