Skip to main content

Remediation

From Azure Portal

Go to Network Watcher.
Select NSG flow logs blade in the Logs section.
Select each Network Security Group from the list.
Ensure Status is set to On.
Ensure Retention (days) setting greater than 90 days.
Select your storage account in the Storage account field.
Select Save.

From Azure CLI

Enable the NSG flow logs and set the Retention (days) to greater than or equal to 90 days:

az network watcher flow-log configure --nsg <NameorID of the Network Security Group> --enabled true --resource-group <resourceGroupName> --retention 91 --storage-account <NameorID of the storage account to save flow logs>

From Azure Portal
From Azure CLI