Azure subscriptions should have a diagnostic setting for activity logs

azure
Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Description

Ensure that a subscription-scoped diagnostic setting exists for exporting activity logs. Diagnostic settings control how activity logs are exported and retained beyond the default 90-day period, enabling long-term security analysis of subscription-level control-plane events.

Remediation

Create a diagnostic setting at the subscription level that forwards activity logs to a destination such as a Log Analytics workspace, storage account, or event hub. Select the appropriate log categories for your environment. See Diagnostic settings in Azure Monitor.