added all logs policies

EdB-MSFT · EdB-MSFT · commit 4109f3ba79d3 · 2024-02-21T17:33:02.000+02:00
diff --git a/articles/azure-monitor/essentials/diagnostics-settings-policies-deployifnotexists.md b/articles/azure-monitor/essentials/diagnostics-settings-policies-deployifnotexists.md
@@ -6,7 +6,7 @@ ms.author: edbaynash
 services: azure-monitor
 ms.topic: conceptual
 ms.custom: devx-track-azurecli, devx-track-azurepowershell
-ms.date: 02/25/2023
+ms.date: 02/25/2024
 ms.reviewer: lualderm
 --- 
 
@@ -16,7 +16,7 @@ Policies and policy initiatives provide a simple method to enable logging at-sca
 Enable resource logs to track activities and events that take place on your resources and give you visibility and insights into any changes that occur.
 Assign policies to enable resource logs and to send them to destinations according to your needs. Send logs to event hubs for third-party SIEM systems, enabling continuous security operations. Send logs to storage accounts for longer term storage or the fulfillment of regulatory compliance. 
 
-A set of built-in policies and initiatives exists to direct resource logs to Log Analytics Workspaces, Event Hubs, and Storage Accounts. The policies enable audit logging, sending logs belonging to the **audit** log category group to an event hub, Log Analytics workspace or Storage Account. The policies' `effect` is `DeployIfNotExists`, which deploys the policy as a default if there aren't other settings defined.
+A set of built-in policies and initiatives exists to direct resource logs to Log Analytics Workspaces, Event Hubs, and Storage Accounts. The policies enable audit logging, sending logs belonging to the **audit** or the **All logs** log category group,  to an event hub, Log Analytics workspace or Storage Account. The policies' `effect` is `DeployIfNotExists`, which deploys the policy as a default if there aren't other settings defined.
 
 
 ## Deploy policies.
@@ -37,12 +37,12 @@ The following steps show how to apply the policy to send audit logs to for key v
 1. Select the **Parameters** tab.
 1. Select the Log Analytics Workspace that you want to send the audit logs to.
 1. Select the **Remediation** tab.
- :::image type="content" source="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-parameters.png" alt-text="A screenshot of the assign policy page, parameters tab.":::
+ :::image type="content" source="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-parameters.png" lightbox="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-parameters.png" alt-text="A screenshot of the assign policy page, parameters tab.":::
 1. On the remediation tab, select the keyvault policy from the **Policy to remediate** dropdown.
 1. Select the **Create a Managed Identity** checkbox.
 1. Under **Type of Managed Identity**, select **System assigned Managed Identity**.
 1. Select **Review + create**, then select **Create** .
-  :::image type="content" source="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-remediation.png" alt-text="A screenshot of the assign policy page, remediation tab.":::
+  :::image type="content" source="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-remediation.png" lightbox="./media/diagnostics-settings-policies-deployifnotexists/assign-policy-remediation.png" alt-text="A screenshot of the assign policy page, remediation tab.":::
 
 
 ### [CLI](#tab/cli)
@@ -382,41 +382,149 @@ This policy deploys a diagnostic setting using a category group to route logs to
 
 ## Supported Resources
 
-Built-in Audit logs policies for Log Analytics workspaces, Event Hubs, and Storage Accounts exist for the following resources:
-
-* microsoft.agfoodplatform/farmbeats
-* microsoft.apimanagement/service
-* microsoft.appconfiguration/configurationstores
-* microsoft.attestation/attestationproviders
-* microsoft.automation/automationaccounts
-* microsoft.avs/privateclouds
-* microsoft.cache/redis
-* microsoft.cdn/profiles
-* microsoft.cognitiveservices/accounts
-* microsoft.containerregistry/registries
-* microsoft.devices/iothubs
-* microsoft.eventgrid/topics
-* microsoft.eventgrid/domains
-* microsoft.eventgrid/partnernamespaces
-* microsoft.eventhub/namespaces
-* microsoft.keyvault/vaults
-* microsoft.keyvault/managedhsms
-* microsoft.machinelearningservices/workspaces
-* microsoft.media/mediaservices
-* microsoft.media/videoanalyzers
-* microsoft.netapp/netappaccounts/capacitypools/volumes
-* microsoft.network/publicipaddresses
-* microsoft.network/virtualnetworkgateways
-* microsoft.network/p2svpngateways
-* microsoft.network/frontdoors
-* microsoft.network/bastionhosts
-* microsoft.operationalinsights/workspaces
-* microsoft.purview/accounts
-* microsoft.servicebus/namespaces
-* microsoft.signalrservice/signalr
-* microsoft.signalrservice/webpubsub
-* microsoft.sql/servers/databases
-* microsoft.sql/managedinstances
+Built-in All logs and Audit logs policies for Log Analytics workspaces, Event Hubs, and Storage Accounts exist for the following resources:
+
+|Resource Type| All logs| Audit Logs|
+|---|---|---| 
+|microsoft.aad/domainservices|Yes|Yes|
+|microsoft.agfoodplatform/farmbeats|Yes|Yes|
+|microsoft.analysisservices/servers|Yes|No|
+|microsoft.apimanagement/service|Yes|Yes|
+|microsoft.app/managedenvironments|Yes|Yes|
+|microsoft.appconfiguration/configurationstores|Yes|Yes|
+|microsoft.appplatform/spring|Yes|No|
+|microsoft.attestation/attestationproviders|Yes|Yes|
+|microsoft.automation/automationaccounts|Yes|Yes|
+|microsoft.autonomousdevelopmentplatform/workspaces|Yes|No|
+|microsoft.avs/privateclouds|Yes|Yes|
+|microsoft.azureplaywrightservice/accounts|Yes|Yes|
+|microsoft.azuresphere/catalogs|Yes|Yes|
+|microsoft.batch/batchaccounts|Yes|Yes|
+|microsoft.botservice/botservices|Yes|No|
+|microsoft.cache/redis|Yes|Yes|
+|microsoft.cache/redisenterprise/databases|Yes|Yes|
+|microsoft.cdn/cdnwebapplicationfirewallpolicies|Yes|No|
+|microsoft.cdn/profiles|Yes|Yes|
+|microsoft.cdn/profiles/endpoints|Yes|No|
+|microsoft.chaos/experiments|Yes|Yes|
+|microsoft.classicnetwork/networksecuritygroups|Yes|No|
+|microsoft.cloudtest/hostedpools|Yes|No|
+|microsoft.codesigning/codesigningaccounts|Yes|Yes|
+|microsoft.cognitiveservices/accounts|Yes|Yes|
+|microsoft.communication/communicationservices|Yes|No|
+|microsoft.community/communitytrainings|Yes|Yes|
+|microsoft.confidentialledger/managedccfs|Yes|Yes|
+|microsoft.connectedcache/enterprisemcccustomers|Yes|No|
+|microsoft.connectedcache/ispcustomers|Yes|No|
+|microsoft.containerinstance/containergroups|Yes|No|
+|microsoft.containerregistry/registries|Yes|Yes|
+|microsoft.customproviders/resourceproviders|Yes|No|
+|microsoft.d365customerinsights/instances|Yes|No|
+|microsoft.dashboard/grafana|Yes|Yes|
+|microsoft.databricks/workspaces|Yes|No|
+|microsoft.datafactory/factories|Yes|No|
+|microsoft.datalakeanalytics/accounts|Yes|No|
+|microsoft.datalakestore/accounts|Yes|No|
+|microsoft.dataprotection/backupvaults|Yes|No|
+|microsoft.datashare/accounts|Yes|No|
+|microsoft.dbformariadb/servers|Yes|No|
+|microsoft.dbformysql/flexibleservers|Yes|Yes|
+|microsoft.dbformysql/servers|Yes|No|
+|microsoft.dbforpostgresql/flexibleservers|Yes|Yes|
+|microsoft.dbforpostgresql/servergroupsv2|Yes|No|
+|microsoft.dbforpostgresql/servers|Yes|No|
+|microsoft.desktopvirtualization/applicationgroups|Yes|No|
+|microsoft.desktopvirtualization/hostpools|Yes|No|
+|microsoft.desktopvirtualization/scalingplans|Yes|No|
+|microsoft.desktopvirtualization/workspaces|Yes|No|
+|microsoft.devcenter/devcenters|Yes|Yes|
+|microsoft.devices/iothubs|Yes|Yes|
+|microsoft.devices/provisioningservices|Yes|No|
+|microsoft.digitaltwins/digitaltwinsinstances|Yes|No|
+|microsoft.documentdb/cassandraclusters|Yes|Yes|
+|microsoft.documentdb/databaseaccounts|Yes|Yes|
+|microsoft.documentdb/mongoclusters|Yes|Yes|
+|microsoft.eventgrid/domains|Yes|Yes|
+|microsoft.eventgrid/partnernamespaces|Yes|Yes|
+|microsoft.eventgrid/partnertopics|Yes|No|
+|microsoft.eventgrid/systemtopics|Yes|No|
+|microsoft.eventgrid/topics|Yes|Yes|
+|microsoft.eventhub/namespaces|Yes|Yes|
+|microsoft.experimentation/experimentworkspaces|Yes|No|
+|microsoft.healthcareapis/services|Yes|No|
+|microsoft.healthcareapis/workspaces/dicomservices|Yes|No|
+|microsoft.healthcareapis/workspaces/fhirservices|Yes|No|
+|microsoft.healthcareapis/workspaces/iotconnectors|Yes|No|
+|microsoft.insights/autoscalesettings|Yes|No|
+|microsoft.insights/components|Yes|No|
+|microsoft.insights/datacollectionrules|Yes|No|
+|microsoft.keyvault/managedhsms|Yes|Yes|
+|microsoft.keyvault/vaults|Yes|Yes|
+|microsoft.kusto/clusters|Yes|Yes|
+|microsoft.loadtestservice/loadtests|Yes|Yes|
+|microsoft.logic/integrationaccounts|Yes|No|
+|microsoft.logic/workflows|Yes|No|
+|microsoft.machinelearningservices/registries|Yes|Yes|
+|microsoft.machinelearningservices/workspaces|Yes|Yes|
+|microsoft.machinelearningservices/workspaces/onlineendpoints|Yes|No|
+|microsoft.managednetworkfabric/networkdevices|Yes|No|
+|microsoft.media/mediaservices|Yes|Yes|
+|microsoft.media/mediaservices/liveevents|Yes|Yes|
+|microsoft.media/mediaservices/streamingendpoints|Yes|Yes|
+|microsoft.netapp/netappaccounts/capacitypools/volumes|Yes|Yes|
+|microsoft.network/applicationgateways|Yes|No|
+|microsoft.network/azurefirewalls|Yes|No|
+|microsoft.network/bastionhosts|Yes|Yes|
+|microsoft.network/dnsresolverpolicies|Yes|No|
+|microsoft.network/expressroutecircuits|Yes|No|
+|microsoft.network/frontdoors|Yes|Yes|
+|microsoft.network/loadbalancers|Yes|No|
+|microsoft.network/networkmanagers|Yes|Yes|
+|microsoft.network/networkmanagers/ipampools|Yes|Yes|
+|microsoft.network/networksecuritygroups|Yes|No|
+|microsoft.network/networksecurityperimeters|Yes|No|
+|microsoft.network/p2svpngateways|Yes|Yes|
+|microsoft.network/publicipaddresses|Yes|Yes|
+|microsoft.network/publicipprefixes|Yes|Yes|
+|microsoft.network/trafficmanagerprofiles|Yes|No|
+|microsoft.network/virtualnetworkgateways|Yes|Yes|
+|microsoft.network/virtualnetworks|Yes|No|
+|microsoft.network/vpngateways|Yes|No|
+|microsoft.networkanalytics/dataproducts|Yes|Yes|
+|microsoft.networkcloud/baremetalmachines|Yes|No|
+|microsoft.networkcloud/clusters|Yes|No|
+|microsoft.networkcloud/storageappliances|Yes|No|
+|microsoft.networkfunction/azuretrafficcollectors|Yes|No|
+|microsoft.notificationhubs/namespaces|Yes|Yes|
+|microsoft.notificationhubs/namespaces/notificationhubs|Yes|Yes|
+|microsoft.openenergyplatform/energyservices|Yes|No|
+|microsoft.operationalinsights/workspaces|Yes|Yes|
+|microsoft.powerbi/tenants/workspaces|Yes|No|
+|microsoft.powerbidedicated/capacities|Yes|No|
+|microsoft.purview/accounts|Yes|Yes|
+|microsoft.recoveryservices/vaults|Yes|No|
+|microsoft.relay/namespaces|Yes|No|
+|microsoft.search/searchservices|Yes|Yes|
+|microsoft.servicebus/namespaces|Yes|Yes|
+|microsoft.servicenetworking/trafficcontrollers|Yes|No|
+|microsoft.signalrservice/signalr|Yes|Yes|
+|microsoft.signalrservice/webpubsub|Yes|Yes|
+|microsoft.sql/managedinstances|Yes|Yes|
+|microsoft.sql/managedinstances/databases|Yes|No|
+|microsoft.sql/servers/databases|Yes|Yes|
+|microsoft.storagecache/caches|Yes|No|
+|microsoft.storagemover/storagemovers|Yes|No|
+|microsoft.streamanalytics/streamingjobs|Yes|No|
+|microsoft.synapse/workspaces|Yes|Yes|
+|microsoft.synapse/workspaces/bigdatapools|Yes|Yes|
+|microsoft.synapse/workspaces/kustopools|Yes|Yes|
+|microsoft.synapse/workspaces/scopepools|Yes|Yes|
+|microsoft.synapse/workspaces/sqlpools|Yes|Yes|
+|microsoft.timeseriesinsights/environments|Yes|No|
+|microsoft.timeseriesinsights/environments/eventsources|Yes|No|
+|microsoft.videoindexer/accounts|Yes|No|
+|microsoft.web/hostingenvironments|Yes|Yes|
+|microsoft.workloads/sapvirtualinstances|Yes|Yes|
 
 ## Next Steps
 
