Use files, branches, or tags for mod dependencies →
Powerpipe Hub 
Hub
Mods
turbot/azure_compliance
Overview
12Dashboards
1142Controls
419Queries
2Variables
GitHub

Control: Log Analytics workspaces should block log ingestion and querying from public networks

Description

Improve workspace security by blocking log ingestion and querying from public networks. Only private-link connected networks will be able to ingest and query logs on this workspace. Learn more at https://aka.ms/AzMonPrivateLink\#configure-log-analytics.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.log_analytics_workspace_block_log_ingestion_and_querying_from_public

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.log_analytics_workspace_block_log_ingestion_and_querying_from_public --share

SQL

This control uses a named query:

log_analytics_workspace_block_log_ingestion_and_querying_from_public

Tags

rbi_itf_nbfc_v2017 = true
service = Azure/Monitor