Ensure log profile captures all activities
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | monitor |
| Provider | Azure |
| Vulnerability Type | omission |
Description#
The log profile is not configured to capture all required activity categories (‘Action’, ‘Write’, ‘Delete’), resulting in incomplete event logging within Azure Monitor. This omission means certain operations may not be recorded for auditing or incident response.
Impact#
If all activities are not logged, critical actions such as resource changes or deletions could go undetected, hindering forensic investigations and compliance efforts, and increasing the risk of untraceable unauthorized activity within the Azure environment.
Resolution#
Configure log profile to capture all activities