Merge pull request #278348 from davidsmatlak/ds-copy-policy-include-file-20240614

Copy ARG include file

Author: Stacyrch140

articles/governance/includes/resource-graph/samples/query/policy-resources-exemption-query.md

@@ -0,0 +1,77 @@
+---
+ms.service: azure-policy
+ms.topic: include
+ms.date: 06/04/2024
+author: davidsmatlak
+ms.author: davidsmatlak
+---
+
+### Policy exemptions per assignment
+
+Lists the number of exemptions for each assignment.
+
+```kusto
+PolicyResources
+| where type == 'microsoft.authorization/policyexemptions'
+| summarize count() by tostring(properties.policyAssignmentId)
+```
+
+For more information about using scopes with Azure CLI or Azure PowerShell, go to [Count Azure resources](../../../../resource-graph/samples/starter.md#count-azure-resources).
+
+# [Azure CLI](#tab/azure-cli)
+
+Use the `--management-groups` parameter with an Azure management group ID or tenant ID. In this example, the `tenantid` variable stores the tenant ID.
+
+```azurecli-interactive
+tenantid="$(az account show --query tenantId --output tsv)"
+az graph query -q "policyresources | where type == 'microsoft.authorization/policyexemptions' | summarize count() by tostring(properties.policyAssignmentId)" --management-groups $tenantid
+```
+
+# [Azure PowerShell](#tab/azure-powershell)
+
+By default, PowerShell get results for all subscriptions in your tenant but you can also include the `-UseTenantScope` parameter.
+
+```azurepowershell-interactive
+Search-AzGraph -Query "policyresources | where type == 'microsoft.authorization/policyexemptions' | summarize count() by tostring(properties.policyAssignmentId)" -UseTenantScope
+```
+
+# [Portal](#tab/azure-portal)
+
+- Azure portal: <a href="https://portal.azure.com/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20summarize%20count%28%29%20by%20tostring%28properties.policyAssignmentId%29" target="_blank">portal.azure.com</a>
+- Azure Government portal: <a href="https://portal.azure.us/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20summarize%20count%28%29%20by%20tostring%28properties.policyAssignmentId%29" target="_blank">portal.azure.us</a>
+- Microsoft Azure operated by 21Vianet portal: <a href="https://portal.azure.cn/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20summarize%20count%28%29%20by%20tostring%28properties.policyAssignmentId%29" target="_blank">portal.azure.cn</a>
+
+---
+
+### Policy exemptions that expire within 90 days
+
+Lists the name and expiration date.
+
+```kusto
+PolicyResources
+| where type == 'microsoft.authorization/policyexemptions'
+| extend expiresOnC = todatetime(properties.expiresOn)
+| where isnotnull(expiresOnC)
+| where expiresOnC >= now() and expiresOnC < now(+90d)
+| project name, expiresOnC
+```
+
+# [Azure CLI](#tab/azure-cli)
+
+```azurecli-interactive
+az graph query -q "policyresources | where type == 'microsoft.authorization/policyexemptions' | extend expiresOnC = todatetime(properties.expiresOn) | where isnotnull(expiresOnC) | where expiresOnC >= now() and expiresOnC < now(+90d) | project name, expiresOnC"
+```
+
+# [Azure PowerShell](#tab/azure-powershell)
+
+```azurepowershell-interactive
+Search-AzGraph -Query "policyresources | where type == 'microsoft.authorization/policyexemptions' | extend expiresOnC = todatetime(properties.expiresOn) | where isnotnull(expiresOnC) | where expiresOnC >= now() and expiresOnC < now(+90d) | project name, expiresOnC"
+```
+
+# [Portal](#tab/azure-portal)
+
+- Azure portal: <a href="https://portal.azure.com/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20extend%20expiresOnC%20%3D%20todatetime%28properties.expiresOn%29%0D%0A%7C%20where%20isnotnull%28expiresOnC%29%0D%0A%7C%20where%20expiresOnC%20%3E%3D%20now%28%29%20and%20expiresOnC%20%3C%20now%28%2B90d%29%0D%0A%7C%20project%20name%2C%20expiresOnC" target="_blank">portal.azure.com</a>
+- Azure Government portal: <a href="https://portal.azure.us/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20extend%20expiresOnC%20%3D%20todatetime%28properties.expiresOn%29%0D%0A%7C%20where%20isnotnull%28expiresOnC%29%0D%0A%7C%20where%20expiresOnC%20%3E%3D%20now%28%29%20and%20expiresOnC%20%3C%20now%28%2B90d%29%0D%0A%7C%20project%20name%2C%20expiresOnC" target="_blank">portal.azure.us</a>
+- Microsoft Azure operated by 21Vianet portal: <a href="https://portal.azure.cn/#blade/HubsExtension/ArgQueryBlade/query/policyresources%0D%0A%7C%20where%20type%20%3D%3D%20%27microsoft.authorization%2Fpolicyexemptions%27%0D%0A%7C%20extend%20expiresOnC%20%3D%20todatetime%28properties.expiresOn%29%0D%0A%7C%20where%20isnotnull%28expiresOnC%29%0D%0A%7C%20where%20expiresOnC%20%3E%3D%20now%28%29%20and%20expiresOnC%20%3C%20now%28%2B90d%29%0D%0A%7C%20project%20name%2C%20expiresOnC" target="_blank">portal.azure.cn</a>
+
+---

articles/governance/resource-graph/reference/supported-tables-resources.md

@@ -3,6 +3,8 @@ title: Supported Azure Resource Manager resource types
 description: Provide a list of the Azure Resource Manager resource types supported by Azure Resource Graph and Change History.
 ms.date: 06/05/2024
 ms.topic: reference
+author: davidsmatlak
+ms.author: davidsmatlak
 ms.custom: generated
 ---
 

articles/governance/resource-graph/samples/advanced.md

@@ -3,6 +3,8 @@ title: Advanced query samples
 description: Use Azure Resource Graph to run some advanced queries, including working with columns, listing tags used, and matching resources with regular expressions.
 ms.date: 06/05/2024
 ms.topic: sample
+author: davidsmatlak
+ms.author: davidsmatlak
 ms.custom: devx-track-azurepowershell, devx-track-azurecli
 ---
 

articles/governance/resource-graph/samples/samples-by-category.md

@@ -3,6 +3,8 @@ title: List of sample Azure Resource Graph queries by category
 description: List sample queries for Azure Resource-Graph. Categories include Tags, Azure Advisor, Key Vault, Kubernetes, Guest Configuration, and more.
 ms.date: 06/05/2024
 ms.topic: sample
+author: davidsmatlak
+ms.author: davidsmatlak
 ms.custom: generated
 ---
 
@@ -69,7 +71,7 @@ Otherwise, use <kbd>Ctrl</kbd>-<kbd>F</kbd> to use your browser's search feature
 
 [!INCLUDE [azure-resource-graph-samples-cat-azure-policy](../../includes/resource-graph/samples/bycat/azure-policy.md)]
 
-[!INCLUDE [policy-resources-exemption-query](../../includes/policy/policy-resources-exemption-query.md)]
+[!INCLUDE [policy-resources-exemption-query](../../includes/resource-graph/samples/query/policy-resources-exemption-query.md)]
 
 ## Azure Policy guest configuration
 

articles/governance/resource-graph/samples/samples-by-table.md

@@ -3,6 +3,8 @@ title: List of sample Azure Resource Graph queries by table
 description: List sample queries for Azure Resource-Graph. Tables include Resources, ResourceContainers, PolicyResources, and more.
 ms.date: 06/05/2024
 ms.topic: sample
+author: davidsmatlak
+ms.author: davidsmatlak
 ms.custom: generated
 ---
 
@@ -89,7 +91,7 @@ details, see [Resource Graph tables](../concepts/query-language.md#resource-grap
 
 [!INCLUDE [azure-resource-graph-samples-table-policyresources](../../includes/resource-graph/samples/bytable/policyresources.md)]
 
-[!INCLUDE [policy-resources-exemption-query](../../includes/policy/policy-resources-exemption-query.md)]
+[!INCLUDE [policy-resources-exemption-query](../../includes/resource-graph/samples/query/policy-resources-exemption-query.md)]
 
 ## ResourceContainers
 

articles/governance/resource-graph/samples/starter.md

@@ -3,6 +3,8 @@ title: Starter query samples
 description: Use Azure Resource Graph to run some starter queries, including counting resources, ordering resources, or by a specific tag.
 ms.date: 06/05/2024
 ms.topic: sample
+author: davidsmatlak
+ms.author: davidsmatlak
 ms.custom: devx-track-azurepowershell, devx-track-azurecli
 ---