Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
| azure:az-500:enterprise_governance [2022/07/22 23:00] – mmuze | azure:az-500:enterprise_governance [2022/07/23 00:13] (current) – mmuze | ||
|---|---|---|---|
| Line 44: | Line 44: | ||
| * To add tags to resources that need for tracking purposes | * To add tags to resources that need for tracking purposes | ||
| - | ===== RBAC ===== | + | ===== Policy Responses ===== |
| + | * Deny the resource change | ||
| + | *Log the change to the resource | ||
| + | * Alter the resource before the change | ||
| + | * Alter the resource after the change | ||
| + | * Deploy related compliant resources | ||
| + | |||
| + | ===== RBAC Permissions for Azure Policy ===== | ||
| + | * [[https:// | ||
| + | |||
| + | |||
| + | ====== RBAC ====== | ||
| > RBAC is an authorization system built on Azure Resource Manager that provides fine-grained access management of Azure resources. | > RBAC is an authorization system built on Azure Resource Manager that provides fine-grained access management of Azure resources. | ||
| Line 70: | Line 81: | ||
| * **Resource Locks** are an additional layer of protection for resources above what is provided by RBAC roles. It can be used to prevent resources from being changed or deleted. | * **Resource Locks** are an additional layer of protection for resources above what is provided by RBAC roles. It can be used to prevent resources from being changed or deleted. | ||
| - | ===== Azure Blueprints ===== | + | ====== Azure Blueprints |
| Blueprints are a declarative way to orchestrate the deployment of various resource templates and other artifacts such as: | Blueprints are a declarative way to orchestrate the deployment of various resource templates and other artifacts such as: | ||