793 questions with Azure Policy tags

Sort by: Updated
0 answers

VM Extension Tagging

Is it possible to create a policy to tag VM extensions via inherit tags from resource group policy?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-24T14:50:28.9033333+00:00
Ellis, LeRon (SkillStorm) 0 Reputation points
edited the question 2024-04-25T03:50:40.92+00:00
ManoharLakkoju 535 Reputation points Microsoft Vendor
0 answers

How to mask or hide OCP apim subscription key from being displayed in azure portal

Can we hide/mask OCP apim subscription key which is called from KeyVault to display in azure portal apim policies.

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,112 questions
Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
2,798 questions
Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
1,750 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-24T16:34:48.1166667+00:00
Nagender Tipparna 0 Reputation points
edited the question 2024-04-25T03:16:47.2933333+00:00
GitaraniSharma-MSFT 47,316 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Is it possible to use Azure Policy to apply CanNotDelete locks at resource level?

I am trying to use Azure Policy to track compliance of resources with or without locks on and if a resource doesn't have a lock on, then apply the lock. I have been able to get Azure Policy to apply CanNotDelete locks at the ResourceGroup level, however…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2021-10-13T18:52:32.337+00:00
Chad Woodhead 21 Reputation points
edited the question 2024-04-24T23:05:02.29+00:00
Grmacjon-MSFT 15,851 Reputation points
0 answers

Authorization error from deploying management group to tenant using az cli with owner/contributor role.

Below is the error I got trying to deploy new management group. I have contributor role on my service principle. {"code": "AuthorizationFailed", "message": "The client '' with object id '' does not have…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,569 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
Microsoft Deployment Toolkit
Microsoft Deployment Toolkit
A collection of Microsoft tools and documentation for automating desktop and server deployment. Previously known as Microsoft Solution Accelerator for Business Desktop Deployment (BDD).
827 questions
Microsoft Configuration Manager
asked 2024-04-18T20:01:58.43+00:00
Olawale, Ajayi eHS 0 Reputation points
edited the question 2024-04-24T11:53:47.7533333+00:00
Givary-MSFT 27,796 Reputation points Microsoft Employee
0 answers

We have a case where we are trying to fetch the calendar events using the getSchedule api, where we are using the client credentials flow and given the access policy to the mail-enabled security group with the user in the shared maill box

we are trying to use the client credentials flow token to fetch the free busy events of the users so we have given the application access policy to the mail-enabled security group with a single-user email which is a shared email so when we try…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,569 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-23T07:07:17.8433333+00:00
qa.interviewer1 5 Reputation points
edited the question 2024-04-24T11:52:46.9966667+00:00
Givary-MSFT 27,796 Reputation points Microsoft Employee
1 answer

Can we know the region of the Peered Vnet using Azure Polcies

Can we know the region of the Peered Vnet using Azure Polcies for eg there is a vnet named demo_vnet which is peered with another vnet named as shared_vnet present in a different subscription and i want to know the region of the shared_vnet, can i find…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-23T09:23:54.8466667+00:00
Gupta, Tushar 5 Reputation points
commented 2024-04-23T15:12:31.17+00:00
Sedat SALMAN 13,080 Reputation points
1 answer

Confused with Module 3 - Policy Management at https://github.com/Azure/Microsoft-Defender-for-Cloud/blob/main/Onboarding/Modules/3-Policy-Management.md#step-3---assign-and-customize-the-mdc-default-policy

Hi, I am reading the onboarding process and reached module 3 at https://github.com/Azure/Microsoft-Defender-for-Cloud/blob/main/Onboarding/Modules/3-Policy-Management.md#step-3---assign-and-customize-the-mdc-default-policy I have already activated all…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,192 questions
asked 2024-03-29T17:09:12.1766667+00:00
Salam ELIAS 112 Reputation points
commented 2024-04-22T13:07:12.7933333+00:00
Monalla-MSFT 11,551 Reputation points
2 answers

Assistance with nsg rule azure policy

Hello, I am having trouble creating an azure policy that adds and modifies default nsg rules if they do not match what is defined in the policy using the deployIfNotExists effect.. I am getting the error that the "deployment definition is…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-16T20:52:23.46+00:00
Harold Huckaby 0 Reputation points
commented 2024-04-22T08:09:04.4766667+00:00
AnuragSingh-MSFT 19,691 Reputation points
3 answers

Custom Azure policy "Logic apps should use the latest TLS version"

Hello, I need to create a custom policy for Logic Apps. There is already a built-in policy in Azure for App service and Function apps. App service (App Service apps should use the latest TLS version) - Definition ID:…

Azure Logic Apps
Azure Logic Apps
An Azure service that automates the access and use of data across clouds without writing code.
2,839 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-18T14:01:57.9766667+00:00
Kym Caris Natividad 20 Reputation points
edited an answer 2024-04-19T14:48:59.5566667+00:00
Prashant Kumar 75 Reputation points Microsoft Employee
2 answers

Applying azure PCI DSS4 regulatory complaince policy for passwords

Hi, I am trying to assign PCI DSS4 Defender for cloud regulatory compliance policy for passwords - Audit Windows machines that allow re-use of the passwords after the specified number of unique passwords- where count is 24 Audit Windows machines that…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,192 questions
asked 2024-04-16T20:23:01.5533333+00:00
Ishan Saxena 20 Reputation points
answered 2024-04-18T20:45:02.7166667+00:00
Marcin Policht 10,040 Reputation points MVP
2 answers One of the answers was accepted by the question author.

Azure policy for auditing trial subscriptions

My team is trying to create an audit effect Azure policy to audit any trial subscriptions. The goal of our policy is to show all the trial subscriptions as non-compliant. Below is the JSON template we were able to come up with. We are testing for…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-17T15:26:21.7566667+00:00
Sparsh Raj 20 Reputation points
answered 2024-04-18T09:23:32.85+00:00
AnuragSingh-MSFT 19,691 Reputation points
1 answer

Getting an syntax error when I want to create a policy definition with Azure CLI in on Windows

I'm quite new in Azure Cloud. I'm getting an syntax error when I want to create a policy definition with Azure CLI in on Windows: az policy definition create --name 'denyCoolTiering' --description ' Deny cool access tiering for storage' --rules…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-17T15:55:35.1066667+00:00
Alexandru Popescu 0 Reputation points
edited the question 2024-04-18T03:48:06.4266667+00:00
OMMI NAVEEN KUMAR 195 Reputation points Microsoft Vendor
1 answer

I am uanble to upgrade my account because my billing access was changed automatically by Azure

Recently my account was disabled. I would like to find out how to enable it and upgrade it. Its not letting me upgrade.

Azure Cost Management
Azure Cost Management
A Microsoft offering that enables tracking of cloud usage and expenditures for Azure and other cloud providers.
2,028 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
666 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2021-02-15T16:56:56.39+00:00
odsbyz 6 Reputation points
commented 2024-04-17T15:48:13.9666667+00:00
Christine 0 Reputation points
1 answer

Setting up Azure Firewall for network perimeter

How can I set up Azure Firewall for better security and at more of the resource group level? I already have a network security group (NSG) set up with IP whitelisting for an exposed endpoint, but I'm not sure how to connect the filtered traffic to the…

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
564 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-16T14:10:38.7166667+00:00
Anmol Arora 0 Reputation points
answered 2024-04-17T12:15:41.1166667+00:00
GitaraniSharma-MSFT 47,316 Reputation points Microsoft Employee
1 answer

Azure policy

I am testing a azure policy that I just successfully deployed. The policy works and it has been deployed at a device level. The thing is the policy is not working for local accounts only the cloud accounts that sign into the device have been affected…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-16T17:45:27.1833333+00:00
Daniel Poblano 0 Reputation points
answered 2024-04-16T18:45:30.4466667+00:00
Vahid Ghafarpour 17,870 Reputation points
0 answers

How to restrict users from deploying the resources in a RG when a specified tag is applied to that RG?

I already know how to deny resource deployment when a specific tag is missing using Azure custom policies. Now, I'm interested in creating a custom policy that prevents users from deploying resources in a resource group if a particular tag exists for…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-16T07:53:53.1266667+00:00
Priyanka Varma 60 Reputation points
1 answer

I am working on azure policy where an alert will be generated if a RBAC role is assigned with a blob data action permissions on a storage account. Can anyone please help in correcting the code I have written.

{ "mode": "All", "policyType": "Custom", "displayName": "Audit Creation of RBAC Roles for Storage Accounts", "description": "This policy audits any new or updated RBAC…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
2,684 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
926 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-03-25T14:24:12.9833333+00:00
Sahith Thatipalli 40 Reputation points
edited a comment 2024-04-16T03:21:36.9066667+00:00
Sumarigo-MSFT 43,486 Reputation points Microsoft Employee
1 answer

Create VM issue with Not allowed resource types - virtualNetwork

If I apply a new Azure policy to the management group which has been associate to the subscription. There is a configuration for "Not allowed resource types" with virtualNetwork. Could I create the new VM to existing VNet? Because we have…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2020-12-09T14:25:13.053+00:00
Walker Chong 41 Reputation points
commented 2024-04-14T10:04:52.6+00:00
Tobiloba Ajibade 0 Reputation points
3 answers

Find the resources which are untagged / not having any Tags in a Subscription

How to find all the resources which are Untagged / Not having any tags in a subscription Via PowerShell Script or Policies

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-02-14T13:07:26.23+00:00
Dhanalakshmi 20 Reputation points
commented 2024-04-12T20:46:15.0066667+00:00
Rob Logie 0 Reputation points
1 answer One of the answers was accepted by the question author.

How to exempt a particular Service Principal (SPN) / App registration from the denial actions enforced by a Azure custom policy

Hello, I've implemented a deny policy to prevent end users from deploying unauthorized resources. However, this policy is also affecting the automation within the service principal's account. Now, I want to find a way so that it should allow this…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
793 questions
asked 2024-04-09T05:12:39.05+00:00
Priyanka Varma 60 Reputation points
accepted 2024-04-12T10:19:52.69+00:00
Priyanka Varma 60 Reputation points