← Back to Skills

Azure Monitor Audit

🌐Community
by bagelhole · vlatest · Repository

Helps with Azure, monitoring, auditing as part of deploying and managing cloud infrastructure workflows.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add azure-monitor-audit npx -- -y @trustedskills/azure-monitor-audit
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "azure-monitor-audit": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/azure-monitor-audit"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

This skill allows an AI agent to query and interpret Azure Monitor Audit Logs. It can retrieve information about user activity, resource changes, and security events within an Azure environment. The agent can then summarize these logs or extract specific details based on provided criteria, aiding in compliance checks and incident investigation.

When to use it

  • Compliance Auditing: Generate reports demonstrating adherence to regulatory requirements by extracting relevant audit log data.
  • Security Incident Response: Quickly identify the root cause of a security event by analyzing user actions and resource modifications around the time of the incident.
  • Resource Change Tracking: Determine who made changes to specific Azure resources (e.g., virtual machines, storage accounts) and when those changes occurred.
  • User Activity Monitoring: Track user logins, access attempts, and other activities within an Azure tenant for security monitoring purposes.

Key capabilities

  • Query Azure Monitor Audit Logs
  • Filter logs by time range, resource type, or user identity
  • Summarize audit log data
  • Extract specific details from audit events

Example prompts

  • "Show me all login attempts to the Azure portal in the last 24 hours."
  • "What changes were made to the 'my-vm' virtual machine yesterday?"
  • "Generate a report of user activity on storage accounts for compliance purposes."

Tips & gotchas

  • Requires appropriate Azure permissions (e.g., Reader, Contributor) to access Audit Logs.
  • Audit logs retention period is limited; ensure sufficient retention policies are in place if historical data is needed.
View Repository →

Tags

🛡️

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates — what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
bagelhole
Installs
8
Repository (canonical source) →

🌐 Community

Passed automated security scans.