[Enhancement] - GR1 | Validation 4 | User Account GC Event Logging Check (M) - Githubissues

ssc-spc-ccoe-cei / azure-guardrails-solution-accelerator

This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvre automatise la production de rapports afin de vérifier la conformité aux mesures de sécurité infonuagique du GC. SPC et SCT examinent les résultats.

Other

11 stars 4 forks source link

[Enhancement] - GR1 | Validation 4 | User Account GC Event Logging Check (M) #202

Closed singhgss closed 1 month ago

singhgss commented 1 month ago

Overview/Summary

This Pull Request implements the User Account GC Event Logging Check (M) for Guardrail 1, Validation 4. It adds functionality to verify log collection, storage, and retention in accordance with the control requirements.

This PR adds/changes

Implement check for enabled logs in Log Analytics Workspace
Add verification of log parsing and review using Azure Monitor Logs
Implement checks for log protection and retention
Add compliance status determination and appropriate comments in English and French
Added changes to zipemall.ps1 to support zipping only specific modules when needed.

Breaking Changes

None

Testing Evidence

As part of this Pull Request I have

[x] Checked for duplicate Pull Requests
[x] Associated it with relevant GitHub Issues (#144)
[x] Ensured my code/branch is up-to-date with the latest changes in the main branch
[x] Performed testing and provided evidence.
[] Updated relevant and associated documentation.
[] Ensure PowerShell module versions have been updated (manually or with the ./tools/Update-ModuleVersions.ps1 script)