Log Analytics RBAC
1 Topic
Log Analytics RBAC
Hi Team, Below is my requirement related to configuring azure PAAS resources to Send logs to log analytics workspace. Tenant Name: XYZ Subscription A - Log Analytics workspace(Name: Security) is provisioned and on top of it, the azure sentinel is enabled. Description A: This log analytics workspace is the central workspace. Where resources running in different subscriptions(B & C) under the same tenant need to send logs to LA workspace in subscription A Subscription B & C: Have a couple of resources running and the Owner/Contributor of these subscriptions need to send logs to LA workspace in Subscription A. But as per my security control, I can provide log analytics reader access on LA workspace (running in sub-A) for the owner/contributor of the subscription B & C. But after testing, the user with log analytics reader on Security workspace is to not able to configure resource(in sub b or c) to send logs to Security log analytics. It's only working after providing the log analytics contributor(i cant provide this RBAC). ASK: Is there any way that I can provide specific RBAC to users in sub b or c so that they can configure resource to send logs to log analytics workspace in sub A. Hope this is understandable.Solved2.3KViews0likes3Comments