Create or use bootstrap code to create action group and activity log alerts required for compliance

SvenAelterman / Azure-HubAndSpokeResearchEnclave

A Hub-and-Spoke Azure enclave for secure research.

MIT License

5 stars 0 forks source link

Create or use bootstrap code to create action group and activity log alerts required for compliance #101

Open SvenAelterman opened 1 month ago

SvenAelterman commented 1 month ago

Consider creating custom policy definitions and a policy initiative.

Easier is to create alert rules but because those are at the subscription level, they could be removed by subscription owners after subscription vending without an easy remediation (though of course the subscription would become non-compliant with the compliance policy).

SvenAelterman commented 1 month ago

The bootstrap code to create the Activity Log alerts with Bicep (but not with policy) is available here: https://github.com/SvenAelterman/AzHITRUSTHIPAAActivityLogAlerts