As we utilize Azure Key Vault for lot of our clients and some clients ask for Auditing so that they know who accesses the vault and what secret has been accessed. By default, it is not enabled but enabling auditing for your Azure Key Vault is a straightforward process.
By following these steps, you can enhance the security posture of your organization’s sensitive data.
Check audit, check all logs and Select Send to Log Analytics Workspace.
Select the Subscription and the Create the New Log Analytics Work Space if required.
3. Save it and you are good to go.
How to Audit it?
Now try to access secrets from the Vault.
To audit the event that you just generated by accessing the Vault.
2. Go to insights à Hit Operations
3. You can also view the details of the operation by clicking view details which will tell who accessed and which secret was accessed.
Thanks for reading …
Tech Wizard
Tech Wizard 