Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
949 questions
1 answer
Configure Azure Activity logs to stream to specified Storage account from all subscriptions
I want to Configure Azure Activity logs to stream to specified Storage account from all subscriptions, is there any Built In policy available which can be leveraged to send activity logs from all subscription to a pre-defined storage account.
asked 2025-01-21T15:16:39.2166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 46%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKR%3C/text%3E%3C/svg%3E)
Kaushik Ray
0
Reputation points
answered 2025-01-21T20:49:24.7733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 32%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Pavan Minukuri
1,040
Reputation points Microsoft Vendor
1 answer
DORA Regulations and Azure CSP (Reseller)
Hi team - we have customers asking us for DORA addendums in their Azure contracts - as they are in our CSP model, that would fall under the MCA framework - what is the guidance from Microsoft on that, has the MCA been updated so that it is fit for…
asked 2025-01-17T17:25:08.6266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 74%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECN%3C/text%3E%3C/svg%3E)
Cristian Nedelcu
0
Reputation points
commented 2025-01-21T17:06:03.2566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 47%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Rahul Podila
1,320
Reputation points Microsoft Vendor
1 answer
Configure Azure Activity logs to stream to specified Storage account from all subscriptions
I want to send all Activity logs from all subscriptions (with in my Managment group) to a specific storage account. Do we have any Built in policy which can be enforced at management group and propagated to all subscriptions ?
asked 2025-01-21T13:00:08.1766667+00:00
Kaushik Ray
0
Reputation points
answered 2025-01-21T13:11:13.7066667+00:00
Stanislav Zhelyazkov
25,486
Reputation points MVP
2 answers
Use Azure Policy to manage Extensions Allow- and Blocklist on Azure Arc Connected Machines
Is there a way to manage Extensions Allow- and Blocklist for Azure Arc Connected Machines? As mentioned in this KB-Article, it should be possible. But it is not precisely stated, if this works only for Azure VMs, or if this also applies for Arc…
asked 2025-01-17T06:39:32.7166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 15%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELB%3C/text%3E%3C/svg%3E)
Lukas Berger
0
Reputation points
commented 2025-01-21T09:47:05.8066667+00:00
Lukas Berger
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Question about VM update and Policy
Hi everyone, I have been tasked to create a policy that will do a weekly VM update at a certain time but I have been reading more about this and if my understanding is correct, policy is not meant to be used this way. My understanding is I will need to…
asked 2025-01-20T21:09:16.9266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 66%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHT%3C/text%3E%3C/svg%3E)
Handinata Tanudjaja
80
Reputation points
accepted 2025-01-20T21:28:35.33+00:00
Handinata Tanudjaja
80
Reputation points
0 answers
Urgent: Account Locked and Verification Issues (TrackingID#2412170040002994)
Dear Azure Support, I am reaching out regarding our account, which has been locked for almost a month. Unfortunately, despite following up on the emails we've received, the responses have not been helpful in resolving the issue. This situation is…
asked 2025-01-03T06:52:18.5066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 7.000000000000001%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERS%3C/text%3E%3C/svg%3E)
RePoint Solutions
0
Reputation points
commented 2025-01-20T10:28:01.16+00:00
Rahul Podila
1,320
Reputation points Microsoft Vendor
1 answer
Question regarding the document- https://learn.microsoft.com/en-us/azure/openshift/howto-tag-resources
Team, I'm from the Azure Containers team, and regarding the documentation, there seems to be an issue that needs some opinions. Below are the test lab results I performed. Please see the details below. Thanks, Conclusion The policy definition and…
asked 2025-01-13T17:02:45.06+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 38%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Wayden Lee
0
Reputation points Microsoft Employee
commented 2025-01-20T01:32:10.24+00:00
Rahul Podila
1,320
Reputation points Microsoft Vendor
2 answers
Is it possible to enforce a Resource Naming Convention using a RegEx from an Azure Policy.
Is it possible to enforce a required resource naming convention using a RegEx from an Azure Policy.
asked 2023-07-11T17:21:04.89+00:00
Sai Kiran Maturi
66
Reputation points
commented 2025-01-16T05:46:33.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 17%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Diksha Sindhwani
0
Reputation points
0 answers
AZT508 - Azure Policy
Hello all :) I have designed the following simple KQL query to monitor for potential misuse of the DeployIfNotExists effect by detecting policy definition updates: AzureActivity | where OperationNameValue ==…
asked 2025-01-13T15:12:22.7433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 2%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETH%3C/text%3E%3C/svg%3E)
Tomáš Hrabkovský
0
Reputation points
commented 2025-01-16T04:48:44.3633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Ashok Gandhi Kotnana
2,505
Reputation points Microsoft Vendor
2 answers
Restrict Savings Plan creation outside specified subscription in Mgmt group via Azure Policy
Using Terraform/Azure Policies, I want to restrict the creation of savings plans only to one of our subscriptions i.e Prod. We have more than 10 subscriptions in the tenant in different management groups. Since Savings Plans don't have a straightforward…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 39%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVP%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Have few queries related to management group
Hello Team, Have few queries related to management group. For example, I've a parent MG and child MG. Need to create a new MG under child MG and move few subscriptions from child MG to new MG. By doing so, Will there be any latency and data loss? Will…
asked 2025-01-14T09:34:02.6233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 16%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Mahadev, Rakesh [HAEA]
180
Reputation points
accepted 2025-01-15T08:46:54.4733333+00:00
Mahadev, Rakesh [HAEA]
180
Reputation points
2 answers
Azure initiative for ISO 27001:2022
We have to implement ISO 27001:2022 at Azure Switzerlan. Is there an azure initiative for ISO 27001:2022? There is currently one for ISO27001:2013. Does anyone know what should be changed for 27001:2022?
asked 2023-11-03T06:41:04.88+00:00
Martin Egli
120
Reputation points
commented 2025-01-14T14:05:12.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 71%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMV%3C/text%3E%3C/svg%3E)
Marco van der Steijle
0
Reputation points
1 answer
How to resolve Windows servers should be configured to use secure communication protocols
I have got an azure advisor alert concerning windows virtual machines. These are standard VM's and they are reporting the following remediation steps. I have carried out the following to remediate the issue, the Os version is windows 2019. I have carried…
asked 2025-01-06T08:13:53.7966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 39%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
MrFlinstone
641
Reputation points
commented 2025-01-10T01:32:37.4366667+00:00
Rahul Podila
1,320
Reputation points Microsoft Vendor
1 answer
Azure Account Registration Issue – Urgent Assistance Needed
Dear Azure Support Team, I am unable to register an Azure account due to repeated phone number validation errors. I have attempted using my Philippine number as well as several other numbers, but the issue persists. Additionally, one of our accounts is…
asked 2025-01-04T09:52:31.1566667+00:00
RePoint Solutions
0
Reputation points
commented 2025-01-10T01:28:41.5866667+00:00
Rahul Podila
1,320
Reputation points Microsoft Vendor
2 answers
One of the answers was accepted by the question author.
Azure Defender for cloud Settings | Security policies
Guideline to create Azure Defender for cloud Settings | Security policies
asked 2024-11-27T07:50:58.7833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 3%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Bimala Shrestha
25
Reputation points
commented 2025-01-08T01:50:52.36+00:00
Rahul Podila
1,320
Reputation points Microsoft Vendor
1 answer
Azure Policy Tag add tag if missing
I set a new policy for existing resources to add required tag if missing. scenario1: Resource1 have the following tags and value Tag name = Project Value = ProjSSO Tag name = Purpose Value = app login however if the the policy trigger I received an…
asked 2024-02-07T01:45:43.2433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 40%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Reygie Prieto
0
Reputation points
commented 2025-01-05T20:51:49.47+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 16%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
laserfocused
0
Reputation points
0 answers
Dynamic 'kid' Usage in Azure APIM Validate-JWT Policy
We currently use hardcoded exponent and modulus values within the
asked 2024-12-19T16:16:21.6433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 32%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAB%3C/text%3E%3C/svg%3E)
Aaron Bowe
0
Reputation points
commented 2025-01-03T14:41:44.6+00:00
Aaron Bowe
0
Reputation points
1 answer
Set up notifications for Root Tenant Group assigments
Set up notifications for Root Tenant Group assigments azurerm_role_management_policy I am trying to enable notification(email to slack channel) whenever someone requests for PIM role activiation. The slack channel contains the admins who can approve the…
asked 2024-12-12T19:00:49.8133333+00:00
Kaushik Ray
0
Reputation points
answered 2024-12-30T23:58:08.22+00:00
hossein jalilian
9,615
Reputation points
1 answer
Can I create an Azure Policy that disables both FTP and FTPS deployment?
I am wondering if there is way to disable both FTP and FTPS web app deployments. I have a policy but it doesnt enforce it unless I manually disable it and then the policy becomes compliant. Can a policy automatically do this for me to make it compliant…
asked 2023-07-03T16:16:39.48+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 0%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Darragh Martin
86
Reputation points
edited a comment 2024-12-29T06:16:48.22+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 46%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
Paritosh Mishra
0
Reputation points
1 answer
I have enabled the periodic assessment of this VM through azure policy but still periodic assessment is not enabled.
I have enabled the periodic assessment of this VM through azure policy but still periodic assessment is not enabled.
asked 2024-12-08T17:49:00.76+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 49%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHM%3C/text%3E%3C/svg%3E)
Harshit Mittal
0
Reputation points
commented 2024-12-26T17:03:43.1766667+00:00
Pavan Minukuri
1,040
Reputation points Microsoft Vendor