AzPolicyAdvertizer

last sync: 2021-Jan-19 16:06:44 UTC

Azure Policy definition

Application definition for Managed Application should use customer provided storage account

Name Application definition for Managed Application should use customer provided storage account
Azure Portal
Id 9db7917b-1607-4e7d-a689-bca978dd0633
Version 1.0.0
details on versioning
Category Managed Application
Microsoft docs
Description Use your own storage account to control the application definition data when this is a regulatory or compliance requirement. You can choose to store your managed application definition within a storage account provided by you during creation, so that its location and access can be fully managed by you to fulfill regulatory compliance requirements.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: audit
Allowed: (audit, deny, disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-09-09 11:24:03 add 9db7917b-1607-4e7d-a689-bca978dd0633
Used in Initiatives none
Json 
{
  "properties": {
    "displayName": "Application definition for Managed Application should use customer provided storage account",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Use your own storage account to control the application definition data when this is a regulatory or compliance requirement. You can choose to store your managed application definition within a storage account provided by you during creation, so that its location and access can be fully managed by you to fulfill regulatory compliance requirements.",
    "metadata": {
      "version": "1.0.0",
      "category": "Managed Application"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy."
        },
        "allowedValues": [
          "audit",
          "deny",
          "disabled"
        ],
        "defaultValue": "audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Solutions/applicationDefinitions"
          },
          {
            "field": "Microsoft.Solutions/applicationDefinitions/storageAccountId",
            "exists": "false"
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/9db7917b-1607-4e7d-a689-bca978dd0633",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "9db7917b-1607-4e7d-a689-bca978dd0633"
}