Enforce governance with Azure Policy and resource locks

Module
6 Units

Intermediate

Security Engineer

Azure Policy

Azure

Enforce security standards before resources reach production using Azure Policy. Assign built-in policy definitions and initiatives at management group scope, author custom definitions with automated remediation tasks, and protect critical resources from deletion using Azure resource locks.

Learning objectives

After completing this module, you can:

Assign built-in Azure Policy definitions and initiatives to enforce security configurations at subscription and management group scope
Create custom Azure Policy definitions with remediation tasks to enforce controls that built-in definitions don't cover
Configure Azure resource locks to prevent critical resources from being deleted or modified

Prerequisites

Working knowledge of Azure administration at the AZ-104 level
Basic understanding of Azure resource hierarchy (management groups, subscriptions, resource groups, resources)
Familiarity with Azure role-based access control (RBAC) concepts

Get started with Azure

Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.

Introduction min
Assign built-in Azure Policy definitions min
Create and deploy custom policy definitions min
Implement resource locks min
Knowledge check min
Summary min

Start