AzPolicyAdvertizer

last sync: 2025-May-07 18:08:45 UTC

Audit Specified Resource Type For Any Lock

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy 90ed0d51-2642-442f-b50c-f9a1b287a09c (1.0.0) to Azure
Display name Audit Specified Resource Type For Any Lock
Id 90ed0d51-2642-442f-b50c-f9a1b287a09c
Version 1.0.0
Details on versioning
Category Authorization
Microsoft Learn
Description This policy audits the specified resource type for any lock such as 'CanNotDelete' or 'ReadOnly'.
Mode All
Type Custom Community
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Authorization/locks/level Microsoft.Authorization locks properties.level True False
Rule resource types THEN-Details (1)
Microsoft.Authorization/locks
JSON
EPAC
Deploy policy 90ed0d51-2642-442f-b50c-f9a1b287a09c (1.0.0) to Azure