| Name | ExpressRoute should not use Authorization keys Community-Policy GitHub |
||
| Id | network_deny-expressroute-authorization-key | ||
| Version | 1.0.0 details on versioning |
||
| Category | Network Microsoft docs |
||
| Description | This policy denies the creation of Authorization keys for the ExpressRoute. Authorization keys are used to enable cross-subscription/cross-tenant networking functionality to the ExpressRoute. This should be reviewed by the network security team. https://learn.microsoft.com/en-us/azure/expressroute/expressroute-howto-linkvnet-portal-resource-manager | ||
| Mode | Indexed | ||
| Type | Custom Community | ||
| Effect | Default Deny Allowed Deny, Audit, Disabled |
||
| Used RBAC Role | none | ||
| Rule Aliases | |||
| Rule ResourceTypes | IF (1) Microsoft.Network/expressRouteCircuits |
||
| JSON |
|