last sync: 2024-Jul-17 18:20:29 UTC

Azure Cosmos DB key based metadata write access should be disabled

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Cosmos DB key based metadata write access should be disabled
Id 4750c32b-89c0-46af-bfcb-2e4541a818d5
Version 1.0.0
Details on versioning
Category Cosmos DB
Microsoft Learn
Description This policy enables you to ensure all Azure Cosmos DB accounts disable key based metadata write access.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Fixed
append
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.DocumentDB/databaseAccounts/disableKeyBasedMetadataWriteAccess Microsoft.DocumentDB databaseAccounts properties.disableKeyBasedMetadataWriteAccess True False
THEN-Details (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.DocumentDB/databaseAccounts/disableKeyBasedMetadataWriteAccess Microsoft.DocumentDB databaseAccounts properties.disableKeyBasedMetadataWriteAccess True False
Rule resource types IF (1)
Microsoft.DocumentDB/databaseAccounts
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Enable Azure Cosmos DB throughput policy cb5e1e90-7c33-491c-a15b-24885c915752 Cosmos DB GA BuiltIn
Enforce recommended guardrails for Cosmos DB Enforce-Guardrails-CosmosDb Cosmos DB GA ALZ
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-05-29 15:39:09 add 4750c32b-89c0-46af-bfcb-2e4541a818d5
JSON compare n/a
JSON
api-version=2021-06-01
EPAC