Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
1 answer
Empty default values in azure policy initiative paramters
Hello, I've created an azure policy initiative definition that uses a policy definition to tag resources with default values if some tags do not exist and other conditions. In the azure policy initiative definition, I created initiative…
Azure Policy
asked 2022-01-12T09:44:49.493+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 0%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIL%3C/text%3E%3C/svg%3E)
Igor Levin
1
Reputation point
commented 2022-01-27T09:38:57.4+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 41%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
AnuragSingh-MSFT
21,551
Reputation points
Moderator
1 answer
One of the answers was accepted by the question author.
Azure Policy
Hello, I do the Azure CSPM integration for my company. I came across two checks for which I had to write codes. Ensures deployed resources and resource groups belong to the list set in the allowed locations for resource groups policy Ensures a…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2022-01-20T21:21:09.157+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 34%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Rahul Nair
86
Reputation points
accepted 2022-01-24T20:48:03.347+00:00
Rahul Nair
86
Reputation points
1 answer
Unable to Import Blueprint using PowerShell
I have created a Blueprint, myblueprint1, in tenant1. The scope of Blueprint is at subscription level. BluePrint contains custom policies as Artifacts. I am able to successfully import the BluePrint using PowerShell with identity of global administrator…
Azure Blueprints
Azure Blueprints
An Azure service that provides templates for quick, repeatable creation of fully governed cloud subscriptions.
72 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-29T11:51:03.493+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 55.00000000000001%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPP%3C/text%3E%3C/svg%3E)
Parmar, Piyush
0
Reputation points
commented 2022-01-20T20:30:50.703+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 43%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Monalla-MSFT
13,071
Reputation points
Moderator
2 answers
Block Trial Subscriptions Being Created in Tenant
Hi, Visual studio pro subscription are creating without Admin privileges in Tenant. Is there anyway to ban this via policy ?
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2022-01-04T06:58:08.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 7.000000000000001%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
Santo Antony
21
Reputation points
answered 2022-01-19T13:56:34.087+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 96%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWW%3C/text%3E%3C/svg%3E)
Wilfried Woivré
6
Reputation points MVP
2 answers
Setting SQL Backup Redundancy with DeployIfNotExists - Possible?
I am attempting to use Policy in order to enforce a specific Backup Redundancy setting (Local, Zone or Geo) on Azure SQL Databases based on a tag that is set on that Database. The problem I'm seeing is that I don't believe it's possible to use…
Azure SQL Database
Azure SQL Database
An Azure relational database service.
6,363 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2022-01-14T09:21:47.3+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 68%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYJ%3C/text%3E%3C/svg%3E)
Yannick Janssens
21
Reputation points
answered 2022-01-17T19:11:48.69+00:00
Yannick Janssens
21
Reputation points
1 answer
Azure Policy deny not worked as expected
Hello, I've created an azure policy to deny the creation of a VM by some conditions. This is the policy: { "mode": "All", "policyRule": { "if": { "allOf": [ { "field":…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2022-01-04T12:39:55.367+00:00
Igor Levin
1
Reputation point
commented 2022-01-17T04:41:39.063+00:00
AnuragSingh-MSFT
21,551
Reputation points
Moderator
1 answer
Azure Policy: How to deploy an extension "A" on Linux VM only if another extension "B" is sucessfully provisioned?
We want to deploy an extension on VM only if another extension is provisioned successfully using azure policy.
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2022-01-11T12:28:17.04+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 46%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Singh, Subodh
1
Reputation point
answered 2022-01-12T18:40:20.95+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 39%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SwathiDhanwada-MSFT
18,996
Reputation points
Moderator
1 answer
One of the answers was accepted by the question author.
Groups in Custom Azure Policy Initative
I noticed that in built-in initiative, policies are group into different regulatory compliance. ![109793-image.png][1] When one of the category is clicked, the page will shows the details of the policy groups ![109729-image.png][2] Following that logic,…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-06-28T07:40:52.067+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 94%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYF%3C/text%3E%3C/svg%3E)
Yasmin, Fitri
326
Reputation points
accepted 2022-01-12T11:01:09.323+00:00
Yasmin, Fitri
326
Reputation points
2 answers
Unable to perform the Exercise - Create a website hosted in Azure
I am trying to perform the Excercise - Create a website hosted in Azure, but it fails with the below error summary. Kindly assist. Resource ‘ServicePlanbcdbb059-88fa’was disallowed by policy. (Code: RequestDisallowedByPolicy) Initiative: web…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-03-20T11:36:08.327+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 31%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESH%3C/text%3E%3C/svg%3E)
Sre Hari R
6
Reputation points
commented 2022-01-12T08:47:32.293+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 17%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
ITLAB
1
Reputation point
2 answers
One of the answers was accepted by the question author.
CPU load on virtual machines due to ATP
Hi, I have a curiosity regarding one of the metrics I've came across. Recently, I noticed that my CPU load on my virtual machines is going pretty crazy and after some research I noticed that this is due to the mdatp_audisp_plugin, which is the ATP …
Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
9,100 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2021-12-23T10:37:32.097+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 67%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECZ%3C/text%3E%3C/svg%3E)
Carolina Zamisnicu
316
Reputation points
commented 2022-01-07T04:51:24.253+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
35,626
Reputation points Microsoft Employee
Moderator
1 answer
One of the answers was accepted by the question author.
azure policy check all network security group rules for specific protocols.
Is it possible to I check my network rules if either my inbound has ICMPv4 is set to (3,11) or outbound ICMPv4 is set to (8)?
Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,783 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-27T05:34:42.13+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 10%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Jorell Macapagal
41
Reputation points
accepted 2022-01-03T03:58:38.027+00:00
Jorell Macapagal
41
Reputation points
1 answer
One of the answers was accepted by the question author.
Policy to deny adding a specific tag(not upon creation)
Hi Microsoft , i am looking for a solution to deny users to add a tag to existing resources. i have applied this policy at root management group and it works for new resources , but when i try to add a tag (that is not allowed while creation) it…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-21T11:20:15.257+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 26%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYH%3C/text%3E%3C/svg%3E)
Yahav Horev | CloudTeam.ai
136
Reputation points
accepted 2021-12-28T14:17:36.557+00:00
Yahav Horev | CloudTeam.ai
136
Reputation points
1 answer
Azure Policy for Azure Monitor not recognizing Windows Server 2022
I created an Azure Policy Assignment for the initiative Configure Windows machines to run Azure Monitor Agent and associate them to a Data Collection Rule and it does not recognize any Windows Server 2022 servers. I ran the Start-AzPolicyComplianceScan…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-10T21:52:04.58+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 55.00000000000001%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Matthew Dowst
16
Reputation points
commented 2021-12-27T08:50:53.427+00:00
AnuragSingh-MSFT
21,551
Reputation points
Moderator
1 answer
One of the answers was accepted by the question author.
ARM template does not identify policy function
When trying to deploy policy definitions using New-AzSubscriptionDeployment, it doesn't recognize the built-in policy functions. Below is the deployment json. { "$schema":…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-21T08:40:44.36+00:00
Jorell Macapagal
41
Reputation points
commented 2021-12-27T05:21:13.59+00:00
Jorell Macapagal
41
Reputation points
1 answer
One of the answers was accepted by the question author.
Force Tags on Subscription Creation?
Hi i tried to create a policy to force tags on subscription creation, somehow it dont worked i can still create the sub without tags. Is there a way to force it on creation?
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
0 answers
Prepay Purchase Done Via PO
One of my customer's just completed a prepay purchase via a PO. The order has been invoiced. I understand the funds will be moved to the enrollment under the master Agreement. Can you tell me how long this process will take? Is this done at the end…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-16T16:18:03.127+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 3%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELH%3C/text%3E%3C/svg%3E)
Lori Horn
1
Reputation point Microsoft Employee
commented 2021-12-21T19:27:39.307+00:00
SadiqhAhmed-MSFT
49,331
Reputation points Microsoft Employee
Moderator
1 answer
One of the answers was accepted by the question author.
How to create a policy that filters on Public access level "Blob"
My goal is to create a policy that checks on the setting Microsoft.Storage/storageAccounts/allowBlobPublicAccess ONLY for storage accounts that have containers with Public Access Level "Blob". I tried to add something like: …
Azure Storage
Azure Storage
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,548 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-13T16:13:15.687+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 56.00000000000001%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERG%3C/text%3E%3C/svg%3E)
Rik Groenewoud (Admin)
21
Reputation points
accepted 2021-12-17T11:58:07.56+00:00
Rik Groenewoud (Admin)
21
Reputation points
1 answer
Configure custom Azure AD Password Policy for M365 Users?
Hello all, Does the present Azure AD Free M365 service allow for custom password policies in tenants? I know we can change the expire or not property, and the default minimum characters is 8 with 1 Capital, lowercase and number, however with recent…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
Microsoft Security | Microsoft Entra | Microsoft Entra ID
25,266 questions
Microsoft Security | Microsoft Entra | Other
2,614 questions
asked 2021-12-16T21:29:04.467+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 7.000000000000001%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
WABGOR_Dave
1
Reputation point
answered 2021-12-16T23:05:07.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 34%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Mr Sb
371
Reputation points
1 answer
Multiple Log Analytics Workspaces deployment DSC
We are auto deploying Azure Monitor enrolment using Azure Policy. Resource are deployed in two regions, We would like to split the deployment so that the IaaS servers are enrolled into the local LA Workspace. We know about policy exclusions, but we…
Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,674 questions
Azure Automation
Azure Automation
An Azure service that is used to automate, configure, and install updates across hybrid environments.
1,371 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
asked 2021-12-13T11:53:45.907+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 20%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJR%3C/text%3E%3C/svg%3E)
J Rippon
81
Reputation points
commented 2021-12-16T07:05:28.027+00:00
SwathiDhanwada-MSFT
18,996
Reputation points
Moderator
1 answer
I am trying to create a custom policy in Azure that adds a route to route table if that not exists , but the compliance state is non-compliant even though if it exist why?
I am trying to implement a custom policy, that should create a Route if that does not exist in the Route table. I created a remediation task it is adding the route to the Route table. But when if the route pre-exists it is there still showing non…
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,022 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 85%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)