last sync: 2022-May-23 08:52:47 UTC

Azure Policy definition

Queue Storage should use customer-managed key for encryption

Name Queue Storage should use customer-managed key for encryption
Azure Portal
Id f0e5abd0-2554-4736-b7c0-4ffef23475ef
Version 1.0.0
details on versioning
Category Storage
Microsoft docs
Description Secure your queue storage with greater flexibility using customer-managed keys. When you specify a customer-managed key, that key is used to protect and control access to the key that encrypts your data. Using customer-managed keys provides additional capabilities to control rotation of the key encryption key or cryptographically erase data.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: Audit
Allowed: (Audit, Deny, Disabled)
Used RBAC Role none
Rule Aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Storage/storageAccounts/encryption.keySource Microsoft.Storage storageAccounts properties.encryption.keySource false
Microsoft.Storage/storageAccounts/encryption.services.queue.keyType Microsoft.Storage storageAccounts properties.encryption.services.queue.keyType false
Rule ResourceTypes IF (1)
Microsoft.Storage/storageAccounts
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-02-18 17:44:00 add f0e5abd0-2554-4736-b7c0-4ffef23475ef
Used in Initiatives none
JSON