AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

Storage accounts should allow access from trusted Microsoft services

Name

Storage accounts should allow access from trusted Microsoft services
Azure Portal

c9d007d0-c057-4772-b18c-01e546713bcd

Version

1.0.0
details on versioning

Category

Storage
Microsoft docs

Description

Some Microsoft services that interact with storage accounts operate from networks that can't be granted access through network rules. To help this type of service work as intended, allow the set of trusted Microsoft services to bypass the network rules. These services will then use strong authentication to access the storage account.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Deny, Disabled)

Used RBAC Role

none

Rule Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Storage/storageAccounts/networkAcls.bypass	Microsoft.Storage	storageAccounts	properties.networkAcls.bypass	true

Rule ResourceTypes

IF (1)
Microsoft.Storage/storageAccounts

History

none

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Preview]: RMIT Malaysia	97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6	Regulatory Compliance	Preview	BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.1.0	1a5bb27d-173f-493e-9568-eb56638dde4d	Regulatory Compliance	GA	BuiltIn
CIS Microsoft Azure Foundations Benchmark v1.3.0	612b5213-9160-4969-8578-1518bd2a000c	Regulatory Compliance	GA	BuiltIn
CMMC Level 3	b5629c75-5c77-4422-87b9-2509e680f8de	Regulatory Compliance	GA	BuiltIn

JSON