This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 20%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
The title of recommendation is Audit diagnostic Setting and the description: Audit diagnostic setting for selected resource types.
There is no automatic "Fix" button.
For most resources like Storage Accounts and App Services I opened the Diagonostic Settings on the resources and configured it to send the logs/metrics to Log Analytics workspace. But it complains for some resources that do not have "Diagnostic Settings" in the menu like:
I tried to set it on "parent" resources (e.g. Virtual Network, SQL Server, Azure Kubernetes Service) but it did not help.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 66%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHT%3C/text%3E%3C/svg%3E)
Same issue here on hundreds of VMs, only difference is that ours are already sending diagnostics to Log Analytics so I'm really not sure what it's complaining about.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 57.00000000000001%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI2%3C/text%3E%3C/svg%3E)
I was facing the same problem but for different resource types. To make the resources healthy, I had to uncheck the 'audit' category and manually select all diagnostics. I also created at least one alert for each of the resources, but I think this is unrelated. I hope this helps!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETP%3C/text%3E%3C/svg%3E)
Did you get this issue resolved? Kindly respond if this msg finds you well.
There's no clarity on this issue even today.
Hi MSFT,
I've configured diagnostic settings on my windows VM's to ingest logs into storage account.
Even then the policy compliance state is "NonCompliant".
Then, I did ingested the VM logs through Monitor--->Data Collection Rule to send its log to Log Analytics Workspace. And still it shows NonCompliant.
I allowed policy to assess my settings/configurations for 2 days. Not sure why this policy still shows that all my VM's arenonCompliant.
Kindly assist ASAP.
Thanks,
Tejas