AzPolicyAdvertizer

last sync: 2025-Apr-29 17:16:02 UTC

Adds the default network security group to subnets in case there is none.

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy ba4a485a-81cc-426c-9813-58ef0c97edec (1.0.0) to Azure
Display name Adds the default network security group to subnets in case there is none.
Id ba4a485a-81cc-426c-9813-58ef0c97edec
Version 1.0.0
Details on versioning
Category Network
Microsoft Learn
Description Adds the default network security group to subnets in case there is none. Nothing happens when another network security group is already associated with the subnet.
Mode All
Type Custom Community
Effect Default
Modify
Allowed
Modify, Deny, Audit, Disabled
RBAC role(s)
Role Name Role Id
Network Contributor 4d97b98b-1d4f-4787-a291-c67834d212e7
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/virtualNetworks/subnets/networkSecurityGroup.id Microsoft.Network virtualNetworks/subnets properties.networkSecurityGroup.id True True
THEN-Operations (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/virtualNetworks/subnets/networkSecurityGroup.id Microsoft.Network virtualNetworks/subnets properties.networkSecurityGroup.id True True
Rule resource types IF (1)
Microsoft.Network/virtualNetworks/subnets
JSON
EPAC
Deploy policy ba4a485a-81cc-426c-9813-58ef0c97edec (1.0.0) to Azure