Benchmark: PR.PS-04
Description
Log records are generated and made available for continuous monitoring.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-compliance
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select PR.PS-04.
Run this benchmark in your terminal:
powerpipe benchmark run azure_compliance.benchmark.nist_csf_v2_pr_ps_04
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_compliance.benchmark.nist_csf_v2_pr_ps_04 --share
Controls
- Application Insights components should block log ingestion and querying from public networks
- Azure Monitor Logs for Application Insights should be linked to a Log Analytics workspace
- Log Analytics workspaces should block log ingestion and querying from public networks
- Log Analytics Workspaces should block non-Azure Active Directory based ingestion
- Azure Monitor should collect activity logs from all regions