AzPolicyAdvertizer

last sync: 2024-Nov-25 18:54:24 UTC

[Preview]: Kubernetes cluster services should use unique selectors

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Preview]: Kubernetes cluster services should use unique selectors

b0fdedee-7b9e-4a17-9f5d-5e8e912d2f01

Version

1.2.0-preview
Details on versioning

Versioning

Versions supported for Versioning: 4
1.0.0-preview
1.1.0-preview
1.1.1-preview
1.2.0-preview
Built-in Versioning [Preview]

Category

Kubernetes
Microsoft Learn

Description

Ensure Services in a Namespace Have Unique Selectors. A unique service selector ensures that each service within a namespace is uniquely identifiable based on specific criteria. This policy syncs ingress resources into OPA via Gatekeeper. Before applying, verify Gatekeeper pods memory capacity won't be exceeded. Parameters apply to specific namespaces, but it syncs all resources of that type across all namespaces. Currently in preview for Kubernetes Service (AKS).

Mode

Microsoft.Kubernetes.Data

Type

BuiltIn

Preview

True

Deprecated

False

Effect

Default
Audit
Allowed
Audit, Deny, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (1)
Microsoft.ContainerService/managedClusters

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Preview]: Deployment safeguards should help guide developers towards AKS recommended best practices	c047ea8e-9c78-49b2-958b-37e56d291a44	Kubernetes	Preview	BuiltIn

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2024-08-09 18:17:47	change	Minor, suffix remains equal (1.1.1-preview > 1.2.0-preview)
2024-03-15 22:15:34	change	Patch, suffix remains equal (1.1.0-preview > 1.1.1-preview)
2024-02-20 22:44:08	change	Minor, suffix remains equal (1.0.0-preview > 1.1.0-preview)
2023-10-31 19:02:40	add	b0fdedee-7b9e-4a17-9f5d-5e8e912d2f01

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC