AzInitiativeAdvertizer

last sync: 2025-Apr-29 17:15:47 UTC

Enforce recommended guardrails for Service Bus

Azure Landing Zones (ALZ) Policy Initiative (PolicySet)

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Enforce-Guardrails-ServiceBus
Display nameEnforce recommended guardrails for Service Bus
IdEnforce-Guardrails-ServiceBus
Version1.1.0
Details on versioning
CategoryService Bus
DescriptionThis policy initiative is a group of policies that ensures Service Bus is compliant per regulated Landing Zones.
Cloud environments AzureChinaCloud
AzureCloud
AzureUSGovernment
TypeCustom Azure Landing Zones (ALZ)
DeprecatedFalse
PreviewFalse
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 4
Builtin Policies: 4
Static Policies: 0
ALZ Policies: 0
GA: 4
1 categories:
Service Bus: 4
Policy-used
Policy DisplayName Policy Id Category Effect Roles# Roles State Type policy in AzUSGov
All authorization rules except RootManageSharedAccessKey should be removed from Service Bus namespace a1817ec0-a368-432a-8057-8371e17ac6ee Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn unknown
Azure Service Bus namespaces should have local authentication methods disabled cfb11c26-f069-4c14-8e36-56c394dae5af Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn true
Configure Azure Service Bus namespaces to disable local authentication 910711a6-8aa2-4f15-ae62-1e5b2ed3ef9e Service Bus Default
Modify
Allowed
Modify, Disabled		 1 Azure Service Bus Data Owner GA BuiltIn true
Service Bus namespaces should have double encryption enabled ebaf4f25-a4e8-415f-86a8-42d9155bef0b Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn true
Roles used
Total Roles usage: 1
Total Roles unique usage: 1
Role Role Id #Policies Policies
Azure Service Bus Data Owner 090c5cfd-751d-490a-894a-3ce6f1109419 1 Configure Azure Service Bus namespaces to disable local authentication
History none
JSON compare n/a
JSON
EPAC