module/ConfigurationProvider/ControlConfigurations/Services/DataShare.json
|
{
"FeatureName": "DataShare", "Reference": "", "IsMaintenanceMode": false, "Controls": [ { "ControlID": "Azure_DataShare_Audit_Enable_Diagnostic_Settings", "Description": "Enable Security Logging in Azure Data Share", "Id": "DataShare110", "ControlSeverity": "Medium", "Automated": "Yes", "MethodName": "CheckDiagnosticsSettings", "DisplayName": "Enable Security Logging in Azure Data Share", "Category": "Monitoring must be correctly configured", "ControlRequirements": "Monitoring and auditing must be enabled and correctly configured according to prescribed organizational guidance", "Rationale": "Auditing logs must be enabled as they provide details for investigation in case of a security breach for threats", "Recommendation": "To Configure 'Diagnostic settings' for Datashare, go to Azure Portal --> Your Datashare Resource --> Diagnostic settings --> Click on Enable Shares, Share Subscriptions, Sent Share Snapshots and Received Share Snapshots.", "Tags": [ "Automated", "Audit", "Diagnostics", "DataShare", "Baseline" ], "ControlEvaluationDetails": { "RequiredProperties": [ "DiagnosticSettings" ] }, "Enabled": true, "ControlSettings": { "DiagnosticForeverRetentionValue": "0", "DiagnosticMinRetentionPeriod": "90", "DiagnosticLogs": [ "Shares", "ShareSubscriptions", "SentShareSnapshots", "ReceivedShareSnapshots" ] }, "CustomTags": [ "Daily", "TenantBaseline", "MSD", "TBv12", "SN:AzureDataShare_Logging" ] } ] } |