last sync: 2024-Apr-19 17:43:58 UTC

All authorization rules except RootManageSharedAccessKey should be removed from Event Hub namespace

Azure BuiltIn Policy definition

Source Azure Portal
Display name All authorization rules except RootManageSharedAccessKey should be removed from Event Hub namespace
Id b278e460-7cfc-4451-8294-cccc40a940d7
Version 1.0.1
Details on versioning
Category Event Hub
Microsoft Learn
Description Event Hub clients should not use a namespace level access policy that provides access to all queues and topics in a namespace. To align with the least privilege security model, you should create access policies at the entity level for queues and topics to provide access to only the specific entity
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types IF (1)
Microsoft.EventHub/namespaces/authorizationRules
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC