AzPolicyAdvertizer

last sync: 2023-Jun-19 17:45:01 UTC

Community Policy definition

Storage Account - Diagnostic Settings AINE

Name Storage Account - Diagnostic Settings AINE
Community-Policy GitHub
Id storage-account-diagnostic-settings-aine
Version 1.0.0
details on versioning
Category Storage Account
Microsoft docs
Description This Azure Policy creates an audit event when all logs and metrics are not send to a specified Log Analytics Workspace.
Mode All
Type Custom Community
Effect Default
AuditIfNotExists
Allowed
Used RBAC Role none
Rule Aliases THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Insights/diagnosticSettings/logs.enabled microsoft.insights diagnosticSettings properties.logs[*].enabled false
Microsoft.Insights/diagnosticSettings/metrics.enabled microsoft.insights diagnosticSettings properties.metrics[*].enabled false
Microsoft.Insights/diagnosticSettings/workspaceId microsoft.insights diagnosticSettings properties.workspaceId false
Rule ResourceTypes IF (1)
Microsoft.Storage/storageAccounts
JSON