last sync: 2024-Nov-25 18:54:24 UTC

Application Gateway should be deployed with predefined Microsoft policy that is using TLS version 1.2

Azure Landing Zones (ALZ) Policy definition

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Deny-AppGw-Without-Tls
Deploy policy Deny-AppGw-Without-Tls (1.0.0) to Azure
Display name Application Gateway should be deployed with predefined Microsoft policy that is using TLS version 1.2
Id Deny-AppGw-Without-Tls
Version 1.0.0
Details on versioning
Category Network
Description This policy enables you to restrict that Application Gateways is always deployed with predefined Microsoft policy that is using TLS version 1.2
Mode All
Type Custom Azure Landing Zones (ALZ)
Preview False
Deprecated False
Effect Default
Deny
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/applicationGateways/sslPolicy.policyName Microsoft.Network applicationGateways properties.sslPolicy.policyName True True
Microsoft.Network/applicationGateways/sslPolicy.policyType Microsoft.Network applicationGateways properties.sslPolicy.policyType True True
Rule resource types IF (1)
Microsoft.Network/applicationGateways
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State
Enforce recommended guardrails for Network and Networking services Enforce-Guardrails-Network Network GA
History
Date/Time (UTC ymd) (i) Change type Change detail
2024-06-03 17:39:43 add Deny-AppGw-Without-Tls
JSON compare n/a
JSON
EPAC
Deploy policy Deny-AppGw-Without-Tls (1.0.0) to Azure