Implementing Azure Policy

Create a policy definition

  • Policy definition expresses what to evaluate and what action to take.

  • E.g. you could prevent a hard disk from being used when deploying VMs to control costs.

  • Has conditions under which it is enforced.

Assign the definition to resources

  • To implement your policy definitions, you assign them to resources.

  • Policy assignment - Policy definition that has been assigned to take place within a specific scope.

  • Policy assignments are inherited by all child resources.

  • If a policy is applied to a resource group, it is applied to all the resources within that resource group but you can exclude a child group from the policy assignment.

Review the policy evaluation results

  • When a condition is evaluated against your existing resources it is marked compliant or non-compliant.

  • Review the non-compliant policy results and take any action that is needed.

PreviousAzure PolicyNextPolicy Initiatives

Last updated

Was this helpful?