Repository for Azure Resource Policy built-in definitions and samples
MIT License
1.51k
stars
1.09k
forks
source link
Enable logging by category group for Network security groups (microsoft.network/networksecuritygroups) to Event Hub: Non existent default option 'audit' #1397
Details of the scenario you tried and the problem that is occurring
I have assigned the Policy named Enable logging by category group for Network security groups (microsoft.network/networksecuritygroups) to Event Hub which I believe is represented in built-in-policies/policyDefinitions/Monitoring/DS_EH_network-networksecuritygroups_DINE.json however the default option for Category Group is audit and this resource does not have an audit category so this is incorrect.
When left using the default option the policy appears to apply correctly but no diagnostic settings are configured.
Verbose logs showing the problem
N/A
Suggested solution to the issue
Please remove audit from the Category Group parameters and set set allLogs as the default option.
Details of the scenario you tried and the problem that is occurring
I have assigned the Policy named
Enable logging by category group for Network security groups (microsoft.network/networksecuritygroups) to Event Hubwhich I believe is represented inbuilt-in-policies/policyDefinitions/Monitoring/DS_EH_network-networksecuritygroups_DINE.jsonhowever the default option forCategory Groupisauditand this resource does not have an audit category so this is incorrect.When left using the default option the policy appears to apply correctly but no diagnostic settings are configured.
Verbose logs showing the problem
N/A
Suggested solution to the issue
Please remove
auditfrom theCategory Groupparameters and set setallLogsas the default option.