
function Enable-AzureNSGDiagnostics {

    Param (




        # check to see if local token exists (ran Login-AzureRMAccount)
        if (($null -eq (Get-AzureRmContext).Account)) {
            Write-Warning "Please run < Login-AzureRMAccount > first to create a session token...exiting."
        Try {
            Select-AzureRmSubscription -SubscriptionName $subscriptionname -ErrorAction Stop -Verbose | Out-Null
        Catch {

        # resolve oms workspace
        $workspace = (Get-AzureRmOperationalInsightsWorkspace).Where({$_.Name -eq "$workspaceName"})
        $workspaceID = $workspace.ResourceId
        # if null or collection greather than 1, break
        if (($null -eq $workspaceID)) {
            Write-Warning "Could not resolve oms workspace, exiting."
        # Get NSGs for all resource groups (or exit if none)
        Try {
            $nsgs = Get-AzureRmNetworkSecurityGroup -ErrorAction Stop -Verbose
        Catch {

        if (($null -eq $nsgs) -or ($nsgs.count -eq 0)) {
            Write-Warning "No NSGs found, exiting."
        # itterate through nsgs and enable diagnostics (straight to oms, no storage account or retention specified)
        else {
            $results = @()
            foreach ($nsg in $nsgs) {
                Try {
                    $op = Set-AzureRmDiagnosticSetting -ResourceId $nsg.ID -WorkspaceId $workspaceID -Enabled $true -ErrorAction Stop -Verbose
                    $results += $op
                Catch {

        return $results

