AzInitiativeAdvertizer

last sync: 2025-Nov-03 18:22:40 UTC

[Deprecated]: Deploy Azure Monitor Baseline Alerts for Landing Zone

Azure Monitor Baseline Alerts (AMBA) Policy Initiative (PolicySet)

Source Repository Azure Monitor Baseline Alerts (AMBA) GitHub
Display name[Deprecated]: Deploy Azure Monitor Baseline Alerts for Landing Zone
IdAlerting-LandingZone
Version1.1.0-deprecated
Details on versioning
CategoryMonitoring
DescriptionInitiative to deploy AMBA alerts relevant to the ALZ LandingZone management group
Cloud environments AzureCloud
TypeCustom Azure Monitor Baseline Alerts (AMBA)
DeprecatedTrue
PreviewFalse
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 49
Builtin Policies: 0
Static Policies: 0
AMBA Policies: 49
GA: 49
8 categories:
Compute: 11
Key Vault: 5
Monitoring: 1
Network: 7
Networking: 19
Site Recovery: 1
Storage: 1
Web Services: 4
Policy-used
Policy DisplayName Policy Id Category Effect Roles# Roles State Type policy in AzUSGov
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Key Vault Delete Alert Deploy_activitylog_KeyVault_Delete Key Vault Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log NSG Delete Alert Deploy_activitylog_NSG_Delete Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Route Table Update Alert Deploy_activitylog_RouteTable_Update Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Storage Account Delete Alert Deploy_activitylog_StorageAccount_Delete Monitoring Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW ApplicationGatewayTotalTime Alert Deploy_AG_ApplicationGatewayTotalTime_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW BackendLastByteResponseTime Alert Deploy_AG_BackendLastByteResponseTime_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Capacity Units Alert Deploy_AG_CapacityUnits_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Compute Units Alert Deploy_AG_ComputeUnits_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW CPU Utilization Alert Deploy_AG_CPUUtilization_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW FailedRequests Alert Deploy_AG_FailedRequests_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW ResponseStatus Alert Deploy_AG_ResponseStatus_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Unhealthy Host Count Alert Deploy_AG_UnhealthyHostCount_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Data Path Availability Alert Deploy_ALB_DataPathAvailability_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Global Backend Availability Alert Deploy_ALB_GlobalBackendAvailability_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Health Probe Status Alert Deploy_ALB_HealthProbeStatus_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Used SNAT Ports Alert Deploy_ALB_UsedSNATPorts_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan CPU Percentage Alert Deploy_WSF_CPUPercentage_Alert Web Services Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Disk Queue Length Alert Deploy_WSF_DiskQueueLength_Alert Web Services Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Http Queue Length Alert Deploy_WSF_HttpQueueLength_Alert Web Services Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Memory Percentage Alert Deploy_WSF_MemoryPercentage_Alert Web Services Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM CPU Alert Deploy_VM_CPU_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Read Latency Alert Deploy_VM_dataDiskReadLatency_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Space Alert Deploy_VM_dataDiskSpace_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Write Latency Alert Deploy_VM_dataDiskWriteLatency_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM HeartBeat Alert Deploy_VM_HeartBeat_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Memory Alert Deploy_VM_Memory_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Read Alert Deploy_VM_NetworkIn_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Write Alert Deploy_VM_NetworkOut_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Read Latency Alert Deploy_VM_OSDiskreadLatency_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Space Alert Deploy_VM_OSDiskSpace_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Write Latency Alert Deploy_VM_OSDiskwriteLatency_Alert Compute Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 2 Managed Identity Operator, Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Frontdoor Backend Health Percentage Alert Deploy_FD_BackendHealth_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Frontdoor Backend Request Latency Alert Deploy_FD_BackendRequestLatency_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Origin Health Percentage Alert Deploy_FrontDoorCDN_OriginHealthPercentage_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Origin Latency Alert Deploy_FrontDoorCDN_OriginLatency_Alert Networking Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Percentage4XX Alert Deploy_FrontDoorCDN_Percentage4XX_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Percentage5XX Alert Deploy_FrontDoorCDN_Percentage5XX_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Availability Alert Deploy_KeyVault_Availability_Alert Key Vault Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Capacity Alert Deploy_KeyVault_Capacity_Alert Key Vault Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Latency Alert Deploy_KeyVault_Latency_Alert Key Vault Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Requests Alert Deploy_KeyVault_Requests_Alert Key Vault Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP Bytes in DDoS Attack Alert Deploy_PublicIp_BytesInDDoSAttack_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP DDoS Attack Alert Deploy_PublicIp_DDoSAttack_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP Packets in DDoS Attack Alert Deploy_PublicIp_PacketsInDDoSAttack_Alert Network Default
disabled
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP VIP Availability Alert Deploy_PublicIp_VIPAvailability_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - RV Backup Health Monitoring Alerts Deploy_RecoveryVault_BackupHealthMonitor_Alert Site Recovery Default
modify
Allowed
modify, audit, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - SA Availability Alert Deploy_StorageAccount_Availability_Alert Storage Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Traffic Manager Endpoint Health Alert Deploy_TM_EndpointHealth_Alert Networking Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - VNet DDoS Attack Alert Deploy_VNET_DDoSAttack_Alert Network Default
deployIfNotExists
Allowed
deployIfNotExists, disabled		 1 Monitoring Policy Contributor GA AMBA
Roles used
Total Roles usage: 60
Total Roles unique usage: 2
Role Role Id #Policies Policies
Monitoring Policy Contributor 47be4a87-7950-4631-9daf-b664a405f074 49 Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Key Vault Delete Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log NSG Delete Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Route Table Update Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Activity Log Storage Account Delete Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW ApplicationGatewayTotalTime Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW BackendLastByteResponseTime Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Capacity Units Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Compute Units Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW CPU Utilization Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW FailedRequests Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW ResponseStatus Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - AGW Unhealthy Host Count Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Data Path Availability Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Global Backend Availability Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Health Probe Status Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - ALB Used SNAT Ports Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan CPU Percentage Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Disk Queue Length Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Http Queue Length Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - App Service Plan Memory Percentage Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM CPU Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Read Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Space Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Write Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM HeartBeat Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Memory Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Read Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Write Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Read Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Space Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Write Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Frontdoor Backend Health Percentage Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Frontdoor Backend Request Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Origin Health Percentage Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Origin Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Percentage4XX Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - FrontDoor CDN Profile Percentage5XX Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Availability Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Capacity Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Key Vault Requests Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP Bytes in DDoS Attack Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP DDoS Attack Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP Packets in DDoS Attack Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - PIP VIP Availability Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - RV Backup Health Monitoring Alerts, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - SA Availability Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Traffic Manager Endpoint Health Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - VNet DDoS Attack Alert
Managed Identity Operator f1a07417-d97a-45cb-824c-7a7467783830 11 Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM CPU Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Read Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Space Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Data Disk Write Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM HeartBeat Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Memory Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Read Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM Network Write Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Read Latency Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Space Alert, Deploy Azure Monitor Baseline Alerts (AMBA-ALZ) - Azure VM OS Disk Write Latency Alert
JSON
EPAC