Benchmark: PCI DSS requirement 10.5.4
Description
Write logs for external-facing technologies onto a secure, centralized, internal log server or media device.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select PCI DSS requirement 10.5.4.
Run this benchmark in your terminal:
powerpipe benchmark run azure_compliance.benchmark.pci_dss_v321_requirement_10_5_4Snapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_compliance.benchmark.pci_dss_v321_requirement_10_5_4 --shareControls
- Audit diagnostic setting for selected resource types
- Virtual machines should be migrated to new Azure Resource Manager resources
- Auditing on SQL server should be enabled
- Storage accounts should be migrated to new Azure Resource Manager resources