This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 79%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECT%3C/text%3E%3C/svg%3E)
Hi there,
I'm trying to create a custom policy to match ipSecurityRestriction rules for our organisational Public IP addresses.
I want to do this for Function Apps in the first instance, but once I have the policy created, I'll align it to other publicly facing Web Apps.
I'm having a real problem with the format of the policy. I'm feeding our Public IPs in to the policy via a parameter array, but I can't find the correct syntax to give a non-compliance. I've even tried to use a single IP to evaluate against, but I either get all of my resources reporting 100% compliant or 100% non-compliant, depending on the condition format.
Has anyone got a working policy that they can socialise? I'd be really appreciative.
Thanks in advance,
CT
What alias are you using for the Public IPs? Can you share the rule portion of the policy definition?