AzInitiativeAdvertizer

last sync: 2024-Nov-25 18:54:43 UTC

Flow logs should be configured and enabled for every network security group

Azure BuiltIn Policy Initiative (PolicySet)

Source

Azure Portal

Display name

Flow logs should be configured and enabled for every network security group

62329546-775b-4a3d-a4cb-eb4bb990d2c0

Version

1.0.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]

Category

Network
Microsoft Learn

Description

Audit for network security groups to verify if flow logs are configured and if flow log status is enabled. Enabling flow logs allows to log information about IP traffic flowing through network security group. It can be used for optimizing network flows, monitoring throughput, verifying compliance, detecting intrusions and more.

Type

BuiltIn

Deprecated

False

Preview

False

Policy count

Total Policies: 2
Builtin Policies: 2
Static Policies: 0

Policy used

Policy DisplayName	Policy Id	Category	Effect	Roles#	Roles	State
All flow log resources should be in enabled state	27960feb-a23c-4577-8d36-ef8b5f35e0be	Network	Default Audit Allowed Audit, Disabled	0		GA
Flow logs should be configured for every network security group	c251913d-7d24-4958-af87-478ed3b9ba41	Network	Default Audit Allowed Audit, Disabled	0		GA

Roles used

No Roles used

History

Date/Time (UTC ymd) (i)	Changes
2021-03-10 14:52:45	add Initiative 62329546-775b-4a3d-a4cb-eb4bb990d2c0

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC