Hi there! Let me walk you through the Azure counterparts for the AWS services you're inquiring about—this is stuff I’ve worked through plenty when moving workloads between the two platforms:

AWS Config #

The closest match in Azure is a combination of Azure Policy and Azure Resource Graph, plus Azure Monitor's Change Tracking and Inventory feature:

• Azure Policy lets you define and enforce compliance rules for your resources, just like AWS Config's managed rules. You can also audit resource configurations against your policies to spot deviations.
• Azure Resource Graph acts as a powerful query tool to explore and analyze resource configurations across your subscriptions, similar to how you'd use AWS Config's configuration history and inventory.
• Change Tracking and Inventory (part of Azure Monitor) tracks configuration changes to your resources over time, mirroring AWS Config's ability to log configuration modifications.

AWS CloudWatch Events #

You’re looking for Azure Event Grid paired with Azure Monitor Alerts for custom alerting:

• Azure Event Grid handles event routing and automation based on system or custom events, which aligns with AWS CloudWatch Events' event-driven workflow capabilities. You can trigger actions like Azure Functions, Logic Apps, or notifications when specific events occur.
• For custom alerts, Azure Monitor Alerts is exactly what you need. You can create alerts based on metrics, logs, activity logs, or even custom queries. Just pick the signal you want to monitor, set your threshold or condition, and configure an action group to send notifications (email, SMS, webhook) or run automated actions. It’s flexible enough to replicate most CloudWatch Alerts scenarios.

AWS CloudTrail #

Azure’s direct equivalent is the Azure Activity Log, and yes—Azure does automatically log management events by default:

• The Azure Activity Log records all subscription-level management operations (like creating, deleting, or modifying resources, role assignments, etc.), just like AWS CloudTrail tracks API calls. This log is enabled by default for every Azure subscription, no extra setup required.
• For identity-related events (like user sign-ins or role changes), you’ll want to use Azure AD Audit Logs alongside the Activity Log, which covers the IAM-focused tracking that CloudTrail also handles. You can analyze these logs in Azure Monitor Logs, export them to storage accounts or Event Hubs, or integrate with third-party tools.

Hope this helps you map out your security services across Azure and AWS! If you need deeper details on setting up any of these, feel free to ask.

内容的提问来源于stack exchange，提问作者Adrien Merlier