![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 93%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERH%3C/text%3E%3C/svg%3E)
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
Hi,
I have written about a similar thing in a blog post. The similarity is that basically the conditions you see are based on Defender for Cloud (Azure Security Center) assessments that are being made and after that the results of those assessments are published to ARM API so Azure Policy can evaluate on the results. As mentioned in the blog post this basically results in two separate evaluations happening and only one of them (the policy one) you can trigger manually. One option is to wait at least 2-3 days before you check the compliance. It is possible also that the assessment Defender for Cloud is making has bugs or reports false positives. In that case may be it is better to not trust the policy or try to open support case to Azure reporting your issues.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.