AzPolicyAdvertizer

last sync: 2025-Jun-13 17:23:19 UTC

Deploy NSG rule

Community Policy definition

Source

Repository Community-Policy GitHub
JSON Community-Policy GitHub

Deploy policy a644e5ed-8102-4074-95ad-e08759d38b94 (1.0.0) to Azure

Display name

Deploy NSG rule

a644e5ed-8102-4074-95ad-e08759d38b94

Version

1.0.0
Details on versioning

Category

Network
Microsoft Learn

Description

This policy deploys a rule to an NSG.

Mode

Indexed

Type

Custom Community

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, AuditIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Network Contributor	4d97b98b-1d4f-4787-a291-c67834d212e7

Rule aliases

THEN-ExistenceCondition (14)

Alias	Namespace	ResourceType	Path	PathIsDefault	Modifiable
Microsoft.Network/networkSecurityGroups/securityRules[*]	Microsoft.Network	networkSecurityGroups	properties.securityRules[*]	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].access	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.access	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].destinationAddressPrefix	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.destinationAddressPrefix	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].destinationAddressPrefixes	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.destinationAddressPrefixes	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].destinationPortRange	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.destinationPortRange	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].destinationPortRanges	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.destinationPortRanges	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].direction	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.direction	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].name	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].name	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].priority	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.priority	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].protocol	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.protocol	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].sourceAddressPrefix	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.sourceAddressPrefix	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].sourceAddressPrefixes	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.sourceAddressPrefixes	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].sourcePortRange	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.sourcePortRange	True	True
Microsoft.Network/networkSecurityGroups/securityRules[*].sourcePortRanges	Microsoft.Network	networkSecurityGroups	properties.securityRules[*].properties.sourcePortRanges	True	True

Rule resource types

IF (1)
Microsoft.Network/networkSecurityGroups
THEN-Details (1)
Microsoft.Network/networkSecurityGroups/securityRules
THEN-Deployment (1)
Microsoft.Network/networkSecurityGroups/securityRules

JSON

EPAC