Governance Anti Patterns Monitoring

Monitoring

Logging, diagnostics, and observability gap detection

Domain: monitoring

Checks (3)

Check	Description
ANTI-MON-001	Log retention set to 0 days — set retention_in_days to at least 30 for POC.
ANTI-MON-002	Logging or metrics disabled in diagnostic settings — enable both for observability.
ANTI-MON-003	InstrumentationKey detected — use ConnectionString (APPLICATIONINSIGHTS_CONNECTION_STRING) instead.

ANTI-MON-001

Log retention set to 0 days — set retention_in_days to at least 30 for POC.

Rationale: Zero retention means logs are immediately discarded, making incident investigation impossible.
Agents: terraform-agent, bicep-agent

Targets

Services	Triggers On	Correct Patterns
Microsoft.Insights/diagnosticSettings Microsoft.OperationalInsights/workspaces	'retention_in_days = 0' 'retention_days = 0'	'retention_in_days = 30' 'retentionInDays = 30'

ANTI-MON-002

Logging or metrics disabled in diagnostic settings — enable both for observability.

Rationale: Disabled log or metric collection creates blind spots where failures and security events go undetected.
Agents: terraform-agent, bicep-agent

Targets

Services	Triggers On	Correct Patterns
Microsoft.Insights/diagnosticSettings	'enabled_log_category = []' 'logs_enabled = false' 'metrics_enabled = false'	'logs_enabled = true' 'metrics_enabled = true' '# Enable diagnostic settings for all PaaS resources'

ANTI-MON-003

InstrumentationKey detected — use ConnectionString (APPLICATIONINSIGHTS_CONNECTION_STRING) instead.

Rationale: InstrumentationKey is deprecated by Microsoft. ConnectionString is the supported integration point and includes region routing.
Agents: terraform-agent, bicep-agent, app-developer, csharp-developer, python-developer

Targets

Services	Triggers On	Correct Patterns
Microsoft.Insights/components Microsoft.App/containerApps Microsoft.Web/sites	'instrumentation_key' 'instrumentationkey'	'connection_string' 'APPLICATIONINSIGHTS_CONNECTION_STRING' '# Use connection_string instead of InstrumentationKey'

Home

Getting Started

Stages

Interfaces

Configuration

Agent System

Features

Quality

Benchmarks

Help

Governance

Policies — Azure

AI Services

Compute

Data Services

Identity

Management

Messaging

Monitoring

Networking

Security

Storage

Storage Account

Web & App

Policies — Well-Architected

Reliability

Security

Cost Optimization

Operational Excellence

Monitoring & Observability

Performance Efficiency

Integration

Anti-Patterns

Standards

Application

IaC

Principles

Transforms

Governance Anti Patterns Monitoring

Monitoring

Checks (3)

ANTI-MON-001

Targets

ANTI-MON-002

Targets

ANTI-MON-003

Targets

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!