You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/azure-government/documentation-government-concept-naming-resources.md
+8-1Lines changed: 8 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,19 +9,21 @@ manager: zakramer
9
9
ms.devlang: na
10
10
ms.topic: article
11
11
ms.tgt_pltfrm: na
12
+
ms.service: azure-government
12
13
ms.workload: Azure-government
13
14
ms.date: 3/17/2020
14
15
ms.author: beellis
15
16
16
17
---
17
18
# Considerations for Naming Azure Resources
18
19
Customers should not include sensitive or restricted information in Azure Resource Names because they may be stored or accessed outside the compliance boundary to facilitate support and troubleshooting.
19
-
Azure Resource Names are a subset of Object Metadata that includes information provided by you, or on your behalf, that is used to identify or configure Online Service resources, such as software, systems, or containers, but does **not** include customer-created content or object metadata inside the resource (for example, database column/table names). Azure Resource Names include the names a customer assigns to ARM-level objects and resources deployed in Azure. Examples include the names of resources such as:
20
+
Azure Resource Names include information provided by you, or on your behalf, that is used to identify or configure Online Service resources, such as software, systems, or containers, but does **not** include customer-created content or metadata inside the resource (for example, database column/table names). Azure Resource Names include the names a customer assigns to ARM-level objects and resources deployed in Azure. Examples include the names of resources such as:
20
21
* vNETs (Virtual Networks)
21
22
* Virtual Hard Disks (VHDs)
22
23
* Database Servers & Databases
23
24
* Virtual Network Interface
24
25
* Network Security Groups
26
+
* Key Vaults
25
27
26
28
>[!NOTE]
27
29
>The above examples are but a subset of the types of resources customers can name. This list is not meant to be fully exhaustive and the types of resources could change in the future as new cloud services are added.
@@ -40,8 +42,13 @@ An example of a virtual machine resource ID is:
40
42
## Naming Considerations
41
43
For all names that meet the criteria above, from the name of the larger resource group to the name of the end resources within it, customers should avoid names that are sensitive to business/mission functions. Customers should also avoid names that indicate customer regulatory requirements (e.g., [ITAR](https://docs.microsoft.com/microsoft-365/compliance/offering-itar?view=o365-worldwide), [CJIS](https://docs.microsoft.com/microsoft-365/compliance/offering-cjis?view=o365-worldwide), etc.), as applicable.
42
44
45
+
>[!NOTE]
46
+
>Also consider naming of resource tags when reviewing the [Resource naming and tagging decision guide](https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/decision-guides/resource-tagging/?toc=/azure/>azure-resource-manager/management/toc.json).
47
+
>
48
+
43
49
Customers should understand and take into account the resource naming convention to help ensure operational security, as Microsoft personnel could use the full resource ID in the following example scenarios:
44
50
45
51
* Microsoft support personnel may use the full resource ID of resources during support events to ensure we're identifying the right resource within a customer's subscription to provide support for.
46
52
* Microsoft product engineering personnel could use full resource IDs during routine monitoring of telemetry data to identify deviance from baseline/average system performance.
47
53
* Proactive communication to customers about impacted resources during internally discovered incidents.
0 commit comments