AzPolicyAdvertizer

last sync: 2021-Mar-03 15:53:01 UTC

Azure Policy definition

Azure Stream Analytics jobs should use customer-managed keys to encrypt data

Name Azure Stream Analytics jobs should use customer-managed keys to encrypt data
Azure Portal
Id 87ba29ef-1ab3-4d82-b763-87fcd4f531f7
Version 1.0.0
details on versioning
Category Stream Analytics
Microsoft docs
Description Use customer-managed keys when you want to securely store any metadata and private data assets of your Stream Analytics jobs in your storage account. This gives you total control over how your Stream Analytics data is encrypted.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: audit
Allowed: (audit, deny, disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-11-10 16:00:42 add 87ba29ef-1ab3-4d82-b763-87fcd4f531f7
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State
[Preview]: CMMC Level 3 b5629c75-5c77-4422-87b9-2509e680f8de Regulatory Compliance Preview
Json 
{
  "properties": {
    "displayName": "Azure Stream Analytics jobs should use customer-managed keys to encrypt data",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Use customer-managed keys when you want to securely store any metadata and private data assets of your Stream Analytics jobs in your storage account. This gives you total control over how your Stream Analytics data is encrypted.",
    "metadata": {
      "version": "1.0.0",
      "category": "Stream Analytics"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "The desired effect of the policy."
        },
        "allowedValues": [
          "audit",
          "deny",
          "disabled"
        ],
        "defaultValue": "audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "Microsoft.StreamAnalytics/streamingJobs/contentStoragePolicy",
            "equals": "SystemAccount"
          },
          {
            "field": "type",
            "equals": "Microsoft.StreamAnalytics/streamingJobs"
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/87ba29ef-1ab3-4d82-b763-87fcd4f531f7",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "87ba29ef-1ab3-4d82-b763-87fcd4f531f7"
}