last sync: 2020-Oct-01 14:15:17 UTC

Azure Policy

Application definition for Managed Application should use customer provided storage account

Policy DisplayName Application definition for Managed Application should use customer provided storage account
Policy Id 9db7917b-1607-4e7d-a689-bca978dd0633
Policy Category Managed Application
Policy Description Use your own storage account to control the application definition data when this is a regulatory or compliance requirement. You can choose to store your managed application definition within a storage account provided by you during creation, so that its location and access can be fully managed by you to fulfill regulatory compliance requirements.
Policy Mode Indexed
Policy Type BuiltIn
Policy in Preview FALSE
Policy Deprecated FALSE
Policy Effect Default: audit
Allowed: (audit,deny,disabled)
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2020-09-09 11:24:03 add: Policy 9db7917b-1607-4e7d-a689-bca978dd0633
Used in Policy Initiative(s) none
Policy Rule
{
  "properties": {
    "displayName": "Application definition for Managed Application should use customer provided storage account",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Use your own storage account to control the application definition data when this is a regulatory or compliance requirement. You can choose to store your managed application definition within a storage account provided by you during creation, so that its location and access can be fully managed by you to fulfill regulatory compliance requirements.",
    "metadata": {
      "version": "1.0.0",
      "category": "Managed Application"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy."
        },
        "allowedValues": [
          "audit",
          "deny",
          "disabled"
        ],
        "defaultValue": "audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Solutions/applicationDefinitions"
          },
          {
            "field": "Microsoft.Solutions/applicationDefinitions/storageAccountId",
            "exists": "false"
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/9db7917b-1607-4e7d-a689-bca978dd0633",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "9db7917b-1607-4e7d-a689-bca978dd0633"
}