Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Create or use bootstrap code to create action group and activity log alerts required for compliance #101

Open
SvenAelterman opened this issue Aug 6, 2024 · 1 comment
Assignees
Labels
compliance An issue related to regulatory compliance posture of the deployed infrastructure enhancement New feature or request hub An issue related to the research hub code low priority A low priority issue will likely not be addressed until other issues are resolved spoke An issue related to the research spoke code

Comments

@SvenAelterman
Copy link
Collaborator

SvenAelterman commented Aug 6, 2024

Consider creating custom policy definitions and a policy initiative.

Easier is to create alert rules but because those are at the subscription level, they could be removed by subscription owners after subscription vending without an easy remediation (though of course the subscription would become non-compliant with the compliance policy).

@SvenAelterman SvenAelterman added enhancement New feature or request low priority A low priority issue will likely not be addressed until other issues are resolved spoke An issue related to the research spoke code compliance An issue related to regulatory compliance posture of the deployed infrastructure hub An issue related to the research hub code labels Aug 6, 2024
@SvenAelterman SvenAelterman self-assigned this Aug 9, 2024
@SvenAelterman
Copy link
Collaborator Author

The bootstrap code to create the Activity Log alerts with Bicep (but not with policy) is available here: https://github.com/SvenAelterman/AzHITRUSTHIPAAActivityLogAlerts

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
compliance An issue related to regulatory compliance posture of the deployed infrastructure enhancement New feature or request hub An issue related to the research hub code low priority A low priority issue will likely not be addressed until other issues are resolved spoke An issue related to the research spoke code
Projects
None yet
Development

No branches or pull requests

1 participant