AzPolicyAdvertizer

last sync: 2022-Sep-30 16:34:23 UTC

Azure Policy definition

Queue Storage should use customer-managed key for encryption

Name

Queue Storage should use customer-managed key for encryption
Azure Portal

f0e5abd0-2554-4736-b7c0-4ffef23475ef

Version

1.0.0
details on versioning

Category

Storage
Microsoft docs

Description

Secure your queue storage with greater flexibility using customer-managed keys. When you specify a customer-managed key, that key is used to protect and control access to the key that encrypts your data. Using customer-managed keys provides additional capabilities to control rotation of the key encryption key or cryptographically erase data.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Deny, Disabled)

Used RBAC Role

none

Rule Aliases

IF (2)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Storage/storageAccounts/encryption.keySource	Microsoft.Storage	storageAccounts	properties.encryption.keySource	false
Microsoft.Storage/storageAccounts/encryption.services.queue.keyType	Microsoft.Storage	storageAccounts	properties.encryption.services.queue.keyType	false

Rule ResourceTypes

IF (1)
Microsoft.Storage/storageAccounts

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-02-18 17:44:00	add	f0e5abd0-2554-4736-b7c0-4ffef23475ef

Used in Initiatives

none

JSON