📕 Azure Subscription

• Contextual name: 📕 Azure Subscription
• ID: /types/CA10__CaAzureAccount__c

Fields

	Label	API Name	Type	Help
🔒	Active Directory ID	CA10__activeDirectoryId__c	Text(255)
🔒🔌	Available Location Names	CA10__availableLocationNames__c	LongTextArea(131072)	API Call: Microsoft.Resources/subscriptions/locations/read
🔒	Billing Account ID	CA10Z1__billingAccountId__c	Text(255)	API Call: Microsoft.Billing/billingAccounts/billingSubscriptions
🔒	CloudAware ID	CA10__caId__c	Number(18, 0)
🔒	CloudAware UUID	CA10__caUuid__c	Text(255)
🔒	Collector Status Reason	CA10__collectorStatusReason__c	LongTextArea(131072)
🔒	Cost Center	CA10__costCenter__c	Text(255)
🔒	Cost: 30-Day	CA10__cost30d__c	Currency(18, 2)
🔒	Cost: MTD	CA10__costMtd__c	Currency(18, 2)
🔒	Created Date	CreatedDate	DateTime
🔒	Defender For Cloud Settings	CA10__defenderForCloudSettings__c	LongTextArea(131072)	Inline Help: List
🔒🔌	Defender For Cloud Settings JSON	CA10__defenderForCloudSettingsJson__c	LongTextArea(131072) JSON	Inline Help: JSON
🔒	Deleted	IsDeleted	Checkbox
🔒	Department Name	CA10__departmentName__c	Text(255)
🔒	Enrollment Number	CA10__enrollmentNumber__c	Text(255)
🔒	Last Activity Date	LastActivityDate	Date
🔒	Last Modified Date	LastModifiedDate	DateTime
🔒	Last Update	CA10__lastUpdate__c	DateTime
🔒	Management Group ID	CA10Z1__managementGroupId__c	Text(255)
🔒	Owner Active Directory ID	CA10__ownerActiveDirectoryId__c	Text(255)
🔒	Record ID	Id	Text
🔒🔌	Security Center: Auto Provisioning	CA10__securityCenterAutoProvisioning__c	LongTextArea(131072) JSON	Inline Help: JSON Document API Call: Microsoft.Security/autoProvisioningSettings
🔒🔌	Security Center: Contacts	CA10__securityCenterContacts__c	LongTextArea(131072) JSON	Inline Help: JSON Document API Call: Microsoft.Security/securityContacts
🔒	Status (Azure State)	CA10__azureStatus__c	Text(255)	API Call: subscription
🔒	Status (Collector)	CA10__resourceStatus__c	Text(255) TRAFFIC_LIGHT(No Access - YELLOW, Error - RED, OK - GREEN)	API Call: subscription
🔒🔌	Subscription ID	CA10__subscriptionId__c	Text(255)
🔒	Subscription Name	Name	Text(80)
🔒	System Modstamp	SystemModstamp	DateTime
🔒	Tag Count	CA10__tagCount__c	Number(18, 0)
🔒	Tags	CA10__tags__c	LongTextArea(131072)
🔒	Tags JSON	CA10__tagsJson__c	LongTextArea(131072)

Extracts

	Name	Extracts File
🔒	CA10__availableLocationNames__c	🔌 object.extracts.yaml
🔒	CA10__defenderForCloudSettingsJson__c	🔌 object.extracts.yaml
🔒	CA10__securityCenterAutoProvisioning__c	🔌 object.extracts.yaml
🔒	CA10__securityCenterContacts__c	🔌 object.extracts.yaml
🔒	CA10__subscriptionId__c	🔌 object.extracts.yaml
	caJsonFrom__defenderForCloudSettings__c	🔌 object.extracts.yaml
	caJsonFrom__securityCenterContacts__c	🔌 object.extracts.yaml
	caJsonFrom_availableLocationNames__c	🔌 object.extracts.yaml
	caJsonQueryBoolean__securityCenterContacts_default_roles__c	🔌 object.extracts.yaml
	caJsonQueryText__securityCenterContacts_default_alert_notifications__c	🔌 object.extracts.yaml
	caJsonQueryText__securityCenterContacts_default_alert_notifications_severity__c	🔌 object.extracts.yaml
	caJsonQueryText__securityCenterContacts_default_email__c	🔌 object.extracts.yaml
	caJsonQueryText__securityCenterContacts_default_state__c	🔌 object.extracts.yaml

Lookups

	Label	API Name	Type
🔒	Active Directory	CA10__activeDirectory__c / CA10__activeDirectory__r	📕 Azure Active Directory
🔒	Billing Account	CA10Z1__billingAccount__c / CA10Z1__billingAccount__r	CA10Z1__CaAzureBillingAccount__c
🔒	Created By ID	CreatedById / CreatedBy	User
🔒	Last Modified By ID	LastModifiedById / LastModifiedBy	User
🔒	Management Group	CA10Z1__managementGroup__c / CA10Z1__managementGroup__r	CA10Z1__CaAzureManagementGroup__c
🔒	Owner Active Directory	CA10__ownerActiveDirectory__c / CA10__ownerActiveDirectory__r	📕 Azure Active Directory
🔒	Owner ID	OwnerId / Owner	Group User
🔒	Received Connection ID	ConnectionReceivedId / ConnectionReceived	PartnerNetworkConnection
🔒	Record Type ID	RecordTypeId / RecordType	RecordType
🔒	Sent Connection ID	ConnectionSentId / ConnectionSent	PartnerNetworkConnection

Related Lists

	Related Type	Related List API Name	Foreign Key Field
🔒	📕 Azure AKS Cluster	CA10Z1__Azure_AKS_Clusters__r	CA10Z1__subscription__c
🔒	📕 Azure Defender Plan	CA10Z1__Azure_SQL_Server_Vulnerability_Assessmnt__r	CA10Z1__subscription__c
🔒	📕 Azure MySQL Server	CA10Z1__Azure_MySQL_Servers__r	CA10Z1__subscription__c
🔒	📕 Azure PostgreSQL Server	CA10Z1__Azure_PostgreSQL_Servers__r	CA10Z1__subscription__c
🔒	📕 Azure Private Endpoint Connection	CA10Z1__Azure_Private_Endpoint_Connections__r	CA10Z1__subscription__c
🔒	📕 Azure Private Endpoint Link Service Conn	CA10Z1__Azure_Private_Endpoint_Link_Service_Conn__r	CA10Z1__subscription__c
🔒	📕 Azure Activity Log Alert	CA10__Azure_Activity_Log_Alerts__r	CA10__subscription__c
🔒	📕 Azure App Service	CA10__Azure_App_Services__r	CA10__subscription__c
🔒	📕 Azure Authorization Role	CA10__Azure_Authorization_Role_Definitions__r	CA10__subscription__c
🔒	📕 Azure Cosmos DB Account	CA10__Azure_Cosmos_DB_Accounts__r	CA10__subscription__c
🔒	📕 Azure Diagnostic Setting	CA10__Azure_Diagnostic_Settings__r	CA10__subscription__c
🔒	📕 Azure Key Vault Key	CA10__Azure_Key_Vault_Keys__r	CA10__subscription__c
🔒	📕 Azure Key Vault Secret	CA10__Azure_Key_Vault_Secrets__r	CA10__subscription__c
🔒	📕 Azure Key Vault	CA10__Azure_Key_Vaults__r	CA10__subscription__c
🔒	📕 Azure Managed Disk	CA10__Azure_Managed_Disks__r	CA10__subscription__c
🔒	📕 Azure Network Security Group Rule	CA10__Azure_Network_Security_Group_Rules__r	CA10__account__c
🔒	📕 Azure Network Security Group	CA10__Azure_Network_Security_Groups__r	CA10__account__c
🔒	📕 Azure Network Watcher	CA10__Azure_Network_Watchers__r	CA10__subscription__c
🔒	📕 Azure Resource	CA10__Azure_Resources__r	CA10__account__c
🔒	📕 Azure SQL Database	CA10__AzureSqlDatabases__r	CA10__account__c
🔒	📕 Azure SQL Server	CA10__AzureSqlServers__r	CA10__account__c
🔒	📕 Azure Storage Account	CA10__Azure_Storage_Accounts__r	CA10__account__c
🔒	📕 Azure Storage Blob Container	CA10__Azure_Storage_Blob_Containers__r	CA10__account__c
🔒	📕 Azure Virtual Disk	CA10__Azure_Virtual_Machine_Disks__r	CA10__account__c
🔒	📕 Azure Virtual Machine	CA10__Azure_Virtual_Machines__r	CA10__account__c
🔒	📕 Azure VM Scale Set Instance	CA10__Azure_VM_Scale_Set_Instances__r	CA10__subscription__c

Extract Files

Extract	Type	Flags
🔌 object.extracts.yaml	📕 Azure Subscription

Logic Files

Logic	Policy	Flags
🧠 prod.logic.yaml 🟢	📝 [LEGACY] Azure Subscription Microsoft Defender For DNS is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Create or Update Network Security Group does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Create or Update Public IP Address Rule does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Create or Update Security Solution does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Create or Update SQL Server Firewall Rule does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Create Policy Assignment does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Delete Network Security Group does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Delete Policy Assignment does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Delete Public IP Address Rule does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Delete Security Solution does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Activity Log Alert for Delete SQL Server Firewall Rule does not exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟠🟢	📝 Azure Subscription Application Insights are not configured 🟢	🟠 x1, 🟢 x2
🧠 prod.logic.yaml 🟠🟢	📝 Azure Subscription Bastion Host does not exist 🟢	🟠 x1, 🟢 x2
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Custom Subscription Administrator Roles exist 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Log Analytics Agent is not auto provisioned 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For App Services is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Azure Cosmos DB is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Containers is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Key Vault is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Open-Source Relational Databases is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Resource Manager is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Servers is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Microsoft Defender For Storage is not set to On 🟢	🟢 x3
🧠 prod.logic.yaml 🔴🟢	📝 Azure Subscription Network Watcher is not enabled in every available region 🟢	🔴 x1, 🟢 x2
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Security Alert Notifications additional email address is not configured 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Security Alert Notifications for alerts with High severity are not configured 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Azure Subscription Security Alert Notifications to subscription owners are not configured 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Microsoft Defender For Cloud Integration With Microsoft Defender For Cloud Apps is not enabled 🟢	🟢 x3
🧠 prod.logic.yaml 🟢	📝 Microsoft Defender For Cloud Integration With Microsoft Defender For Endpoint is not enabled 🟢	🟢 x3