Ensure that Network Security Group Flow logs are captured and sent to Log Analytics
Why This Matter
Network Security Group flow logs provide critical visibility into traffic patterns across your Azure network. Without these logs, detecting lateral movement during a breach or troubleshooting network issues becomes significantly harder. By sending these logs to a Log Analytics workspace, you enable deeper analysis through Azure Monitor and Microsoft Sentinel for security investigations.
What Aether365 Checks
Aether365 verifies that Network Security Group flow logs are configured and sent to a Log Analytics workspace. This check appears in the Aether365 dashboard under the azure-diagnostic-settings checks.