Ensure boot diagnostics are enabled for Azure Virtual Machine

MEDIUM

Description

Disabled boot diagnostics for Azure Virtual Machine may lead to loss of critical logs.

Remediation

In Azure Console -

Open the Azure Portal and go to Virtual Machines.
Choose the Virtual Machine you wish to edit.
Under Help, choose Boot Diagnostics.
Select Settings and Enable.

In Terraform -
Deprecated in favor of azurerm_linux_virtual_machine and azurerm_windows_virtual_machine:

In the azurerm_virtual_machine resource, set boot_diagnostics.enabled to true.

References:
https://learn.microsoft.com/en-us/azure/virtual-machines
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_machine

Policy Details

Rule Reference ID: AC_AZURE_0362

CSP: Azure

Remediation Available: Yes

Domain: Logging and Monitoring

Resource: azurerm_virtual_machine

Resource Category: Compute

Resource Type: Virtual Machine

Frameworks

GDPR
HIPAA
NIST-800-171
NIST-800-53
NIST-CSF
PCI-DSSv4.0