'Is there an azure policy to deny Storage account deployment to ensure soft delete in json custom policy?
I have tried these two policy aliases which didn't work
"policyRule": {
"if": {
"allOf": [
{
"field": "type",
"equals": "Microsoft.Storage/storageAccounts/blobServices"
},
{
"field": "Microsoft.Storage/storageAccounts/blobServices/deleteRetentionPolicy.enabled",
# "Microsoft.Storage/storageAccounts/blobServices/deleteRetentionPolicy.enabled"
"equals": false
}
]
},
"then": {
"effect": "[parameters('effect')]"
}
}
},
Solution 1:[1]
No, currently, there is no such policy for that.
There is already an user feedback here, please up-vote it. Let's wait the team to implement this feature.
Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|---|
| Solution 1 | Ivan Yang |