Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
911 questions
0 answers
Effect of editing custom Azure Policy definition on existing assignments?
I am trying to understand how editing a custom Azure policy definition affects existing assignments but can't find any info on this. Our scenario: We have a custom policy definition for the deployment and configuration of the AMA client on Arc connected…
asked 2024-10-14T15:13:09.56+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 19%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Mark Poole (7805)
0
Reputation points
edited a comment 2024-11-01T20:51:33.0033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 20%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Pranay Reddy Madireddy
365
Reputation points Microsoft Vendor
0 answers
How to deploy an Azure Data Explorer Cluster resource with the ALZ policies activated
Hi, I've detected some limitations with a built-in policy definition that is part of the initiative "Deny-PublicPaaSEndpoints" in ALZ and that is preventing people from creating something, which is supposed to be accepted, through the GUI.…
asked 2024-10-30T14:30:29.5333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 36%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
REZAI Arash
0
Reputation points
commented 2024-11-01T18:33:09.77+00:00
Pranay Reddy Madireddy
365
Reputation points Microsoft Vendor
0 answers
Manage Azure policy using github
Dear community, I'm looking for guidance on how to export azure policy into github and use the git hub actions to deploy the same. I've tried to searching for relevant documentation. However, its not properly available. With github export no longer an…
asked 2024-11-01T11:51:35.2866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 70%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENK%3C/text%3E%3C/svg%3E)
Naveen Kishore
0
Reputation points
asked 2024-11-01T11:51:35.2866667+00:00
Naveen Kishore
0
Reputation points
1 answer
Azure Policy Export to Terraform Pipeline
Hi, Is it possibe to export an Azure Policy configuration code (or a selection of definitions) for use in a Terraform pipeline? I see the Azure Export Tool, but not sure how valid or suitable it might…
asked 2024-10-08T07:45:26.4333333+00:00
YogiBear
170
Reputation points
commented 2024-11-01T09:06:25.4066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 47%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Rahul Podila
110
Reputation points Microsoft Vendor
1 answer
Use Azure Policy at scale at an MSP
Hi there, I am starting to use Azure Lighthouse and Policy at a MSP. I want to use Azure Policy to manage all the delegated customer subscriptions. It seems that there is no built-in option to just push initiatives and policies to subscriptions in…
asked 2024-10-11T12:08:17.58+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 56.00000000000001%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL9%3C/text%3E%3C/svg%3E)
LaurentvanMastrigt-9976
25
Reputation points
commented 2024-11-01T09:06:00.71+00:00
Rahul Podila
110
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
assign RBAC role in Azure based on tag
Hello, I am looking for a way to assign RBAC reader role to resources based on the tags. I have a resource group that contains a lot of resources for one project. Junior developers need to have access only to some of these resources. Instead of assigning…
asked 2024-10-24T08:46:13.37+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 98%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOT%3C/text%3E%3C/svg%3E)
Oleg Tserkovnyuk
616
Reputation points
edited the question 2024-11-01T05:56:01.34+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 61%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXM%3C/text%3E%3C/svg%3E)
Xenia-MSFT
2,520
Reputation points Microsoft Vendor
0 answers
How to disable feature of redirecting all HTTP traffic to HTTPS in azure Web App service using azure policy.
How to disable feature of redirecting all HTTP traffic to HTTPS in azure Web App service using azure policy. Our client is asking for a policy so that if anyone creates Function app or logic App services, by default HTTPS only will configured as off.…
asked 2024-10-17T08:16:53.1866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 39%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGL%3C/text%3E%3C/svg%3E)
Godugu, Loka
0
Reputation points
commented 2024-11-01T04:46:45.54+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 32%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Pavan Minukuri
105
Reputation points Microsoft Vendor
1 answer
Azure resource graph query to get all policy definition details which are assigned
Azure has lot of inbuilt policies and few are custom policies.i need an Azure resource graph query to get all policy definition details of only the policies which are assigned
asked 2024-10-12T06:40:19.6266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 71%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
MS Techie
2,701
Reputation points
commented 2024-11-01T04:45:29.78+00:00
Pavan Minukuri
105
Reputation points Microsoft Vendor
1 answer
B2C Tenant Login issue
Hi all, I'm facing an issue with B2C Tenant Login when I access directly to the old login B2C Tenant page ( "/my-page/b2c_1a_signup_signin/oath2/v2.0/authorize?client_id=...&scope=..." which has expired value of client-request-id,…
asked 2024-10-21T17:42:09.3766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 59%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
DatNC
0
Reputation points
commented 2024-10-31T23:01:08.83+00:00
James Hamil
24,926
Reputation points Microsoft Employee
1 answer
Azure built-in compliance standard for ISO 27001:2022
Is it planned to offer the compliance standard for ISO 27001:2022 y Azure regulation compliance initiatives?
asked 2024-05-22T15:08:51.46+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 41%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECV%3C/text%3E%3C/svg%3E)
Carlos Villarroel
20
Reputation points
commented 2024-10-31T09:37:51.33+00:00
Rupert Davey
16
Reputation points
1 answer
One of the answers was accepted by the question author.
Need help in creating a custom policy which will auto remediate MySQL Flexible servers to TLS Version 1.2
I need help in creating a azure policy which will auto remediate MySQL Flexible Server from Older TLS Versions to Newer TLS Version (Version 1.2).
asked 2024-10-25T15:03:20.06+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 44%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESU%3C/text%3E%3C/svg%3E)
Sumeet Upadhyay
25
Reputation points
accepted 2024-10-30T11:34:46.1166667+00:00
Sumeet Upadhyay
25
Reputation points
1 answer
Deploying diagnostic settings through Azure Policy leaves them in a pending state
I'm following this article to create diagnostic settings for all our resources at a global scale. However, when the remediation task creates a deployment for the diagnostic settings, it seems like it gets stuck. The deployment appears completed, but the…
asked 2024-10-03T11:46:36.8966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 26%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYS%3C/text%3E%3C/svg%3E)
Yuliyan Serbezki
5
Reputation points
commented 2024-10-29T23:32:37.8966667+00:00
Rahul Podila
110
Reputation points Microsoft Vendor
0 answers
Site to Site VPN Connection
I have configured site to site VPN as per the Microsoft documentation. We have created: Vnet Vnet Gateway Local network gateway Connection We have configured with all the client's requirement. We are seeing connection status: Unknown We have also created…
asked 2024-10-25T12:40:28.9+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 33%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
VATIKA SAXENA
0
Reputation points
commented 2024-10-29T12:39:56.3366667+00:00
VATIKA SAXENA
0
Reputation points
3 answers
unable to login to Azure subscription
when trying to login to my subscription, it is throwing the error where self-diagnostic test is successful, I reached to Tech web, but they are saying open a ticket for azure team. Here is result from self-diagnostics { "browserInfo":…
asked 2024-10-21T14:34:16.6166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 92%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
Varinder Singh
0
Reputation points Microsoft Employee
edited a comment 2024-10-29T07:01:31.48+00:00
Rahul Podila
110
Reputation points Microsoft Vendor
0 answers
Account missuse
I received a notification indicating that my account may be subject to restrictions due to suspected misuse. I’m reaching out to request a review of my account status as I am unsure what might have triggered this alert. Could you please verify the…
asked 2024-10-28T19:29:51.66+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 60%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZK%3C/text%3E%3C/svg%3E)
Zaky Kasem
0
Reputation points
edited the question 2024-10-28T21:28:44.1333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 76%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
VarunTha
9,105
Reputation points Microsoft Vendor
0 answers
Step-by-Step Guide for Implementing Enterprise Policy as Code (EPAC) using Terraform for ISO 27001 Compliance
Hello Community, I'm working on implementing Enterprise Policy as Code (EPAC) using Terraform for regulatory compliance with ISO 27001 in an Azure environment. This is my first time working with EPAC, and I am new to the concept of policy implementation…
asked 2024-10-28T11:56:36.6333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 10%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJT%3C/text%3E%3C/svg%3E)
Jyoti Teli
0
Reputation points
edited the question 2024-10-28T11:57:26.2533333+00:00
Jyoti Teli
0
Reputation points
1 answer
Policy to deny VM & VMSS creation with installing the Entra ID (formerly AAD) extension on them
Can we have a custom policy to deny VM & VMSS creation with installing the Entra ID (formerly AAD) extension on them, Also I there a way to auto remediate and install VM extention for Entra ID (formerly AAD) extension on linux and windows VMs
asked 2024-10-24T10:38:28.84+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 64%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVR%3C/text%3E%3C/svg%3E)
Virender Rathore
0
Reputation points
commented 2024-10-28T10:10:18.0433333+00:00
Virender Rathore
0
Reputation points
0 answers
Tag name effect on Azure Defender for Cloud alerts
Hello! I am wondering if Tag names are case sensitive in case of Defender for Cloud sending alerts. For example if Defender for Cloud sends an alert based on the tag "Owner" would it also send notifications for: "Owner " …
asked 2024-10-28T09:19:39.9466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 79%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Caroline CAH
20
Reputation points
edited the question 2024-10-28T09:21:59.2366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 86%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
AmaranS
6,805
Reputation points Microsoft Vendor
0 answers
Implementing EPAC (ISO 270001) using Terraform
Hello Everyone , My company is using CAF to manage policies on Azure infrastructure. Now they want to switch to EPAC for better policy management. This is our first time for implementing EPAC. Have below queries for which need suggestion. How to decide…
asked 2024-10-28T07:27:35.66+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 54%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
Heena Alawadhi
0
Reputation points
asked 2024-10-28T07:27:35.66+00:00
Heena Alawadhi
0
Reputation points
1 answer
One of the answers was accepted by the question author.
What is the KQL query to extract Azure policies by certain properties?
What is the KQL query in Azure to extract all policies by friendly name, resource type, compliance status, policy type, initiative type, whether it is custom or built-in, and date created?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 72%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)