You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/governance/policy/concepts/definition-structure.md
+2-3Lines changed: 2 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -136,7 +136,7 @@ see [Tag support for Azure resources](../../../azure-resource-manager/management
136
136
137
137
The following Resource Provider modes are fully supported:
138
138
139
-
-`Microsoft.Kubernetes.Data` for managing your Kubernetes clusters on or off Azure, and for Azure Policy components that target[Azure Arc-enabled Kubernetes clusters](../../../aks/intro-kubernetes.md) components such as pods, containers, and ingresses. Definitions
139
+
-`Microsoft.Kubernetes.Data` for managing Kubernetes clusters and components such as pods, containers, and ingresses. Supported for Azure Kubernetes Service clusters and[Azure Arc-enabled Kubernetes clusters](../../../aks/intro-kubernetes.md). Definitions
140
140
using this Resource Provider mode use effects _audit_, _deny_, and _disabled_.
141
141
-`Microsoft.KeyVault.Data` for managing vaults and certificates in
142
142
[Azure Key Vault](../../../key-vault/general/overview.md). For more information on these policy
@@ -146,6 +146,7 @@ The following Resource Provider modes are fully supported:
146
146
The following Resource Provider modes are currently supported as a **[preview](https://azure.microsoft.com/support/legal/preview-supplemental-terms/)**:
147
147
148
148
-`Microsoft.Network.Data` for managing [Azure Virtual Network Manager](../../../virtual-network-manager/overview.md) custom membership policies using Azure Policy.
149
+
-`Microsoft.ManagedHSM.Data` for managing [Managed HSM](../../../key-vault/managed-hsm/overview.md) keys using Azure Policy.
149
150
150
151
> [!NOTE]
151
152
>Unless explicitly stated, Resource Provider modes only support built-in policy definitions, and exemptions are not supported at the component-level.
@@ -462,8 +463,6 @@ A condition evaluates whether a value meets certain criteria. The supported cond
462
463
`"greaterOrEquals": intValue`
463
464
-`"exists": "bool"`
464
465
465
-
When using **equals** or **notEquals** conditions, non-string values are converted into strings for evaluation. For example, `123` would be resolved into `"123"`, and `null` would be resolved into an empty string `""`. It is recommended that all values are entered as type string to begin with.
466
-
467
466
For **less**, **lessOrEquals**, **greater**, and **greaterOrEquals**, if the property type doesn't
468
467
match the condition type, an error is thrown. String comparisons are made using
Copy file name to clipboardExpand all lines: articles/governance/policy/concepts/policy-applicability.md
+5Lines changed: 5 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -54,6 +54,11 @@ Policies with mode `Microsoft.KeyVault.Data` are applicable if the `type` condit
54
54
- Microsoft.KeyVault.Data/vaults/keys
55
55
- Microsoft.KeyVault.Data/vaults/secrets
56
56
57
+
### Microsoft.ManagedHSM.Data
58
+
59
+
Policies with mode `Microsoft.ManagedHSM.Data` are applicable if the `type` condition of the policy rule evaluates to true. The `type` refers to component type:
60
+
- Microsoft.ManagedHSM.Data/managedHsms/keys
61
+
57
62
### Microsoft.Network.Data
58
63
59
64
Policies with mode `Microsoft.Network.Data` are applicable if the `type` and `name` conditions of the policy rule evaluate to true. The `type` refers to component type:
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments