Which Azure feature enables organizations to audit access logs and ensure Azure Storage accounts comply with internal security policies? Learn how Azure Storage Analytics provides detailed logging and monitoring for compliance and security.
Table of Contents
Question
A company wants to ensure Azure Storage accounts comply with internal security policies. Which feature allows them to audit access logs?
A. Azure Monitor
B. Azure Security Center
C. Azure Storage Analytics
D. Azure Policy
E. Azure Firewall
Answer
C. Azure Storage Analytics
Explanation
Azure Storage Analytics enables detailed logging and monitoring of access and transactions for Azure Storage accounts.
The Azure feature that allows organizations to audit access logs and ensure compliance for Azure Storage accounts is Azure Storage Analytics.
- Detailed Logging: Azure Storage Analytics provides comprehensive logging for storage accounts, recording detailed information about successful and failed requests to Blob, Queue, and Table services. This includes authenticated and anonymous requests, allowing organizations to monitor who accessed what data and when.
- Audit and Compliance: These logs are crucial for auditing access, tracking usage, diagnosing issues, and ensuring compliance with internal or regulatory security policies. Organizations can use the logs to investigate suspicious activities, verify policy adherence, and generate compliance reports.
- Log Storage: All logs are stored in a special blob container called $logs within the storage account. Logs can be accessed using Azure Storage Explorer, the Azure portal, REST APIs, or client libraries.
- Enablement and Retention: Logging is not enabled by default and must be activated per service (Blob, Queue, Table). Organizations can set retention policies to manage how long logs are kept, balancing compliance requirements and storage costs.
- Usage Scenarios: Storage Analytics logs can be used to monitor individual transactions, analyze usage trends, and diagnose operational problems, supporting both security and operational needs.
Azure Storage Analytics enables detailed logging and monitoring of access and transactions for Azure Storage accounts, allowing organizations to audit access logs and ensure compliance with internal security policies.
Microsoft Azure Fundamentals AZ-900 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Microsoft Azure Fundamentals AZ-900 exam and earn Microsoft Azure Fundamentals AZ-900 certification.