939 questions with Azure Policy tags

Sort by: Updated
1 answer

I have enabled the periodic assessment of this VM through azure policy but still periodic assessment is not enabled.

I have enabled the periodic assessment of this VM through azure policy but still periodic assessment is not enabled.

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
Azure Update Manager
Azure Update Manager
An Azure service to centrally manages updates and compliance at scale.
330 questions
asked 2024-12-08T17:49:00.76+00:00
Harshit Mittal 0 Reputation points
commented 2024-12-25T01:58:53.9666667+00:00
Pavan Minukuri 915 Reputation points Microsoft Vendor
0 answers

Policy definition "Windows machines should be configured to use secure communication protocols" is being wrongly applied to Windows11 machines.

I have some windows 11 machines and they are being flagged by Microsoft Defender for Cloud saying "Windows machines should be configured to use secure communication protocols". But when I research this issue I found out that Windows 11 has…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
Windows 11
Windows 11
A Microsoft operating system designed for productivity, creativity, and ease of use.
10,276 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,449 questions
asked 2024-12-24T23:07:59.2766667+00:00
Chris Lovett 25 Reputation points Microsoft Employee
1 answer

Need to create a policy which allows specific users for cluster creation in azure databricks

Need help to create a policy which allows specific users for cluster creation in azure databricks

Azure Databricks
Azure Databricks
An Apache Spark-based analytics platform optimized for Azure.
2,284 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-28T12:47:02.7133333+00:00
Sahitya Nigam 0 Reputation points
commented 2024-12-24T16:13:31.39+00:00
Pranay Reddy Madireddy 1,230 Reputation points Microsoft Vendor
2 answers

Azure Defender for cloud Settings | Security policies

Guideline to create Azure Defender for cloud Settings | Security policies

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-27T07:50:58.7833333+00:00
Bimala Shrestha 5 Reputation points
commented 2024-12-24T01:25:39.6933333+00:00
Rahul Podila 805 Reputation points Microsoft Vendor
0 answers

Dynamic 'kid' Usage in Azure APIM Validate-JWT Policy

We currently use hardcoded exponent and modulus values within the

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,238 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-12-19T16:16:21.6433333+00:00
Aaron Bowe 0 Reputation points
commented 2024-12-23T17:34:00.53+00:00
Khadeer Ali 1,400 Reputation points Microsoft Vendor
1 answer

Create alert if somebody creates application registration with not single tenant

Hi all, I am looking for a way to prevent/notify creating application registration with not a single tenant. I have checked many articles about it and summarized for myself next: Direct enforcement of "Single Tenant" for App Registrations via…

Azure Monitor
Azure Monitor
An Azure service that is used to collect, analyze, and act on telemetry data from Azure and on-premises environments.
3,396 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-28T09:52:56.2266667+00:00
Viktor Korokhov 130 Reputation points
commented 2024-12-23T16:40:50.9033333+00:00
SadiqhAhmed-MSFT 47,836 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

How to convert existing API Management named values from Secret type to Key Vault reference

I have received Azure Advisor recommendations regarding API Management security enhancement, specifically stating that 'API Management secret named values should be stored in Azure Key Vault.' In our organization, we have multiple API Management…

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,342 questions
Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,238 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-12-18T18:41:41.4533333+00:00
Shamod Wijerathne 20 Reputation points
commented 2024-12-23T13:28:52.0966667+00:00
Shamod Wijerathne 20 Reputation points
2 answers

Can you link a log analytic workspace to a dedicated cluster by a policy?

We want to deploy a dedicated cluster and enforce people to be linked to this cluster with their LAW automatically. Is this possible to be done by a policy? Or is there a better "best practise" way of (automatically) linking workspaces to a…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-10-04T07:21:32.11+00:00
Hoeneveld, T.A. (Tim) 50 Reputation points
edited the question 2024-12-21T11:51:42.74+00:00
TP 100.9K Reputation points
2 answers One of the answers was accepted by the question author.

How to create a custom policy to disable Azure Storage Account firewall option?

I want to disable the Azure Storage Account firewall option. Forcing traffic to use Private EndPoint. I have found a few policies, but it is not disabling the feature. I would like to disable the option that is underlined in red. Thanks in advance.

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,292 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-01-11T00:27:33.5866667+00:00
Madhu Rao 80 Reputation points
commented 2024-12-19T15:23:51.7833333+00:00
SamsonJohn 1 Reputation point
1 answer

Manage Azure policy using github

Dear community, I'm looking for guidance on how to export azure policy into github and use the git hub actions to deploy the same. I've tried to searching for relevant documentation. However, its not properly available. With github export no longer an…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-01T11:51:35.2866667+00:00
Naveen Kishore 0 Reputation points
edited the question 2024-12-18T06:29:25.4233333+00:00
RNareddy 1,430 Reputation points Microsoft Vendor
0 answers

Problems with Microsoft Defender for Cloud identity recommendations V2

The new set of identity related recommendations when GA on 2023-05-01: https://github.com/MicrosoftDocs/azure-docs/commit/aba0c46fdabe84065951c96a7df75333a0493cac#diff-dbd404e58cedaa40736d88385d006caf82189af9cac95af849538aab5c5b57d8L70-L78 As a result…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,449 questions
asked 2023-05-22T19:55:57+00:00
Janne Kujanpää 256 Reputation points
commented 2024-12-16T18:50:13.84+00:00
neok-g 0 Reputation points
1 answer

Azure built-in compliance standard for ISO 27001:2022

Is it planned to offer the compliance standard for ISO 27001:2022 y Azure regulation compliance initiatives?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-05-22T15:08:51.46+00:00
Carlos Villarroel 20 Reputation points
commented 2024-12-15T09:37:26.34+00:00
Anders Jensen 101 Reputation points
2 answers

Azure initiative for ISO 27001:2022

We have to implement ISO 27001:2022 at Azure Switzerlan. Is there an azure initiative for ISO 27001:2022? There is currently one for ISO27001:2013. Does anyone know what should be changed for 27001:2022?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2023-11-03T06:41:04.88+00:00
Martin Egli 115 Reputation points
answered 2024-12-15T09:35:23.8033333+00:00
Anders Jensen 101 Reputation points
1 answer One of the answers was accepted by the question author.

Creating a Dashboard for Azure Policy Initiatives in Audit Mode

I have a policy initiative set to Audit mode in Azure and would like to create a dashboard for it. Additionally, I want to provide access to other team members for better visibility. What is the best approach to achieve this?

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-16T13:05:24.1066667+00:00
Nana Poku 90 Reputation points
accepted 2024-12-13T12:19:50.7266667+00:00
Nana Poku 90 Reputation points
1 answer One of the answers was accepted by the question author.

Feature Request: Enable Granular Exemptions for Azure Policy on Key Vault Secrets

We require a mechanism to exempt specific secrets from the Azure Policy assignment: "Secrets should have the specified maximum validity period." However, we have encountered several limitations in achieving this. Below is a summary of our…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-12-10T10:33:17.55+00:00
Khushboo Brijlal Khurana 20 Reputation points
accepted 2024-12-13T08:45:57.5566667+00:00
Khushboo Brijlal Khurana 20 Reputation points
1 answer

Policy to deny VM & VMSS creation with installing the Entra ID (formerly AAD) extension on them

Can we have a custom policy to deny VM & VMSS creation with installing the Entra ID (formerly AAD) extension on them, Also I there a way to auto remediate and install VM extention for Entra ID (formerly AAD) extension on linux and windows VMs

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-10-24T10:38:28.84+00:00
Virender Rathore 0 Reputation points
commented 2024-12-13T06:54:49.59+00:00
Ashok Gandhi Kotnana 1,580 Reputation points Microsoft Vendor
0 answers

Set up notifications for Root Tenant Group assigments

Set up notifications for Root Tenant Group assigments azurerm_role_management_policy I am trying to enable notification(email to slack channel) whenever someone requests for PIM role activiation. The slack channel contains the admins who can approve the…

Azure Notification Hubs
Azure Notification Hubs
An Azure service that is used to send push notifications to all major platforms from the cloud or on-premises environments.
334 questions
Microsoft Identity Manager
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
728 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-12-12T19:00:49.8133333+00:00
Kaushik Ray 0 Reputation points
1 answer One of the answers was accepted by the question author.

Need help in creating a custom policy which will auto remediate MySQL Flexible servers to TLS Version 1.2

I need help in creating a azure policy which will auto remediate MySQL Flexible Server from Older TLS Versions to Newer TLS Version (Version 1.2).

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-10-25T15:03:20.06+00:00
Sumeet Upadhyay 25 Reputation points
edited the question 2024-12-12T16:50:51.3633333+00:00
Ashok Gandhi Kotnana 1,580 Reputation points Microsoft Vendor
1 answer

'Microsoft.Network/networkManagers/networkGroups/join/action' permission

When I try to create a policy on an Azure policy on a Network Manager managed group, I get the following error (both in bicep code and also when using the Azure UI). Anybody has run into this? Specifically is…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-12-09T15:24:45.8633333+00:00
Garsha Rostami 121 Reputation points
commented 2024-12-12T16:16:30.5933333+00:00
Pranay Reddy Madireddy 1,230 Reputation points Microsoft Vendor
1 answer

Is it possible to deny vnet peering between subscriptions that are in different management groups with azure policy ?

Hi, We are in the process of setting up sandbox subscriptions in a dedicated management group and we would like to deny vnet peerings between these subscriptions and production subscriptions which are also in their dedicated management group. Vnet…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
939 questions
asked 2024-11-24T11:42:57.1233333+00:00
Ben B 0 Reputation points
commented 2024-12-11T01:08:28.7733333+00:00
Rahul Podila 805 Reputation points Microsoft Vendor