AzPolicyAdvertizer

last sync: 2025-Oct-31 18:22:59 UTC

Kubernetes clusters should not use specific security capabilities

Azure BuiltIn Policy definition

Source Azure Portal
Display name Kubernetes clusters should not use specific security capabilities
Id a27c700f-8a22-44ec-961c-41625264370b
Version 5.2.0
Details on versioning
Versioning Versions supported for Versioning: 2
5.2.0
5.1.0
Built-in Versioning [Preview]
Category Kubernetes
Microsoft Learn
Description Prevent specific security capabilities in Kubernetes clusters to prevent ungranted privileges on the Pod resource. For more information, see https://aka.ms/kubepolicydoc.
Cloud environments AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown
Available in AzUSGov The Policy is available in AzureUSGovernment cloud. Version: '6.1.0'
Repository: Azure-Policy a27c700f-8a22-44ec-961c-41625264370b
Mode Microsoft.Kubernetes.Data
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
audit, Audit, deny, Deny, disabled, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2024-08-09 18:17:47 change Minor (5.1.0 > 5.2.0)
2023-05-01 17:41:52 change Minor (5.0.1 > 5.1.0)
2022-10-21 16:42:13 change Patch (5.0.0 > 5.0.1)
2022-09-19 17:41:40 change Major (4.0.1 > 5.0.0)
2022-06-17 16:31:08 change Major (3.2.0 > 4.0.1)
2022-04-29 18:06:01 change Minor (3.1.0 > 3.2.0)
2022-04-01 20:29:14 change Minor (3.0.2 > 3.1.0)
2021-12-06 22:17:57 change Patch (3.0.1 > 3.0.2)
2021-10-04 15:27:15 change Version remains equal, old suffix: preview (3.0.1-preview > 3.0.1)
2021-09-08 15:39:57 change Patch, suffix remains equal (3.0.0-preview > 3.0.1-preview)
2021-08-30 14:27:30 change Major, suffix remains equal (2.0.0-preview > 3.0.0-preview)
2021-03-02 15:11:40 change Major, suffix remains equal (1.0.0-preview > 2.0.0-preview)
2020-12-11 15:42:52 add a27c700f-8a22-44ec-961c-41625264370b
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC