Hi Carlos – thanks for your feedback. We need more feedback from users on this feature due to the many complexities of how WS-security is implemented. Would what Carlos describes be helpful for you? Is this preferable to a mutual TLS connection secure the communication?
3 votes1 comment · Azure Monitor-Log Analytics » Network Monitoring · Flag idea as inappropriate… · Admin →Subramani Ananthapadmanabhan commented
This has been working for a while with any firewall. What specifics are you looking for?
Palo Alto sends by default to AppInsights https://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/set-up-the-vm-series-firewall-on-azure/enable-azure-application-insights-on-the-vm-series-firewall.html
Palo Alto with CEF config --->rsyslog or syslog-ng--->security Center (which is powered by Log Analytics) . to get steps please go to Azure Security Center-->security Solutions and pick Palo Alto
6 votesSubramani Ananthapadmanabhan commented
I have ~ 10 keys that need to be shared across 50 apps. Without granular secret level RBAC I have to have ~300 KV for each of my 4 environments. if this feature is enabled, I can have 10 keyvaults per secret and use MSI to grant Get permissions to the key vautls.Subramani Ananthapadmanabhan supported this idea ·