can't assign azure policy remediation to arc machines with MDE.Windows extensions i get error PolicyRemediationFailure
Can't deploy azure policy remediation to arc machines with MDE.Windows extensions i get error PolicyRemediationFailure The 'PUT' request failed with status code: 'BadRequest'. Inner Error: 'The resource with name 'HybridWorkerExtension' and type…
Same policy have different behavior in azure apim
I have an Azure API Management policy that displays a warning when saved, but it functions correctly works for my needs. But some clients encounter errors when saving, such as in the policy snippet below. <set-variable name="labels"…
Azure Policy - Remediation task not running on newly deployed resource
Hi. I created new policy that assign data collection EP to VM inside existing data collection rule. I provided this policy to my customer. The policy running on existing VMs in data collection rule, but when customer create new VM, the policy mark the VM…
![](https://techprofile.blob.core.windows.net/images/JdTkuVU2vkiAUNQVBpPS4Q.png?8DA274)
Policy to block the creation of NSGs with rules that allow RDP or SSH access from the Internet
I have been creating a policy that should allow the creation of private IP Network Security Groups (NSGs) in the following IP range (10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16) with the ports SSH and RDP. I have a problem and it is that I do not know how…
Azure Policy for enabling diagnostic settings for WebApp/Function App - No resources remediated
I am working in an existing Azure environment where there is no governance and I am in the process of creating Azure Policies. Currently I am working on creating Azure Policy to enable Diagnostic settings for Azure Web App, Azure Function App and Web…
![](https://techprofile.blob.core.windows.net/images/ny8DxPvPMky3dIOsQ9_3Dg.png?8DC7C0)
Suspension or cancelation subscriptions policies
Hello team , when a customer has a reserved instances and the partner put the customer in a suspension services, how is the managed for the instances?
![](https://techprofile.blob.core.windows.net/images/84eXqZh4KEGayKJ9OOltlQ.png?8DBCF1)
Enabling periodic assessment automatically for the VM
After creating the VM, I should see that periodic assesment option to be enabled a when I navigate to update section. how it can be achieved?
How to disable SSPR for specific users?
We have 3 computers that share a Microsoft 365 account. While replacing one of the 3 computers, Microsoft asks for "More information required ... Your organization needs more information to keep your account secure" and then requests that I…
How to determine if my company is using the gov cloud or the global cloud?
I am working on our organizations compliance status and trying to determine which version of Azure and O365 we purchased. We should be using the Gov cloud option but I'm not sure how to tell. Thanks.
Disable trusted launch Azure VM
Hello Everyone, I have an issue with one of my VM's on Azure. This machine was previously created with Trusted Launch enabled on it(Don't know why). Now, I can't backup it up with my default backup policy, only with enhanced one which is…
![](https://techprofile.blob.core.windows.net/images/rrOIPku7LUaUn_tU7-eZUw.png?8D99D5)
Import powershell module in guest configuration script resource
Hi, I'm trying to create a guest configuration to monitor if the VM enabled Windows defender realtimeMonitoring. Here is my code: Configuration EnableRealtimeMonitoring { Import-DscResource -ModuleName 'PSDscResources' …
How to fix Creating policy assignment 'Policy be Zone Resilient' in 'Subcription Name' failed. Reason: Could not find a version of policy definition: '/providers/Microsoft.Authorization/policyDefinit
Creating policy assignment 'Policy should be Zone Resilient' in 'Subcription Name' failed. Reason: Could not find a version of policy definition: '/providers/Microsoft.Authorization/policyDefinitions/xxxxx-xxx-xxx' that matches '1..'. The available…
Azure Policy Deployifnotexist Nested Templates and Parameters
Hello, I have a policy to deploy an alert on all subs not having it (as you can not create alert with MG group scope for now)...And I was not able to have parameters bein taken into account from the Policy down to the two nested templates for the…
Azure Custom Based Policy Migration
Azure Custom Based Policies needs to be migrated to new subscription any tool available or else need to recreate all policies manually Kindly advise
![](https://techprofile.blob.core.windows.net/images/v5-AjQBABgAAAAAAAAAAAA.png?8DC369)
Azure Custom Based Policy Migration Tool
Need to Migrate Azure Custom Based Policy from one subscription to another subscription. any migration tool available. Kindly Advice
![](https://techprofile.blob.core.windows.net/images/v5-AjQBABgAAAAAAAAAAAA.png?8DC369)
How to exclude a group of users in an azure policy from deny action
current situation: there is a zure policy with deny action that prohibits the deletion of resource groups and resources. requirement: create a user group in azure in which every member of that group is excluded from the azure policy deny action
azure policy to check managedby property of resource group
hi, i m trying to create azure policy to make sure the mangedby property is set when creating resources group using terraform. { "field": "type", "equals": "Microsoft.Resources/resourceGroups/managedBy" } but…
Azure Policy target only windows
Hello! :) I am fairly new to Azure Policy, I am trying to create a policy to target windows servers that doesn't have AHUB enabled, however this policy keeps getting Linux machines in aswell. Why is that, when I state it should be windowsserver or…
Azure built-in compliance standard for ISO 27001:2022
Is it planned to offer the compliance standard for ISO 27001:2022 y Azure regulation compliance initiatives?
Issue while accessing Azure Policy REST API in Power BI - Getting Error: Access to the resource is forbidden
I am trying to access Azure Policy Compliance data from Azure Policy REST API to Power BI. To access the Azure API into Power BI, I have registered an application in Entra ID and generated Client ID and Client Secret. In the App Permission, I have…