Azure Policy

Question 1

Azure Policy

Answer 1

Azure Policy is a governance tool with which you can standarize deployment attributes in your subscriptions. For example, you can deploy an Azure Policy that limits the regions your admins can deploy resources to.

Question 2

Azure Policy

Answer 2

-managing resources with Azure Policy begins with the creation of a policy definition in the portal
-the definitions have conditions under which it is enforced, along with an affect that takes place when the defined conditions are met
-to leverage these policy definitions, they need to first be assigned. this can be accomplished through the Azure portal, PowerShell, or Azure CLI.
-Policy re-evaluation happens about once an hour.

Question 3

Azure Policy scope exclusions allow:

Answer 3

-management groups
-subscriptions
-resource groups
-resources

Question 4

Azure Policy - Initiative

Answer 4

Initiatives enable you to group several policy definitions to simplify assignments and management because youwork with a group as a single item.
For example, you can group related tagging policy definitions into a single initative. Rather than assigning each policy individually, you apply the initative.

Question 5

You can only assign initiative through

Answer 5

Defender for Cloud

Question 6

Which would you implement to comply with restrictive geo-location compliancce requirements within your Azure subscription?

Answer 6

Azure Policy
-the “AllowedLocations” Azure policy is used to restrict the geo-location of resourcded ddepliyed in to the subscription