AzPolicyAdvertizer

last sync: 2025-Oct-31 18:22:59 UTC

[Preview]: Kubernetes cluster containers should use only allowed sysctl interfaces

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Preview]: Kubernetes cluster containers should use only allowed sysctl interfaces

5e5a0673-649e-4d50-bf9d-5a387a4e2081

Version

1.0.0-preview
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]

Category

Kubernetes
Microsoft Learn

Description

Containers should use only allowed sysctl interfaces in a Kubernetes cluster. This policy is generally available for Kubernetes Service (AKS), and preview for Azure Arc enabled Kubernetes. For more information, see https://aka.ms/kubepolicydoc.

Cloud environments

AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown

Available in AzUSGov

The Policy is available in AzureUSGovernment cloud. Version: '1.0.0-preview'
Repository: Azure-Policy 5e5a0673-649e-4d50-bf9d-5a387a4e2081

Mode

Microsoft.Kubernetes.Data

Type

BuiltIn

Preview

True

Deprecated

False

Effect

Default
Audit
Allowed
Audit, Deny, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (2)

Microsoft.ContainerService/managedClusters
Microsoft.Kubernetes/connectedClusters

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
Deployment safeguards should help guide developers towards AKS recommended best practices	c047ea8e-9c78-49b2-958b-37e56d291a44	Kubernetes	GA	BuiltIn	true

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2025-09-23 17:23:42	add	5e5a0673-649e-4d50-bf9d-5a387a4e2081

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC