Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
809 questions
2 answers
One of the answers was accepted by the question author.
Subscription Management/ Governance
I have some questions. Are we able to prevent users within our organization from creating Subscriptions using the Visual Studio/Dev or other means in our Azure tenant? If now, what is the recommended way to appropriately govern existing/new…
asked 2021-05-20T16:36:33.71+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 73%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Jamie McFarling
31
Reputation points
commented 2021-06-03T16:28:27.063+00:00
Jamie McFarling
31
Reputation points
1 answer
One of the answers was accepted by the question author.
Policy to prevent creation of app services without authentication
I wish to create a policy that will prevent the creation of app services without authentication enabled (just auditing them is not enough). The following policy can correctly identify existing resources that do not have authentication enabled: { …
asked 2021-05-20T13:49:12.2+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 89%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Richard Misiak
21
Reputation points
accepted 2021-06-03T13:00:45.233+00:00
Richard Misiak
21
Reputation points
1 answer
One of the answers was accepted by the question author.
At what internal azure policy of effect type "audit" re-evaualte the azure resource?
I am using a built-in azure policy which checks whether storage account is using customer-managed keys or Microsoft managed key. This is of effect type as "Audit". It has detected 4 of my storage account. I enabled customer-managed keys in…
asked 2021-06-01T17:07:20.613+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 24%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
raju Kumar
156
Reputation points
commented 2021-06-03T07:07:02.763+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 39%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
SwathiDhanwada-MSFT
18,036
Reputation points
1 answer
One of the answers was accepted by the question author.
Date and Time of registration of each Service Providers in Azure
Dear All, Is there a way to see the Date and Time of registration of each Service Providers ?
asked 2021-05-26T13:36:33.82+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 4%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Prajith Karumathil
41
Reputation points
accepted 2021-05-27T01:40:38.653+00:00
Prajith Karumathil
41
Reputation points
1 answer
Policy to tag Azure Resources with Creator email Id
Is there any way to assign Azure policy on subscription level to Add a tag to resources with email id of creator (who creates the resource whether its from portal, ARM template or PowerShell.)
asked 2021-05-13T12:28:49.09+00:00
Amjad Nagori
286
Reputation points
commented 2021-05-24T11:02:36.28+00:00
SwathiDhanwada-MSFT
18,036
Reputation points
0 answers
Is there a way to force the naming of resources that automatically gets setup within Azure?
Good Day At times there are resources that gets automatically created from within ARM. That are dependencies to other resources you create. Or at times you cannot set the name of a particular service. For example the Gateway subnet will always be…
asked 2021-05-17T08:18:30.237+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDR%3C/text%3E%3C/svg%3E)
Desmond Richard
6
Reputation points
commented 2021-05-24T09:09:21.397+00:00
SwathiDhanwada-MSFT
18,036
Reputation points
1 answer
Duplicate built-in Azure Policy and change parameter
hello everyone, I am trying to duplicate some of the existing built-in Azure Policies so that I can edit them and change their parameters. For example, I'd like to change the value in the "A maximum of 3 owners should be designated for your…
asked 2021-05-21T20:18:04.047+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 19%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Dmitry
1
Reputation point
answered 2021-05-24T08:14:41.557+00:00
tbgangav-MSFT
10,396
Reputation points
1 answer
Is there a way to configure an alert for a user sigining from multiple ip address
We want to configure an alert if a user logs in from multiple ip address. Please advise if there is any such policy in azure portal.
asked 2021-05-22T22:49:14.937+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 10%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Aditya Gupta
1
Reputation point
answered 2021-05-23T06:56:36.37+00:00
Vasil Michev
97,386
Reputation points MVP
1 answer
Limiting Specific Selections of Azure VM for non Global Admins ?
Hi All, I wonder if it is possible to limit specific VM that the User or Developers can deploy across the multiple Subscriptions. Only the Global Administrator can deploy any type of VMs, but other than that, enforce the Azure Policy to show only few…
asked 2021-05-17T06:59:53.99+00:00
EnterpriseArchitect
4,896
Reputation points
commented 2021-05-19T14:10:23.547+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 47%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPP%3C/text%3E%3C/svg%3E)
Pranathi Panyam_MSFT
1,006
Reputation points Microsoft Employee
1 answer
Azure Policy behaviour with first party apps
Team, We are designing policies for some of our scenarios. We have a basic policy which checks apart from the resourceType if certain property of the resource matches with some value then trigger the “deployifnotexists” effect. 1)When end users…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 34%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Azure Policy for NSG Security Rules
I have following policy rules: "policyRule": { "if": { "allOf": [ { "allOf": [ { "field": "type", "equals":…
asked 2021-05-05T18:39:30.363+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 94%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYF%3C/text%3E%3C/svg%3E)
Yasmin, Fitri
266
Reputation points
commented 2021-05-10T08:59:05.03+00:00
Yasmin, Fitri
266
Reputation points
1 answer
Need to hide certain details in Azure Administrative Units
Hello Team, I have created an Azure Administrative unit to reset MFA of certain group of users(as a part of Authenticator Administrator), I need to hide contact information of all users(kindly take the reference from given screenshot highlighted…
asked 2021-04-26T09:09:20.173+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 0%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES2%3C/text%3E%3C/svg%3E)
ShashankSaxena-2458
131
Reputation points
commented 2021-05-10T07:15:45.55+00:00
AmanpreetSingh-MSFT
56,346
Reputation points
1 answer
Azure Introductory Demo video
I just signed on to Azure and was watching an introductory video by Eric Boyd. The video was supposed to be 48 minutes long. Unfortunately I had to log out and can't find the video after logging back in! Can someone send me a link on the platform or…
asked 2021-05-03T14:21:45.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 43%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Anirban Dutta
1
Reputation point
commented 2021-05-10T05:59:18.17+00:00
SadiqhAhmed-MSFT
39,326
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Azure Policy to deny creation of specific NSG priority rule
Hello, I am looking for some suggestion with below implementation. We have plan to reserve of the NSG Inbound & Outbound priorities ranges (eg. 100-200 ) and policy should deny the creation of NSG & NSG update rules within these ranges. …
asked 2021-05-06T13:05:42.2+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 27%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Az Cloud Learner
71
Reputation points
commented 2021-05-07T05:25:38.077+00:00
Az Cloud Learner
71
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure Portal Desktop "stay logged in" issue
Hello, There is not that match to explain - "stay signed in" doesn't work anymore, at all! Even if my laptop was slept (not hibernated) - Azure Portal Desktop app requires login from scratch. U may explain that as security reason - but…
asked 2021-04-08T08:19:02.053+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 63%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESN%3C/text%3E%3C/svg%3E)
Stas Novogursky
26
Reputation points
commented 2021-05-05T00:15:38.467+00:00
olufemia-MSFT
2,861
Reputation points
1 answer
How do you switch from PAYG to BYOS for existing Red Hat servers
I started with RHEL from Marketplace on Azure and worked on it for a while. Now, I would like to switch to bring-your-own-subscription. I have added Azure Subscription ID to Red hat, which gives me a new resource to create VM with BYOS. However, what I…
asked 2021-04-28T15:32:40.99+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 25%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
Kei Moon
151
Reputation points
answered 2021-05-04T23:00:45.48+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 98%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
KarishmaTiwari-MSFT
18,642
Reputation points Microsoft Employee
2 answers
One of the answers was accepted by the question author.
Get list of NonCompliant resources for a management group
I am trying to get list of all non-compliant resources from Azure for a certain management group. For that I am using below Powershell query, but it seems the result is getting limited to 1000 records, so I am not getting all the records. In the…
asked 2021-05-03T11:05:49.59+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 65%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
DiptiRanjan Swain
176
Reputation points
answered 2021-05-03T15:19:21.307+00:00
DiptiRanjan Swain
176
Reputation points
1 answer
One of the answers was accepted by the question author.
How to check Azure policy audit logs
Hi, I need to enable logging for all the activities perform related to Azure policy and forward the log to log analytics. Like when a policy was created, modified, deleted and by which user. Other details about the policies. Also want to log/track when…
asked 2021-04-26T10:27:20.167+00:00
DiptiRanjan Swain
176
Reputation points
commented 2021-04-26T15:02:49.51+00:00
tbgangav-MSFT
10,396
Reputation points
1 answer
How to apply azure policies as per AKS RBAC managed by Active Directory?
Team, We have 3 level of AD roles in Azure kubernetes. Admin --> created while making the cluster SRE --> Have almost 85 to 90% control on AKS. DEV user-> Have less control and only able to work in their specific namespace. Now…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 68%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
1 answer
Not able to create resources in new PAYG subscription
[88748-my-subscription.pdf][1] I have upgraded from my free trial subscription to Pay-as-you-go subscription, the subscription name is dp-subscription, but it is not coming as valid subscription name when I am trying to create new resources. Please let…
asked 2021-04-17T17:41:33.95+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 97%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
Dipanwita Paul
1
Reputation point
answered 2021-04-18T10:48:40.847+00:00
Vaibhav Chaudhari
38,661
Reputation points