Creating Azure Policies

Lab Details

  1. In this lab we will walk through the steps to create, manage and assign Azure Policies.

  2. Duration: 30 minutes

Introduction

What are Azure Policies? 

  • Azure Policy is a service in Azure which allows you to create policies which enforce and control the properties of a resource. When these policies are used they enforce different rules and effects over the resources, so those resources stay compliant with your IT governance standards.

  • Azure Policy allows you to ensure that all resources are configured with required services, and will tell you when systems are out of compliance. 

  • Azure policy is basically 3 components; policy definition , assignment and parameters.

  • Policy definition is the conditions which you want controlled. There are built in definitions such as controlling what type of resources can be deployed to enforce the use of tags on all resources.

  • Policy assignment is the scope of what the policy definition can take effect around. Scope of assignment can be assigned to an individual, resource, resource group or management group. Policy assignments are inherited by all child resources. 

  • Policy parameters are used by reducing the number of policy definitions you must create. Parameters would be used to define which type of VM SKUs to deploy or define a specific location.

Task Details

  1. Launching lab environment

  2. Create an Allowed Locations policy assignment

  3. Test the Allowed Locations policy assignment