Open adapaharsha opened 2 years ago
Hi, I tried below policy to deny sql db creation when azure hybrid is not enabled whereas audit effect is working fine. Deny effect still allows me to create but it shows under non-compliant post creation. Any help on this?
{ "mode": "All", "policyRule": { "if": { "allOf": [ { "field": "type", "equals": "Microsoft.Sql/servers/databases" }, { "field": "kind", "contains": "vcore" }, { "field": "Microsoft.Sql/servers/databases/licenseType", "notEquals": "BasePrice" } ] }, "then": { "effect": "deny" } }
Any Thoughts??
adapaharsha
commented
2 years ago
Hi, I tried below policy to deny sql db creation when azure hybrid is not enabled whereas audit effect is working fine. Deny effect still allows me to create but it shows under non-compliant post creation. Any help on this?
{ "mode": "All", "policyRule": { "if": { "allOf": [ { "field": "type", "equals": "Microsoft.Sql/servers/databases" }, { "field": "kind", "contains": "vcore" }, { "field": "Microsoft.Sql/servers/databases/licenseType", "notEquals": "BasePrice" } ] }, "then": { "effect": "deny" } }