🚀Launch Week 08, April 14th - 18th, 2025🚀
Mods
Azure

Control: Azure > Network Watcher > Flow Log > Retention Policy

Raise an alarm if the network security group (NSG) flow log retention policy is not configured to meet the defined policy requirements.

Note: This check applies exclusively to flow logs using V2 storage accounts.

Resource Types

This control targets the following resource types:

Policies

The following policies can be used to configure this control:

This control type relies on these other policies when running actions:

Permissions

Cloud permissions used by this control and its actions:

  • microsoft.network/networkwatchers/flowlogs/write

Category

In Your Workspace

Developers