AzPolicyAdvertizer

last sync: 2025-Aug-22 17:22:56 UTC

Storage Account - Customer Managed Keys Blob and File Storage AUDIT

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy e6b2c041-120a-4a3e-9d61-804d67e6c470 (1.0.0) to Azure
Display name Storage Account - Customer Managed Keys Blob and File Storage AUDIT
Id e6b2c041-120a-4a3e-9d61-804d67e6c470
Version 1.0.0
Details on versioning
Category Storage
Microsoft Learn
Description This Azure Policy creates an audit event when the 'Encryption type' setting is not set to 'Customer-managed keys'.
Mode All
Type Custom Community
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Storage/storageAccounts/encryption.keySource Microsoft.Storage storageAccounts properties.encryption.keySource True False
Rule resource types IF (1)
Microsoft.Storage/storageAccounts
JSON
EPAC
Deploy policy e6b2c041-120a-4a3e-9d61-804d67e6c470 (1.0.0) to Azure