AzInitiativeAdvertizer

last sync: 2024-Sep-19 17:51:50 UTC

Enforce recommended guardrails for Service Bus

Azure Landing Zones (ALZ) Policy Initiative (PolicySet)

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Enforce-Guardrails-ServiceBus
Display nameEnforce recommended guardrails for Service Bus
IdEnforce-Guardrails-ServiceBus
Version1.0.0
Details on versioning
CategoryService Bus
DescriptionThis policy initiative is a group of policies that ensures Service Bus is compliant per regulated Landing Zones.
TypeCustom Azure Landing Zones (ALZ)
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 4
Builtin Policies: 4
Static Policies: 0
ALZ Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State Type
All authorization rules except RootManageSharedAccessKey should be removed from Service Bus namespace a1817ec0-a368-432a-8057-8371e17ac6ee Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn
Azure Service Bus namespaces should have local authentication methods disabled cfb11c26-f069-4c14-8e36-56c394dae5af Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn
Configure Azure Service Bus namespaces to disable local authentication 910711a6-8aa2-4f15-ae62-1e5b2ed3ef9e Service Bus Default
Modify
Allowed
Modify, Disabled		 1 Azure Service Bus Data Owner GA BuiltIn
Service Bus namespaces should have double encryption enabled ebaf4f25-a4e8-415f-86a8-42d9155bef0b Service Bus Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn
Roles used
Total Roles usage: 1
Total Roles unique usage: 1
Role Role Id Policies count Policies
Azure Service Bus Data Owner 090c5cfd-751d-490a-894a-3ce6f1109419 1 Configure Azure Service Bus namespaces to disable local authentication
History none
JSON compare n/a
JSON
EPAC