Mastering Azure Policy

Questions and Answers

PDF Questions PDF Answers

Which of the following is the purpose of a policy in Azure?

To define the things needed at different scopes (correct)

To define the compliance state of all resources

To track the compliance of initiatives

To apply individual policies to resources

What happens if a resource is a storage account and its SKU is not in the allowed list?

The resource will be tracked for compliance

The resource will be applied with an initiative

The resource will be denied (correct)

The resource will be allowed

What is an initiative in Azure?

A compliance state of all resources

A built-in policy for Azure Security Center

A set of individual policies (correct)

A management group for policies

How does Azure Security Center track compliance?

By using initiatives

Which tool enables the enforcement of governance requirements in Azure?

Azure Policy

What is the purpose of Azure Policy?

To enforce governance requirements and guardrails

At which level can Azure Policy be applied?

Management groups

What are the different effects that Azure Policy offers?

Audit, deny, append, modify, and deploy if not exist

Study Notes

Understanding Azure Policy and its Usage

• Azure Policy is a tool that enables the enforcement of governance requirements in Azure.
• In the past, resource provisioning in companies required interaction with an operations manager who would evaluate requests and provision resources accordingly.
• With Azure, users can provision resources directly without the need for an operations manager.
• However, there are still requirements and guardrails that need to be enforced, such as regulatory compliance and security measures.
• Azure Policy is used to enforce these requirements and guardrails.
• Azure Policy operates at the level of Azure Resource Manager, where resource provisioning occurs.
• Azure Policy can be applied at different levels, including management groups, subscriptions, and resource groups.
• Multiple policies can be grouped into an initiative for easier assignment and tracking of compliance.
• Azure Policy offers different effects, such as audit, deny, append, modify, and deploy if not exist, to enforce policies.
• Policies can be defined based on conditions and properties of resources.
• Azure provides a policy compliance dashboard to monitor and track policy compliance.
• Policies can be defined for specific categories, such as storage, and can restrict the use of certain SKUs for resources.

Description

Test your knowledge on Azure Policy and its usage with this quiz. Learn about the tool that enables the enforcement of governance requirements in Azure and how it can be applied at different levels. Explore the effects and conditions that can be defined for policies. See how Azure Policy helps in monitoring and tracking policy compliance.