Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
402 questions
Has anyone experienced logs being cleared when Azure Arc is updated?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 57.00000000000001%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)
Deimling, Alex
0
Reputation points
Hello All,
Coinciding with an Azure Arc update we had received an alert that logs were cleared as well. Our client security team explained they have seen this case in other clients as well. But, I cannot find documentation to be 100%, as log clearing can also be an IOC.
I am sure this is a false positive of any malicious intent, but thought id share if anyone else has experienced this?
C:\Program Files\WindowsAdminCenter\PowerShellModules\Microsoft.WindowsAdminCenter.Configuration\Microsoft.WindowsAdminCenter.Configuration.psm1 is the script that was ran which was around same time as Arc update.
Sign in to answer