Skip to content

Commit

Permalink
[fix] azure_flow_log -> azure_network_flow_log
Browse files Browse the repository at this point in the history
  • Loading branch information
aquamatthias committed Sep 12, 2024
1 parent ba0fa81 commit 5bf62a3
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion fixcompliance/data/checks/azure/azure_network.json
Original file line number Diff line number Diff line change
Expand Up @@ -102,7 +102,7 @@
"risk": "Not setting the NSG Flow Log retention period to at least 90 days limits the ability to retrospectively analyze traffic for anomalies or breaches, potentially missing critical insights into security incidents.",
"severity": "medium",
"detect": {
"fix": "is(azure_network_security_group) with(empty, --> is(azure_flow_log) and retention_policy_parameters.days>=90)"
"fix": "is(azure_network_security_group) with(empty, --> is(azure_network_flow_log) and retention_policy_parameters.days>=90)"
},
"remediation": {
"text": "From Azure Portal:\n1. Go to Network Watcher.\n2. Select NSG flow logs blade in the Logs section.\n3. Select each Network Security Group from the list.\n4. Ensure Status is set to On.\n5. Ensure Retention (days) setting greater than 90 days.\n6. Select your storage account in the Storage account field.\n7. Select Save.\nFrom Azure CLI:\nEnable the NSG flow logs and set the Retention (days) to greater than or equal to 90 days.\naz network watcher flow-log configure --nsg <NameorID of the Network Security Group> --enabled true --resource-group <resourceGroupName> --retention 91 --storage-account <NameorID of the storage account to save flow logs>",
Expand Down

0 comments on commit 5bf62a3

Please sign in to comment.