I cant access my customers tenant because of a conditional acces policy called "phishing resistent mfa for admins"
I called microsoft yeserday, was rerouted 3 times before someone could create a ticket for me and said answer time was just a couple of hours and then the data protection team would call me. this "should" be a simple fix i tought, it is really…
Error assigning a policy using Azure powershell and Azure Cli
I'm trying to assign an initiative using Azure Cli or Azure powershell and I'm getting the following error New-AzManagementGroupDeployment -ManagementGroupId $managemenGroupId -Location $location -TemplateFile…
Azure policies for Azure Functions
I am planning on applying a Azure policy initiative of following policies to Azure Function Apps:- Function app slots should disable public network access Function app slots should have Client Certificates (Incoming client certificates) enabled …
Login as federated user via katalon studio
Hi, I have an inquiry if it is possible to perform federated user login via katalon studio? We are working on automating logging in as federated user in katalon studio but am encountering an error when logging in. This error does not happen when logging…
Azure built-in compliance standard for ISO 27001:2022
Is it planned to offer the compliance standard for ISO 27001:2022 y Azure regulation compliance initiatives?
Search Service authorization fails (in environments where policy prohibits private endpoint connections from other subscriptions).
To achieve private sending/receiving between “Storage Account” and “Search Service” currently To use the Search Service's shared private link, you need to create a shared private link between the storage account and the Search Service. To use the Search…
issue with built-in Azure Policy "Configure Azure Activity logs to stream to specified Log Analytics workspace"
hi, trying to deploy the policy Configure Azure Activity logs to stream to specified Log Analytics workspace https://www.azadvertizer.net/azpolicyadvertizer/2465583e-4e78-4c15-b6be-a36cbc7c8b0f.html Altough, the parametree is configured to use…
How to disable OWA for a set of users using Azure Security group
I need to disable OWA for set of users in our company, and disable OWA for new users as well. Being a Global Admin, can I do so using Azure Security group? If yes , could please help me with the steps to do so? I need to find out who…
Is it possible to enable diagnostic settings for express route gateway resource?
Is it possible to enable diagnostic settings for express route gateway resource? if yes, how can we create a deploy if not exist policy to achieve it?
I clicked on Access policies on my ley vault, but i was shown this "Access policies not available". How do i make it available?
Access policies not available. The access configuration for this key vault is set to role-based access control. To add or manage your access policies, go to the Access control (IAM) page. How can I resolve this
Azure initiative for ISO 27001:2022
We have to implement ISO 27001:2022 at Azure Switzerlan. Is there an azure initiative for ISO 27001:2022? There is currently one for ISO27001:2013. Does anyone know what should be changed for 27001:2022?
Programmatically trigger Azure policy remediation
I have got azure policy auto remediation in place, however the process is a manual one where the remediation tasks needs to be manually triggered. I was wondering if there is a way to programmatically trigger the running of the remediation job.
Export the data of Policy Assignments Name, Type (Intiatives or Policy), Scope and then for each Policy Assignments I need the policy definitions Version, category, type associated with it and export in excel file
Hello Team, Can any one help on how I can Export the data of Policy Assignments Name, Type (Intiatives or Policy), Scope and then for each Policy Assignments I need the policy definitions Version, category, type associated with it and export in excel…
How to Prevent Users from Removing Resource Group Locks Using Azure Policy?
Hi, I'm currently working on creating a policy definition in Azure to prevent users from removing locks from Resource Groups (RGs). My initial approach was to use the Deny effect within the policy, but I haven't been able to achieve the desired result.…
How can I discover all necessary permissions to use a Azure Policy with least privileges
The Problem Hey I working for a project that will implement azure policies to secure the platform. We have to follow the policies of our customer. One of this policies is, to use always the concept of least privileges. If we take a look in the Policy…
Azure Policy- Remediating Managed Disks to Disable Public Access+Disable Private Endpoint
Hello Microsoft and Community, There is a built in policy for Managed Disks: Managed disks should disable public network access and there is one remediation/configuration called: Configure managed disks to disable public network access But,on closer…
Azure Policy for Diagnostic Settings on Storage Accounts Not Affecting Table or Queue
I have an issue where I have set up these built-in policies to enable Diagnostic Settings on a storage account and its four subtypes. However, consistently, when I create a new Storage Account, it does not apply diagnostic settings to the Table or…
KQL query with regards to policies
Hi, I'm trying to do a KQL query using Azure Resource Graph on policyresources and I'm having difficulty producing an output/csv that will show the following table below. I need to show all policies including policies under an initiative in the…
How to prevent a normal user to see a subscription or cancel or add a subscription?
A regular user has access to some resource groups under a subscription. If users search "Subscription" in the Azure portal, they can see related subscriptions, and also they can "Cancel" or "Add" subscriptions. I'm unsure…
We have multiple Licenses I want to Implement Conditional Access Policy
Hello Everyone, We have multiple Licenses I want to Implement Security on all users. I created a Group, added all Company users to this group, and assigned a P1 license to this group. I want to Implement a Conditional Access policy to block all new users…