AzPolicyAdvertizer

last sync: 2025-Oct-31 18:22:59 UTC

Kubernetes cluster Windows pods should not run HostProcess containers

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Kubernetes cluster Windows pods should not run HostProcess containers

077f0ce1-86d6-4058-bc60-de05067e8622

Version

1.0.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]

Category

Kubernetes
Microsoft Learn

Description

Prevent prviledged access to the windows node. This recommendation is intended to improve the security of Windows nodes. For more information, see https://kubernetes.io/docs/concepts/windows/intro/ .

Cloud environments

AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown

Available in AzUSGov

The Policy is available in AzureUSGovernment cloud. Version: '1.0.0'
Repository: Azure-Policy 077f0ce1-86d6-4058-bc60-de05067e8622

Mode

Microsoft.Kubernetes.Data

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Audit
Allowed
Audit, Deny, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (2)

Microsoft.ContainerService/managedClusters
Microsoft.Kubernetes/connectedClusters

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
Deployment safeguards should help guide developers towards AKS recommended best practices	c047ea8e-9c78-49b2-958b-37e56d291a44	Kubernetes	GA	BuiltIn	true

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2024-08-09 18:17:47	add	077f0ce1-86d6-4058-bc60-de05067e8622

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC