Azure Policy definitions mutate (preview) effect
Mutation is used in Azure Policy for Kubernetes to remediate Azure Kubernetes Service (AKS) cluster components, like pods. This effect is specific to Microsoft.Kubernetes.Data policy mode definitions only.
To learn more, go to Understand Azure Policy for Kubernetes clusters.
Mutate properties
mutationInfo(optional)- Can't be used with
constraint,constraintTemplate,apiGroups, orkinds. - Can't be parameterized.
sourceType(required)- Defines the type of source for the constraint. Allowed values:
PublicURLorBase64Encoded. - If
PublicURL, paired with propertyurlto provide location of the mutation template. The location must be publicly accessible.Warning
Don't use SAS URIs or tokens in
urlor anything else that could expose a secret.
- Defines the type of source for the constraint. Allowed values:
- Can't be used with
Next steps
- Review examples at Azure Policy samples.
- Review the Azure Policy definition structure.
- Understand how to programmatically create policies.
- Learn how to get compliance data.
- Learn how to remediate non-compliant resources.
- Review Azure management groups.