AzPolicyAdvertizer

last sync: 2020-Dec-03 15:30:53 UTC

Azure Policy definition

Azure Stream Analytics jobs should use customer-managed keys to encrypt data

Name Azure Stream Analytics jobs should use customer-managed keys to encrypt data
Azure Portal
Id 87ba29ef-1ab3-4d82-b763-87fcd4f531f7
Version 1.0.0
details on versioning
Category Stream Analytics
Microsoft docs
Description Use customer-managed keys when you want to securely store any metadata and private data assets of your Stream Analytics jobs in your storage account. This gives you total control over how your Stream Analytics data is encrypted.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: audit
Allowed: (audit, deny, disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-11-10 16:00:42 add 87ba29ef-1ab3-4d82-b763-87fcd4f531f7
Used in Initiatives none
Json 
{
  "properties": {
    "displayName": "Azure Stream Analytics jobs should use customer-managed keys to encrypt data",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Use customer-managed keys when you want to securely store any metadata and private data assets of your Stream Analytics jobs in your storage account. This gives you total control over how your Stream Analytics data is encrypted.",
    "metadata": {
      "version": "1.0.0",
      "category": "Stream Analytics"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "The desired effect of the policy."
        },
        "allowedValues": [
          "audit",
          "deny",
          "disabled"
        ],
        "defaultValue": "audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "Microsoft.StreamAnalytics/streamingJobs/contentStoragePolicy",
            "equals": "SystemAccount"
          },
          {
            "field": "type",
            "equals": "Microsoft.StreamAnalytics/streamingJobs"
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/87ba29ef-1ab3-4d82-b763-87fcd4f531f7",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "87ba29ef-1ab3-4d82-b763-87fcd4f531f7"
}