last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

Deploy Advanced Threat Protection for Cosmos DB Accounts

Name Deploy Advanced Threat Protection for Cosmos DB Accounts
Azure Portal
Id b5f04e03-92a3-4b09-9410-2cc5e5047656
Version 1.0.0
details on versioning
Category Cosmos DB
Microsoft docs
Description This policy enables Advanced Threat Protection across Cosmos DB accounts.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: DeployIfNotExists
Allowed: (DeployIfNotExists, Disabled)
Used RBAC Role
Role Name Role Id
Security Admin fb1c8493-542b-48eb-b624-b4c8fea62acd
Rule Aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/advancedThreatProtectionSettings/isEnabled Microsoft.Security advancedThreatProtectionSettings properties.isEnabled false
Rule ResourceTypes IF (1)
Microsoft.DocumentDB/databaseAccounts
History none
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
CMMC Level 3 b5629c75-5c77-4422-87b9-2509e680f8de Regulatory Compliance GA BuiltIn
JSON