Logging user's email address of the Azure portal on the Bastion diagnostics log
Some organizations/companies need information for detecting/tracking the person who used Bastion and logged into VM.
Current Bastion diagnostics log has fields for subscription ID and VM username, However, there is no field for Azure portal user's name or email address.
Mike Wedderburn-Clarke commented
I would say that al organisations need this. I was really surprised to find that Bastion does not log the AAD user who initiated the 'connect' operation. Only logging the username used to log into the VM is not enough. We absolutely need the real AAD user.
I checked Diagnostic logs - storage account and log analytics - and they both only show the 'local user'
I also checked Audit log but the operation isn't logged there at all
Kanae Usui commented
Email address = UPN