Control: Ensure the storage account containing the container with activity logs is encrypted with Customer Managed Key
Description
Storage accounts with the activity log exports can be configured to use Customer Managed Keys (CMK).
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.monitor_logs_storage_container_insights_activity_logs_encrypted_with_byok
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.monitor_logs_storage_container_insights_activity_logs_encrypted_with_byok --share
SQL
This control uses a named query:
monitor_logs_storage_container_insights_activity_logs_encrypted_with_byok