AzInitiativeAdvertizer

last sync: 2025-Apr-29 17:15:47 UTC

Flow logs should be configured and enabled for every network security group

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameFlow logs should be configured and enabled for every network security group
Id62329546-775b-4a3d-a4cb-eb4bb990d2c0
Version1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
CategoryNetwork
Microsoft Learn
DescriptionAudit for network security groups to verify if flow logs are configured and if flow log status is enabled. Enabling flow logs allows to log information about IP traffic flowing through network security group. It can be used for optimizing network flows, monitoring throughput, verifying compliance, detecting intrusions and more.
Cloud environmentsAzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = unknown
Available in AzUSGovUnknown, no evidence if PolicySet definition is/not available in AzureUSGovernment
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 2
Builtin Policies: 2
Static Policies: 0
GA: 2
1 categories:
Network: 2
Policy-used
Policy DisplayName Policy Id Category Version Versioning Effect Roles# Roles State policy in AzUSGov
All flow log resources should be in enabled state 27960feb-a23c-4577-8d36-ef8b5f35e0be Network 1.0.1 1x
1.0.1		 Default
Audit
Allowed
Audit, Disabled		 0 GA unknown
Flow logs should be configured for every network security group c251913d-7d24-4958-af87-478ed3b9ba41 Network 1.1.0 1x
1.1.0		 Default
Audit
Allowed
Audit, Disabled		 0 GA true
Roles used No Roles used
History
Date/Time (UTC ymd) (i) Changes
2021-03-10 14:52:45 add Initiative 62329546-775b-4a3d-a4cb-eb4bb990d2c0
JSON compare n/a
JSON
api-version=2023-04-01
EPAC