last sync: 2021-Sep-24 16:09:49 UTC

Azure Policy definition

[Deprecated]: Audit missing blob encryption for storage accounts

Name [Deprecated]: Audit missing blob encryption for storage accounts
Azure Portal
Id 655cb504-bcee-4362-bd4c-402e6aa38759
Version 1.0.0-deprecated
details on versioning
Category Security Center
Microsoft docs
Description This policy is no longer necessary because storage blob encryption is enabled by default and cannot be turned off.
Mode All
Type BuiltIn
Preview FALSE
Deprecated True
Effect Default: Audit
Allowed: (Audit, Disabled)
Used RBAC Role none
History none
Used in Initiatives none
JSON
{
  "displayName": "[Deprecated]: Audit missing blob encryption for storage accounts",
  "policyType": "BuiltIn",
  "mode": "All",
  "description": "This policy is no longer necessary because storage blob encryption is enabled by default and cannot be turned off.",
  "metadata": {
    "version": "1.0.0-deprecated",
    "category": "Security Center",
    "deprecated": true
  },
  "parameters": {
    "effect": {
      "type": "String",
      "metadata": {
        "displayName": "Effect",
        "description": "Enable or disable the execution of the policy"
      },
      "allowedValues": [
        "Audit",
        "Disabled"
      ],
      "defaultValue": "Audit"
    }
  },
  "policyRule": {
    "if": {
      "allOf": [
        {
          "field": "type",
          "equals": "Microsoft.Storage/storageAccounts"
        },
        {
          "not": {
            "field": "Microsoft.Storage/storageAccounts/enableBlobEncryption",
            "equals": "True"
          }
        }
      ]
    },
    "then": {
      "effect": "[parameters('effect')]"
    }
  }
}