Latest integration between ASC and ARG enables new very cool features like:
You can see bellow custom dashboard I created in 5 min
Search for “arg” in Azure Portal
On the left pane, you can see ASC data in ARG
Few KQL queries examples on what can be extracted from data, more about KQL & ARG - here
| where type == 'microsoft.security/assessments'
| extend assessmentKey = name, resourceId = tolower(trim(' ',tostring(properties.resourceDetails.Id))), healthStatus = properties.status.code, displayName = properties.displayName
| summarize count() by tostring(displayName)
| order by count_
Regulatory Compliance status
| where type == "microsoft.security/regulatorycompliancestandards"
| extend passedControls = trim(' ',tostring(properties.passedControls)), failedControls = trim(' ',tostring(properties.failedControls))
| project name,passedControls,failedControls
| where type == "microsoft.security/pricings"
| extend tier = trim(' ',tostring(properties.pricingTier))
| project name,tier,subscriptionId
Run the query:
To create dashboard, just go to “charts” tab and select chart type
Now, you can pin this custom dashboard to your main Azure landing page
Thanks for sharing this commands and it is very useful. Could you help to pull report specifically for Azure CIS controls with pass and fail controls in a chart view. Appreciate your support
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.