AzPolicyAdvertizer

last sync: 2024-Sep-19 17:51:32 UTC

Subnets should have a User Defined Route

Source

Repository Azure Landing Zones (ALZ) GitHub
JSON Deny-Subnet-Without-Udr

Display name

Subnets should have a User Defined Route

Deny-Subnet-Without-Udr

Version

Category

Network

Description

This policy denies the creation of a subnet without a User Defined Route (UDR).

Mode

All

Type

Custom Azure Landing Zones (ALZ)

Preview

False

Deprecated

False

Effect

Default
Deny
Allowed
Audit, Deny, Disabled

RBAC role(s)

none

Rule aliases

IF (4)

Alias	Namespace	ResourceType	Path	PathIsDefault	Modifiable
Microsoft.Network/virtualNetworks/subnets/routeTable.id	Microsoft.Network	virtualNetworks/subnets	properties.routeTable.id	True	True
Microsoft.Network/virtualNetworks/subnets[*]	Microsoft.Network	virtualNetworks	properties.subnets[*]	True	False
Microsoft.Network/virtualNetworks/subnets[*].name	Microsoft.Network	virtualNetworks	properties.subnets[*].name	True	False
Microsoft.Network/virtualNetworks/subnets[*].routeTable.id	Microsoft.Network	virtualNetworks	properties.subnets[*].properties.routeTable.id	True	True

Rule resource types

IF (2)
Microsoft.Network/virtualNetworks
Microsoft.Network/virtualNetworks/subnets

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State
Enforce recommended guardrails for Network and Networking services	Enforce-Guardrails-Network	Network	GA

History

none

JSON compare

n/a

JSON

EPAC