Logging Policies

How to Use this Page

This page lists the Azure Logging Policies that Bridgecrew helps you enforce. You can browse this page, or search for a specific policy ID or short title. For each policy, press the link for more details about a policy and its fix options.

Azure Network Watcher NSG flow logs retention is less than 90 days
Policy ID: BC_AZR_LOGGING_1

Ensure Azure SQL server auditing is enabled
Policy ID: BC_AZR_LOGGING_2

Ensure Azure SQL server audit log retention is greater than 90 days
Policy ID: BC_AZR_LOGGING_3

Ensure storage logging for queue service has read, write, and delete requests enabled
Policy ID: BC_AZR_LOGGING_4

Ensure activity log retention is set to 365 days or greater
Policy ID: BC_AZR_LOGGING_5

Ensure log profile is configured to capture all activities
Policy ID: BC_AZR_LOGGING_6

Ensure Azure storage account logging for tables is enabled
Policy ID: BC_AZR_LOGGING_7

Ensure app service enables HTTP logging
Policy ID: BC_AZR_LOGGING_8

Ensure app service enables detailed error messages
Policy ID: BC_AZR_LOGGING_9

Ensure app service enables failed request tracing
Policy ID: BC_AZR_LOGGING_10

Ensure Azure storage account logging for blobs is enabled
Policy ID: BC_AZR_LOGGING_11

Ensure the storage container storing activity logs is not publicly accessible
Policy ID: BC_AZR_LOGGING_12


Did this page help you?