More Info:

Ensure that Network Watcher service is enabled within your Azure account subscriptions to help you monitor and diagnose various conditions at the network level. Microsoft Azure Network Watcher provides tools to monitor, diagnose, view metrics, and enable or disable logs for resources within a virtual network.

Risk Level

Medium

Address

Security

Compliance Standards

CISAZURE, CBP, SOC2, ISO27001, HIPAA, GDPR, NISTCSF, PCIDSS

Triage and Remediation

Remediation

To remediate the “Network Watchers Not Enabled” misconfiguration in Azure using the Azure console, follow these steps:

  1. Log in to your Azure portal.
  2. In the left-hand menu, click on “All services” and type “Network Watcher” in the search bar.
  3. Click on “Network Watcher” to open the service.
  4. In the left-hand menu of the Network Watcher service, click on “Network Watcher” again.
  5. Click on the subscription that you want to enable Network Watcher for.
  6. Click on “Enable Network Watcher” at the top of the page.
  7. Select the region where you want to enable Network Watcher.
  8. Click on “Enable” to enable Network Watcher for the selected region.
  9. Repeat steps 7-8 for all the regions where you want to enable Network Watcher.
  10. Once you have enabled Network Watcher for all the regions, click on “Network Watcher” in the left-hand menu again.
  11. Click on “Topology” to verify that Network Watcher is now enabled.

By following these steps, you should be able to remediate the “Network Watchers Not Enabled” misconfiguration in Azure using the Azure console.