topics
Summary
Details
Configure Diagnostic Settings for all Azure Event Grid resources
Impact: Low Category: Monitoring and Alerting
APRL GUID: 54c3191b-b535-1946-bba9-b754f44060f6
Description:
Enabling diagnostic settings on Azure Event Grid resources like custom topics, system topics, and domains lets you capture and view diagnostic information to troubleshoot failures effectively.
Potential Benefits:
Enhanced troubleshooting for Event Grid
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// under-development
Configure Dead-letter to save events that cannot be delivered
Impact: Low Category: Personalized
APRL GUID: 92162eb5-4323-3145-8a6c-525ce2f0700e
Description:
Event Grid may not deliver an event within a specific time or after several attempts, leading to dead-lettering where undelivered events are sent to a storage account.
Potential Benefits:
Saves undelivered events
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// under-development
Azure Event Grid topics should use Private Link Private Endpoints
Impact: Medium Category: Security
APRL GUID: b2069f64-4741-3d4a-a71d-50c8b03f5ab7
Description:
Use private endpoints for secure event ingress to custom topics/domains via a private link, avoiding the public internet. It employs an IP from the VNet space for your topic/domain.
Potential Benefits:
Secure, private VNet ingress
Learn More:
ARG Query:
Click the Azure Resource Graph tab to view the query
// Azure Resource Graph Query
// Find all eventgrid services not protected by private endpoints.
Resources
| where type contains "eventgrid"
| where properties['publicNetworkAccess'] == "Enabled"
| project recommendationId = "b2069f64-4741-3d4a-a71d-50c8b03f5ab7", name, id, tags
| order by id asc