Update use-psa.md

charleswool · web-flow · commit aa11e432a8c2 · 2022-08-17T21:05:51.000+08:00
Add guidance for users of when to use PSA and when to azure policy
diff --git a/articles/aks/use-psa.md b/articles/aks/use-psa.md
@@ -11,6 +11,8 @@ ms.date: 08/08/2022
 
 Pod Security Admission enforces Pod Security Standards policies on pods running in a namespace. Pod Security Admission is enabled by default in AKS and is controlled by adding labels to a namespace. For more information about Pod Security Admission, see [Enforce Pod Security Standards with Namespace Labels][kubernetes-psa]. For more information about the Pod Security Standards used by Pod Security Admission, see [Pod Security Standards][kubernetes-pss].
 
+What is worth mentioning is that Pod Security Admission is a lightweight built-in solution for board security spectrum. If you are looking for an enterprise-grade policy solution, then [Azure policy][https://docs.microsoft.com/azure/aks/use-azure-policy] is a better choice.
+
 ## Before you begin
 
 - An Azure subscription. If you don't have an Azure subscription, you can create a [free account](https://azure.microsoft.com/free).
