Just announced as generally available, I know many Microsoft Sentinel customers have been waiting to monitor Read, Write, and Delete operations for Storage accounts.
To enable this for Microsoft Sentinel, you’ll need to create a Diag Setting for each Storage account type and send the logs to the same Log Analytics Workspace as Microsoft Sentinel. As shown, I have enabled for blob and file storage as I don’t often use queue and table types.
