830 questions with Azure Policy tags

Sort by: Updated
1 answer

Azure Policy Tag add tag if missing

I set a new policy for existing resources to add required tag if missing. scenario1: Resource1 have the following tags and value Tag name = Project Value = ProjSSO Tag name = Purpose Value = app login however if the the policy trigger I received an…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,911 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
716 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-02-07T01:45:43.2433333+00:00
Reygie Prieto 0 Reputation points
commented 2024-06-07T10:35:37.87+00:00
Joel Kruse 0 Reputation points
2 answers

how do I use Azure Policy to enable 'Agentless scanning for machines (preview)' setting for Defender for CSPM

I cant seem to find a policy that enables the 'Agentless scanning for machines (preview)' setting in Defender for Cloud. How do i do it then?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,266 questions
asked 2023-03-15T20:25:57.67+00:00
Nadia Hansen 0 Reputation points
answered 2024-06-05T20:40:09.77+00:00
SteveJ22LK90 0 Reputation points
1 answer

Azure Default Policy preventing us creating or amending resources

Came into work after a weekend, and we noticed that Azure resources (VM's, AVD, Storage accounts etc), would not lets us create or amend settings because of a deny error with the Azure Default Policy (error below) Resource '#########' was disallowed by…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-29T09:55:57.41+00:00
Graham Thackery 11 Reputation points
commented 2024-06-05T16:19:46.9666667+00:00
Gavin Wickens 0 Reputation points
0 answers

Does the current SQL Database TLS Policy check if nothing is selected?

We recently implemented a built-in Azure Policy, that checks for the minimum TLS Version to be 1.2. -…

Azure SQL Database
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-06-04T00:35:40.3333333+00:00
Pooja Goel 0 Reputation points
commented 2024-06-04T18:50:52.8366667+00:00
tbgangav-MSFT 10,421 Reputation points
1 answer

Azure Policy & VM JIT - Do not allow Any as source

I am currently trying to prevent users from requesting Azure JIT VM access coming from the Source IP addresses "Any". According to this thread, https://learn.microsoft.com/en-us/answers/questions/846584/azure-vm-jit-do-not-allow-any-as-source ,…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,548 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,069 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-14T12:27:20.6233333+00:00
Jara Entren 20 Reputation points
edited the question 2024-06-03T12:05:35.69+00:00
Givary-MSFT 30,676 Reputation points Microsoft Employee
2 answers

How to create a overview over all VMs and his CIS compliance status?

Is there any way to generate an overview to see the CIS compliance coverage over all virtual maschines? Me problem is, we need to use CIS Images vor VMs but some applications need the possibility to deactivate some of the CIS rules to work correctly. So…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,548 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-15T07:00:47.17+00:00
Rust, Christopher 0 Reputation points
edited the question 2024-06-03T12:03:07.5933333+00:00
Givary-MSFT 30,676 Reputation points Microsoft Employee
0 answers

"ResourceNotFound" Error from the existing Azure Policy once the VM was deployed

I am trying to add MDE for all the resources. I know there is an "Endpoint Protection" function on server's service of CWP. But my requirement is that we need to control MDE's deployment by policy. So, I purchased the CWP server's service but…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-06-03T05:03:05.79+00:00
Barry Yuan 0 Reputation points
edited the question 2024-06-03T05:05:47.4333333+00:00
Barry Yuan 0 Reputation points
1 answer

My Azure Student Suscription suddenly was deactivated

Today I was developing a simple API in Go for learning purposes. I had installed go and set up the server using localhost on port 8080 and when it came to testing my host lost connection to remote and an email arrived explaining that my Azure…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-28T20:22:56.6+00:00
Juan David Padilla Diaz 0 Reputation points
answered 2024-05-29T07:07:23.3+00:00
SadiqhAhmed-MSFT 41,141 Reputation points Microsoft Employee
1 answer

Problem with "exclude" user/target resource in conditional access policy

Hi, I have been trying to restrict 1 user to access only 1 app on Azure Entra ID, so I use the condition access policy under security tab. I have put the conditions as follows: user: userx@microsoft.com Target Resources: Include All cloud apps &…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,532 questions
asked 2024-05-28T10:28:15.6466667+00:00
Atima Thong 0 Reputation points
commented 2024-05-29T06:32:54.36+00:00
Givary-MSFT 30,676 Reputation points Microsoft Employee
1 answer

Configure machines to receive a vulnerability assessment provider azure policy confusion

hi, can anyone please tell me why does the following Azure Policy Configure machines to receive a vulnerability assessment provider https://www.azadvertizer.net/azpolicyadvertizer/13ce0167-8ca6-4048-8e6b-f996402e3c1b.html has two options for the…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-27T13:42:11.2466667+00:00
AdamBudzinskiAZA-0329 91 Reputation points
edited a comment 2024-05-28T09:00:19.51+00:00
Stanislav Zhelyazkov 22,176 Reputation points MVP
1 answer One of the answers was accepted by the question author.

Unable to add application access policy: The remote name could not be resolved 'webdir.online.lync.com'

I am unable to add an application access policy to my organization due to the following error: I need an application access policy as my organization would like to use Microsoft Graph API and application access policy is needed for some of the APIs.

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,380 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2024-05-14T13:59:49.71+00:00
Ana Dudita 20 Reputation points
commented 2024-05-27T09:30:56.6333333+00:00
Ana Dudita 20 Reputation points
3 answers

Unable to deployment many 3rd party product from Azure Marketplace

Every time I try to deploy a product from the Azure Marketplace. I get an error at the validation step that looks like this: Is there any way to resolve this?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2022-08-28T15:51:09.097+00:00
Dagni McPhee 1 Reputation point
commented 2024-05-25T21:56:44.7866667+00:00
Dagni McPhee 1 Reputation point
1 answer

How can i export Azure policy controls output

I am trying to export the output of azure policy controls output into an excel file so that they can be tracked in the form of a report that i can present, if i copy and paste from the portal the formatting is all over the place. I was wondering if…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2023-11-02T16:21:12.98+00:00
MrFlinstone 506 Reputation points
commented 2024-05-22T09:34:11.9466667+00:00
Rajesh Sao 0 Reputation points
1 answer

Problem with subscription creating Azure AD B2C tenant

Hi everyone, i'm trying to separate my app environments so i want to create AD B2C tenants and their resources per environment (develop and production). I've created a Azure AD B2C tenant, but it doesn't have any subscription, so i can't create any…

Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,334 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,759 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,532 questions
asked 2022-12-07T14:09:18.067+00:00
Bruno Caruso 41 Reputation points
commented 2024-05-20T14:05:32.7+00:00
Russell Gilbert 0 Reputation points
2 answers

Bug in built-in activity log alert should exist policies

We use the following built-in policies to ensure activity log alerts are created for certain…

Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,014 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2023-11-10T07:41:23.96+00:00
neok-g 36 Reputation points
edited an answer 2024-05-15T19:44:01.2133333+00:00
Monalla-MSFT 12,846 Reputation points
1 answer One of the answers was accepted by the question author.

Azure VM JIT - Do not allow Any as source

Hello gents, I'm having some issues with JIT for Azure VMs. We want to use JIT to allow externals (Third-parties or contractors) to access specifics VMs remotely. As we have an huge list of externals (big enterprise, long list of applications…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,548 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2022-05-12T07:55:25.313+00:00
Ted 117 Reputation points
commented 2024-05-14T09:52:18.11+00:00
Jara Entren 20 Reputation points
4 answers

Azure Policy- Remediating Managed Disks to Disable Public Access+Disable Private Endpoint

Hello Microsoft and Community, There is a built in policy for Managed Disks: Managed disks should disable public network access and there is one remediation/configuration called: Configure managed disks to disable public network access But,on closer…

Azure Disk Storage
Azure Disk Storage
A high-performance, durable block storage designed to be used with Azure Virtual Machines and Azure VMware Solution.
599 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2023-07-02T10:00:17.0733333+00:00
Aditya Garg 61 Reputation points
answered 2024-05-08T14:37:28.9533333+00:00
Winter, Ashley 0 Reputation points
0 answers

I am using the azure policy to whitelist the domain for outbound connectivity from Azure Data Factory to other services. But facing issues in connectivity due to throttling applied on policy.

I am using the azure policy (https://learn.microsoft.com/en-us/azure/data-factory/configure-outbound-allow-list-azure-policy) which is applied at resource group level. This policy is working as expected and is only allowing outbound connectivity to the…

Azure Data Factory
Azure Data Factory
An Azure service for ingesting, preparing, and transforming data at scale.
10,128 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2023-11-27T13:36:07.8833333+00:00
Harshwardhan Deshmukh 5 Reputation points
commented 2024-05-06T22:12:53.91+00:00
Shahzad 0 Reputation points
1 answer

How to automate turning off or suspending some Azure services to save money?

What Azure objects can we suspend or turn off outside business hours to save running costs? App Service: The app service implements the message compose experience in the team tab and the messaging endpoint for the bot. Service Bus: The individual…

Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,334 questions
Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,380 questions
Azure Automation
Azure Automation
An Azure service that is used to automate, configure, and install updates across hybrid environments.
1,190 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,308 questions
asked 2024-05-05T13:46:36.69+00:00
EnterpriseArchitect 5,136 Reputation points
edited an answer 2024-05-05T14:46:41.47+00:00
Sina Salam 7,201 Reputation points
2 answers One of the answers was accepted by the question author.

Implement exemption in Azure Policies via using Tags and its value.

We have different sets of resources in our environment and need to implement some policies for audit and deny. However, we are not able to figure out how to exclude resources based on their tags and its value. We cannot just exclude whole RGs or subs.…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
830 questions
asked 2023-09-13T15:31:40.7066667+00:00
Rakesh Singh 20 Reputation points
commented 2024-05-02T16:34:35.4366667+00:00
Kozak, Daniel 0 Reputation points