A way to extend backup monitoring for app services using policy?

Aditya Nath 1 Reputation point
2020-09-11T05:57:46.717+00:00

There are azure policies for monitoring whether virtual machines have backups or not. Most of the online documentations point towards the two built-in policies which deal with backups. I want to extend/tweak the built-in policy definition to cover App Services as well.
For virtual machine, the backups are listed under backupprotecteditems in Microsoft.RecoveryServices/vaults which is easy enough to audit in policies. The web apps wont have backups there. The backup for a web app, goes in a storage container which were manually created when the backups were enabled.
So I abandoned working with policy and started looking at powershell scripts to automate backups for webapps. I found Get-AzWebAppBackupList command which would do the job for me. But, as with all of azure powershell commands, I assumed it will be working with a REST query under the hood. After some more digging, the command is a POST call to the following url: https://management.azure.com/subscriptions<sub_id>/resourceGroups/<rg-name./providers/Microsoft.Web/sites/<site-name>/config/backup/list?api-version=2019-08-01
I thought if I can check for 'config/backup/list' in policy by using the fields property I can then make Policy do the monitoring for me. But I dont see any of those options while editing policy definition.
someImage

Is there any other way I can extend backup monitoring to app services using policy?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
911 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,881 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.