AzPolicyAdvertizer

last sync: 2025-May-23 18:27:10 UTC

Service Bus Namespace - Customer Managed Keys DENY

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy c4639a6d-2ec5-470a-8e8f-0a2c150c48fc (1.0.0) to Azure
Display name Service Bus Namespace - Customer Managed Keys DENY
Id c4639a6d-2ec5-470a-8e8f-0a2c150c48fc
Version 1.0.0
Details on versioning
Category Service Bus
Microsoft Learn
Description This Azure Policy denies the deployment of a Service Bus Namespace when the 'Customer-managed key' setting is not enabled as this implies that a Microsoft Managed Key is used.
Mode All
Type Custom Community
Effect Default
Audit
Allowed
Deny, Audit, Disabled
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.ServiceBus/namespaces/encryption.keySource Microsoft.ServiceBus namespaces properties.encryption.keySource True False
Microsoft.ServiceBus/namespaces/sku.tier Microsoft.ServiceBus namespaces sku.tier True False
Rule resource types IF (1)
Microsoft.ServiceBus/namespaces
JSON
EPAC
Deploy policy c4639a6d-2ec5-470a-8e8f-0a2c150c48fc (1.0.0) to Azure