How to disable SSPR for specific users?
We have 3 computers that share a Microsoft 365 account. While replacing one of the 3 computers, Microsoft asks for "More information required ... Your organization needs more information to keep your account secure" and then requests that I…
How to determine if my company is using the gov cloud or the global cloud?
I am working on our organizations compliance status and trying to determine which version of Azure and O365 we purchased. We should be using the Gov cloud option but I'm not sure how to tell. Thanks.
Azure arc machine configuration deployment error
Hello I am attempting to deploy sample machine configuration for an Azure arc machine resource following the steps mentioned in https://learn.microsoft.com/en-us/azure/governance/machine-configuration/how-to/develop-custom-package/overview except for…
Disable trusted launch Azure VM
Hello Everyone, I have an issue with one of my VM's on Azure. This machine was previously created with Trusted Launch enabled on it(Don't know why). Now, I can't backup it up with my default backup policy, only with enhanced one which is…
Import powershell module in guest configuration script resource
Hi, I'm trying to create a guest configuration to monitor if the VM enabled Windows defender realtimeMonitoring. Here is my code: Configuration EnableRealtimeMonitoring { Import-DscResource -ModuleName 'PSDscResources' …
How to fix Creating policy assignment 'Policy be Zone Resilient' in 'Subcription Name' failed. Reason: Could not find a version of policy definition: '/providers/Microsoft.Authorization/policyDefinit
Creating policy assignment 'Policy should be Zone Resilient' in 'Subcription Name' failed. Reason: Could not find a version of policy definition: '/providers/Microsoft.Authorization/policyDefinitions/xxxxx-xxx-xxx' that matches '1..'. The available…
Azure Policy Deployifnotexist Nested Templates and Parameters
Hello, I have a policy to deploy an alert on all subs not having it (as you can not create alert with MG group scope for now)...And I was not able to have parameters bein taken into account from the Policy down to the two nested templates for the…
Azure Custom Based Policy Migration
Azure Custom Based Policies needs to be migrated to new subscription any tool available or else need to recreate all policies manually Kindly advise
Azure Custom Based Policy Migration Tool
Need to Migrate Azure Custom Based Policy from one subscription to another subscription. any migration tool available. Kindly Advice
How to exclude a group of users in an azure policy from deny action
current situation: there is a zure policy with deny action that prohibits the deletion of resource groups and resources. requirement: create a user group in azure in which every member of that group is excluded from the azure policy deny action
Policy written in azure purview
You can manage all the Azure resources under the same policy in Azure Purview. To manage all Azure resources under the same policy in Azure Purview, you can create a single policy that covers an entire resource group or subscription. This approach…
azure policy to check managedby property of resource group
hi, i m trying to create azure policy to make sure the mangedby property is set when creating resources group using terraform. { "field": "type", "equals": "Microsoft.Resources/resourceGroups/managedBy" } but…
Azure Policy target only windows
Hello! :) I am fairly new to Azure Policy, I am trying to create a policy to target windows servers that doesn't have AHUB enabled, however this policy keeps getting Linux machines in aswell. Why is that, when I state it should be windowsserver or…
Azure built-in compliance standard for ISO 27001:2022
Is it planned to offer the compliance standard for ISO 27001:2022 y Azure regulation compliance initiatives?
Issue while accessing Azure Policy REST API in Power BI - Getting Error: Access to the resource is forbidden
I am trying to access Azure Policy Compliance data from Azure Policy REST API to Power BI. To access the Azure API into Power BI, I have registered an application in Entra ID and generated Client ID and Client Secret. In the App Permission, I have…
Azure Policy Tag add tag if missing
I set a new policy for existing resources to add required tag if missing. scenario1: Resource1 have the following tags and value Tag name = Project Value = ProjSSO Tag name = Purpose Value = app login however if the the policy trigger I received an…
how do I use Azure Policy to enable 'Agentless scanning for machines (preview)' setting for Defender for CSPM
I cant seem to find a policy that enables the 'Agentless scanning for machines (preview)' setting in Defender for Cloud. How do i do it then?
Azure Default Policy preventing us creating or amending resources
Came into work after a weekend, and we noticed that Azure resources (VM's, AVD, Storage accounts etc), would not lets us create or amend settings because of a deny error with the Azure Default Policy (error below) Resource '#########' was disallowed by…
Does the current SQL Database TLS Policy check if nothing is selected?
We recently implemented a built-in Azure Policy, that checks for the minimum TLS Version to be 1.2. -…
Azure Policy & VM JIT - Do not allow Any as source
I am currently trying to prevent users from requesting Azure JIT VM access coming from the Source IP addresses "Any". According to this thread, https://learn.microsoft.com/en-us/answers/questions/846584/azure-vm-jit-do-not-allow-any-as-source ,…