Plugin Title | Key Vault Log Analytics Enabled |
Cloud | AZURE |
Category | Monitor |
Description | Ensures Key Vault Log Analytics logs are being properly delivered to Azure Monitor |
More Info | Enabling Send to Log Analytics ensures that all Key Vault logs are being properly monitored and managed. |
AZURE Link | https://docs.microsoft.com/en-us/azure/azure-monitor/platform/collect-activity-logs |
Recommended Action | Send all diagnostic logs for Key Vault from the Azure Monitor service to Log Analytics. |
- Log in to the Microsoft Azure Management Console.
- Select the "Search resources, services, and docs" option at the top and search for "Monitor".
- On the "Monitor - Overview" page scroll down the left navigation panel and click on "Diagnostic settings" under Settings.
- On the "Monitor - Diagnostic settings" page select the resource you want to verify for "Key Vault Log Analytics'."
- Check the "Diagnostics Status" of the chosen resource and if it's set to "Disabled" then the "Key Vault Log Analytics" logs are not being properly delivered to Azure Monitor.
- To enable "Key Vault Log Anaytics" on the selected resource click on the resource name to reach its configuration settings page
- Under the "Diagnostic Settings" click on the "Add diagnostic setting" option.
- On the next page, enter the "Diagnostic setting name". Under "Logs" check the "allLogs" checkbox. Under "Destination details" click the checkbox for "Send to Log Analytics workspace", select an existing "Subscription" & "Log Analytics workspace", or create a workspace.
- Click on the "Save" button at the top to make the changes.
- "Key Vault Log Anaytics" is now enabled for the selected resource.
- Repeat steps number 6 - 9 to send all diagnostic logs for Key Vault from the Azure Monitor service to Log Analytics.