This benchmark provides a set of controls that detect Terraform Azure Monitor resources deviating from security best practices.
Browse dashboards and select Monitor:
Or run the benchmarks in your terminal:
steampipe check terraform_azure_compliance.benchmark.monitor
Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share terraform_azure_compliance.benchmark.monitor
- Azure Monitor log profile should collect logs for categories 'write', 'delete' and 'action'
- Azure Monitor should collect activity logs from all regions
- Ensure the storage container storing the activity logs is not publicly accessible