last sync: 2024-Apr-24 17:47:19 UTC

Flow logs should be configured and enabled for every network security group

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameFlow logs should be configured and enabled for every network security group
Id62329546-775b-4a3d-a4cb-eb4bb990d2c0
Version1.0.0
Details on versioning
CategoryNetwork
Microsoft Learn
DescriptionAudit for network security groups to verify if flow logs are configured and if flow log status is enabled. Enabling flow logs allows to log information about IP traffic flowing through network security group. It can be used for optimizing network flows, monitoring throughput, verifying compliance, detecting intrusions and more.
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 2
Builtin Policies: 2
Static Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State
All flow log resources should be in enabled state 27960feb-a23c-4577-8d36-ef8b5f35e0be Network Default
Audit
Allowed
Audit, Disabled
0 GA
Flow logs should be configured for every network security group c251913d-7d24-4958-af87-478ed3b9ba41 Network Default
Audit
Allowed
Audit, Disabled
0 GA
Roles used No Roles used
History
Date/Time (UTC ymd) (i) Changes
2021-03-10 14:52:45 add Initiative 62329546-775b-4a3d-a4cb-eb4bb990d2c0
JSON compare n/a
JSON
api-version=2021-06-01
EPAC