Azure Policy built-in definitions for Azure Container Instances
The name of each built-in policy definition links to the policy definition in the Azure portal. Use the link in the Version column to view the source on the Azure Policy GitHub repo.
Azure Container Instances
|Azure Container Instance container group should deploy into a virtual network||Secure communication between your containers with Azure Virtual Networks. When you specify a virtual network, resources within the virtual network can securely and privately communicate with each other.||Audit, Disabled, Deny||2.0.0|
|Azure Container Instance container group should use customer-managed key for encryption||Secure your containers with greater flexibility using customer-managed keys. When you specify a customer-managed key, that key is used to protect and control access to the key that encrypts your data. Using customer-managed keys provides additional capabilities to control rotation of the key encryption key or cryptographically erase data.||Audit, Disabled, Deny||1.0.0|