Content Comparison

...

• An Azure AD Application with the role of Security Reader. The application provides Blue Hexagon access to scan for cloud resource and service misconfigurations, suboptimal security policies, etc.

• An Azure Function that ingests NSG Flow Logs and Azure Activity Logs and sends them to the Blue Hexagon SaaS portal for analytics.

...

1. Create Azure storage account by following the steps here.

2. Enable NSG Flow Logs for all your network security groups.

   1. Method 1: Enable flow logs for each individual network security group as described here.

   2. Method 2: Use the built-in Azure Policy policy to enable flow logs automatically for all network security groups as described here.

Blue Hexagon ingests Azure Activity Logs from an Azure storage account blob container in the same region as where the terraform module is deployed below (see location variable in terraform.tfvars). To deliver Azure Activity Logs to a storage account:

1. Create Azure storage account by following the steps here.

2. Enable Activity Logs and send them to the storage account by following the steps here.

Deploy Terraform Module

The most convenient way to deploy the terraform module is via Azure Cloud Shell using a bash terminal.

...