More Info:

Enable Web Application Firewall recommendations for virtual machines.

Risk Level

Low

Address

Security, Operational Maturity

Compliance Standards

SOC2, ISO27001, HIPAA, HITRUST

Triage and Remediation

Remediation

To remediate the “Monitor Web Application Firewall setting is not enabled” misconfiguration in Azure using the Azure console, you can follow the below steps:

  1. Open the Azure portal and navigate to the Azure Application Gateway resource that you want to configure.
  2. Click on the “Firewall” option under the “Security” section in the left-hand menu.
  3. Under the “Web application firewall” section, click on the “Edit” button.
  4. In the “Web application firewall settings” page, scroll down to the “Diagnostic logs” section.
  5. Click on the “Enable” button next to “Send logs to Log Analytics workspace”.
  6. Select the Log Analytics workspace that you want to use for storing the diagnostic logs.
  7. Click on the “Save” button to save the changes.

Once you have completed these steps, the “Monitor Web Application Firewall setting is not enabled” misconfiguration will be remediated and the diagnostic logs for the web application firewall will be sent to the specified Log Analytics workspace for monitoring and analysis.