last sync: 2021-Sep-24 16:09:49 UTC

Azure Policy definition

Azure VPN gateways should not use 'basic' SKU

Name Azure VPN gateways should not use 'basic' SKU
Azure Portal
Id e345b6c3-24bd-4c93-9bbb-7e5e49a17b78
Version 1.0.0
details on versioning
Category Network
Microsoft docs
Description This policy ensures that VPN gateways do not use 'basic' SKU.
Mode All
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: Audit
Allowed: (Audit, Disabled)
Used RBAC Role none
History none
Used in Initiatives none
JSON
{
  "displayName": "Azure VPN gateways should not use 'basic' SKU",
  "policyType": "BuiltIn",
  "mode": "All",
  "description": "This policy ensures that VPN gateways do not use 'basic' SKU.",
  "metadata": {
    "version": "1.0.0",
    "category": "Network"
  },
  "parameters": {
    "effect": {
      "type": "String",
      "metadata": {
        "displayName": "Effect",
        "description": "Enable or disable the execution of the policy"
      },
      "allowedValues": [
        "Audit",
        "Disabled"
      ],
      "defaultValue": "Audit"
    }
  },
  "policyRule": {
    "if": {
      "allOf": [
        {
          "field": "type",
          "equals": "Microsoft.Network/virtualNetworkGateways"
        },
        {
          "field": "Microsoft.Network/virtualNetworkGateways/gatewayType",
          "equals": "Vpn"
        },
        {
          "field": "Microsoft.Network/virtualNetworkGateways/sku.tier",
          "equals": "Basic"
        }
      ]
    },
    "then": {
      "effect": "[parameters('effect')]"
    }
  }
}