More Info:

Enable Network Security Group recommendations for virtual machines.

Risk Level

Low

Address

Security, Operational Maturity

Compliance Standards

SOC2, HIPAA

Triage and Remediation

Remediation

To remediate the misconfiguration “Monitor Network Security Group setting is not enabled” in AZURE using AZURE console, follow the below steps:

  1. Log in to the AZURE portal (https://portal.azure.com/).
  2. Navigate to the “Security Center” tab from the left-hand side menu.
  3. Click on the “Policy” option under the “Security Center” tab.
  4. Under the Policy tab, click on “Security Policy” and then click on the “Edit” button.
  5. Scroll down to the “Network Security Groups should be configured to log to storage account” policy and click on it.
  6. Click on the “Remediation” button and then click on the “Enable” option.
  7. Click on the “Save” button to save the changes.

Once the above steps are completed, the “Monitor Network Security Group setting is not enabled” misconfiguration will be remediated in AZURE.