Policy: Azure > CIS v5.0 > 2 - Analytics Services > 2.01 - Azure Databricks > 2.01.07 - Ensure that diagnostic log delivery is configured for Azure Databricks
Configures auditing against a CIS Benchmark item.
Level: 1
Azure Databricks can send diagnostic logs to Azure Monitor, Azure Storage, or Azure Event Hubs. These logs provide insights into workspace activities, cluster operations, and user actions.
Configuring diagnostic log delivery provides: - Visibility into workspace activities and operations - Security monitoring and threat detection - Compliance with audit requirements - Troubleshooting and operational insights
This control requires manual verification to confirm that diagnostic settings are configured to send logs to an appropriate destination.
Targets
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Related Policies
Controls
Setting this policy configures this control:
Policy Specification
Schema Type | |
|---|---|
Default | |
Valid Values [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/cis#/control/categories/cis
- tmod:@turbot/azure-cisv5-0#/policy/types/r020107
- turbot graphql policy-type --id "tmod:@turbot/azure-cisv5-0#/policy/types/r020107"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv5-0#/policy/types/r020107"
Get Policy TypeGet Policy Settings