AzPolicyAdvertizer

last sync: 2021-Sep-24 16:09:49 UTC

Azure Policy definition

Require encryption on Data Lake Store accounts

Name Require encryption on Data Lake Store accounts
Azure Portal

Id a7ff3161-0087-490a-9ad9-ad6217f4f43a

Version 1.0.0
details on versioning

Category Data Lake
Microsoft docs

Description This policy ensures encryption is enabled on all Data Lake Store accounts

Mode Indexed

Type BuiltIn

Preview FALSE

Deprecated FALSE

Effect Fixed: deny

Used RBAC Role none

History none

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State
[Preview]: CMMC Level 3	b5629c75-5c77-4422-87b9-2509e680f8de	Regulatory Compliance	Preview
HITRUST/HIPAA	a169a624-5599-4385-a696-c8d643089fab	Regulatory Compliance	GA

JSON

{
  "displayName": "Require encryption on Data Lake Store accounts",
  "policyType": "BuiltIn",
  "mode": "Indexed",
  "description": "This policy ensures encryption is enabled on all Data Lake Store accounts",
  "metadata": {
    "version": "1.0.0",
    "category": "Data Lake"
  },
  "parameters": {},
  "policyRule": {
    "if": {
      "allOf": [
        {
          "field": "type",
          "equals": "Microsoft.DataLakeStore/accounts"
        },
        {
          "field": "Microsoft.DataLakeStore/accounts/encryptionState",
          "equals": "Disabled"
        }
      ]
    },
    "then": {
      "effect": "deny"
    }
  }
}