Path	Lines of Code
CODE_OF_CONDUCT.md	6
CONTRIBUTING.md	102
Policies/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.json	190
Policies/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.parameters.json	52
Policies/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.rules.json	126
Policies/Tags/inherit-resoucegroup-multipletags-if-missing/azurepolicy.json	124
Policies/Tags/inherit-resoucegroup-multipletags-if-missing/azurepolicy.parameters.json	49
Policies/Tags/inherit-resoucegroup-multipletags-if-missing/azurepolicy.rules.json	61
README.md	56
SECURITY.md	24
Scripts/Test/all-ok.json	36
Scripts/Test/effect-harcoded.json	22
Scripts/Test/effect-invalid-allowed-invalid-default.json	32
Scripts/Test/effect-invalid-allowed-no-default.json	31
Scripts/Test/effect-invalid-allowed-valid-default.json	32
Scripts/Test/effect-no-allowed-invalid-default.json	28
Scripts/Test/effect-no-allowed-no-default.json	27
Scripts/Test/effect-no-allowed-valid-default.json	28
Scripts/Test/effect-no-description.json	35
Scripts/Test/effect-no-metadata.json	31
Scripts/Test/effect-wrong-parameter-name.json	35
Scripts/Test/effect-wrong-type.json	36
Scripts/Test/guid-name-no-display-name.json	35
Scripts/Test/guid-not.json	36
Scripts/Test/invalid-json.json	10
Scripts/Test/long-description.json	36
Scripts/Test/long-displayName.json	36
Scripts/Test/long-policy-name.json	36
Scripts/Test/metadata-bad-category.json	36
Scripts/Test/metadata-lowercase-category.json	36
Scripts/Test/no-category.json	35
Scripts/Test/no-description.json	35
Scripts/Test/no-display-name-no-description.json	34
Scripts/Test/no-display-name-no-name.json	34
Scripts/Test/no-display-name.json	35
Scripts/Test/no-metadata.json	32
Scripts/Test/no-mode.json	35
Scripts/Test/no-name.json	35
Scripts/Test/no-version.json	35
Scripts/Test/not-a-policy.json	27
policyDefinitions/API Management/audit-sample-products-should-be-removed-from-api-management/azurepolicy.json	44
policyDefinitions/API Management/audit-sample-products-should-be-removed-from-api-management/azurepolicy.parameters.json	14
policyDefinitions/API Management/audit-sample-products-should-be-removed-from-api-management/azurepolicy.rules.json	17
policyDefinitions/API Management/configure-readonly-lock-for-api-management's-subnet/azurepolicy.json	100
policyDefinitions/API Management/configure-readonly-lock-for-api-management's-subnet/azurepolicy.parameters.json	15
policyDefinitions/API Management/configure-readonly-lock-for-api-management's-subnet/azurepolicy.rules.json	72
policyDefinitions/API Management/deny-enforcing-internal-vpn/azurepolicy.json	45
policyDefinitions/API Management/deny-enforcing-internal-vpn/azurepolicy.parameters.json	15
policyDefinitions/API Management/deny-enforcing-internal-vpn/azurepolicy.rules.json	17
policyDefinitions/App Configuration/app-configuration-stores-should-should-have-soft-delete-enabled-of-7-days/azurepolicy.json	66
policyDefinitions/App Configuration/app-configuration-stores-should-should-have-soft-delete-enabled-of-7-days/azurepolicy.parameters.json	22
policyDefinitions/App Configuration/app-configuration-stores-should-should-have-soft-delete-enabled-of-7-days/azurepolicy.rules.json	31
policyDefinitions/App Service/allowed-app-services-plan-skus/azurepolicy.json	54
policyDefinitions/App Service/allowed-app-services-plan-skus/azurepolicy.parameters.json	22
policyDefinitions/App Service/allowed-app-services-plan-skus/azurepolicy.rules.json	19
policyDefinitions/App Service/app-service-apps-should-use-the-latest-tls-version-for-scm-connections/azurepolicy.json	56
policyDefinitions/App Service/app-service-apps-should-use-the-latest-tls-version-for-scm-connections/azurepolicy.parameters.json	14
policyDefinitions/App Service/app-service-apps-should-use-the-latest-tls-version-for-scm-connections/azurepolicy.rules.json	29
policyDefinitions/App Service/apps-require-app-gateway-front-end/azurepolicy.json	52
policyDefinitions/App Service/apps-require-app-gateway-front-end/azurepolicy.parameters.json	14
policyDefinitions/App Service/apps-require-app-gateway-front-end/azurepolicy.rules.json	25
policyDefinitions/App Service/audit-app-service-vnetrouteallenabled/README.md	57
policyDefinitions/App Service/audit-app-service-vnetrouteallenabled/azurepolicy.json	43
policyDefinitions/App Service/audit-app-service-vnetrouteallenabled/azurepolicy.parameters.json	14
policyDefinitions/App Service/audit-app-service-vnetrouteallenabled/azurepolicy.rules.json	16
policyDefinitions/App Service/configure-a-private-dns-zone-for-static-webapp/azurepolicy.json	128
policyDefinitions/App Service/configure-a-private-dns-zone-for-static-webapp/azurepolicy.parameters.json	22
policyDefinitions/App Service/configure-a-private-dns-zone-for-static-webapp/azurepolicy.rules.json	93
policyDefinitions/App Service/configure-diagnostic-settings-for-all-web-app-service-plan-skus/azurepolicy.json	283
policyDefinitions/App Service/configure-diagnostic-settings-for-all-web-app-service-plan-skus/azurepolicy.parameters.json	56
policyDefinitions/App Service/configure-diagnostic-settings-for-all-web-app-service-plan-skus/azurepolicy.rules.json	216
policyDefinitions/App Service/deploy-app-private-endpoint-private-dns-zone-link-domainbased/azurepolicy.json	142
policyDefinitions/App Service/deploy-app-private-endpoint-private-dns-zone-link-domainbased/azurepolicy.parameters.json	30
policyDefinitions/App Service/deploy-app-private-endpoint-private-dns-zone-link-domainbased/azurepolicy.rules.json	101
policyDefinitions/App Service/deploy-webapp-https-only-requirement/azurepolicy.json	92
policyDefinitions/App Service/deploy-webapp-https-only-requirement/azurepolicy.parameters.json	15
policyDefinitions/App Service/deploy-webapp-https-only-requirement/azurepolicy.rules.json	64
policyDefinitions/App Service/enforce-ftps-only-or-disablement-of-ftp-ftps-for-app-service-and-azure-functions/azurepolicy.json	106
policyDefinitions/App Service/enforce-ftps-only-or-disablement-of-ftp-ftps-for-app-service-and-azure-functions/azurepolicy.parameters.json	23
policyDefinitions/App Service/enforce-ftps-only-or-disablement-of-ftp-ftps-for-app-service-and-azure-functions/azurepolicy.rules.json	70
policyDefinitions/App Service/function-app-should-only-be-accessible-over-https/azurepolicy.json	93
policyDefinitions/App Service/function-app-should-only-be-accessible-over-https/azurepolicy.parameters.json	15
policyDefinitions/App Service/function-app-should-only-be-accessible-over-https/azurepolicy.rules.json	65
policyDefinitions/App Service/function-apps-must-be-deployed-to-an-app-service-environment-ase/azurepolicy.json	49
policyDefinitions/App Service/function-apps-must-be-deployed-to-an-app-service-environment-ase/azurepolicy.parameters.json	15
policyDefinitions/App Service/function-apps-must-be-deployed-to-an-app-service-environment-ase/azurepolicy.rules.json	21
policyDefinitions/App Service/function-apps-must-have-private-endpoints-enabled/azurepolicy.json	170
policyDefinitions/App Service/function-apps-must-have-private-endpoints-enabled/azurepolicy.parameters.json	23
policyDefinitions/App Service/function-apps-must-have-private-endpoints-enabled/azurepolicy.rules.json	134
policyDefinitions/App Service/function-apps-should-authenticate-to-azure-container-registry-using-a-managed-identity/azurepolicy.json	94
policyDefinitions/App Service/function-apps-should-authenticate-to-azure-container-registry-using-a-managed-identity/azurepolicy.parameters.json	15
policyDefinitions/App Service/function-apps-should-authenticate-to-azure-container-registry-using-a-managed-identity/azurepolicy.rules.json	66
policyDefinitions/App Service/function-apps-should-be-injected-into-a-virtual-network/azurepolicy.json	52
policyDefinitions/App Service/function-apps-should-be-injected-into-a-virtual-network/azurepolicy.parameters.json	14
policyDefinitions/App Service/function-apps-should-be-injected-into-a-virtual-network/azurepolicy.rules.json	25
policyDefinitions/App Service/function-apps-should-have-ftp-basic-auth-disabled/azurepolicy.json	56
policyDefinitions/App Service/function-apps-should-have-ftp-basic-auth-disabled/azurepolicy.parameters.json	14
policyDefinitions/App Service/function-apps-should-have-ftp-basic-auth-disabled/azurepolicy.rules.json	29
policyDefinitions/App Service/function-apps-should-have-incoming-client-certificates-enabled/azurepolicy.json	93
policyDefinitions/App Service/function-apps-should-have-incoming-client-certificates-enabled/azurepolicy.parameters.json	15
policyDefinitions/App Service/function-apps-should-have-incoming-client-certificates-enabled/azurepolicy.rules.json	65
policyDefinitions/App Service/function-apps-should-have-local-authentication-methods-for-deployment-disabled/azurepolicy.json	94
policyDefinitions/App Service/function-apps-should-have-local-authentication-methods-for-deployment-disabled/azurepolicy.parameters.json	15
policyDefinitions/App Service/function-apps-should-have-local-authentication-methods-for-deployment-disabled/azurepolicy.rules.json	66
policyDefinitions/App Service/latest-tls-version-should-be-used-in-your-function-app/azurepolicy.json	85
policyDefinitions/App Service/latest-tls-version-should-be-used-in-your-function-app/azurepolicy.parameters.json	15
policyDefinitions/App Service/latest-tls-version-should-be-used-in-your-function-app/azurepolicy.rules.json	57
policyDefinitions/App Service/linux-function-apps-should-only-use-a-specified-azure-container-registry-instance/azurepolicy.json	129
policyDefinitions/App Service/linux-function-apps-should-only-use-a-specified-azure-container-registry-instance/azurepolicy.parameters.json	30
policyDefinitions/App Service/linux-function-apps-should-only-use-a-specified-azure-container-registry-instance/azurepolicy.rules.json	86
policyDefinitions/App Service/remote-debugging-disabled-deploy-for-app-service/azurepolicy.json	93
policyDefinitions/App Service/remote-debugging-disabled-deploy-for-app-service/azurepolicy.parameters.json	15
policyDefinitions/App Service/remote-debugging-disabled-deploy-for-app-service/azurepolicy.rules.json	65
policyDefinitions/App Service/remote-debugging-should-be- disbaled-for-app-services/azurepolicy.json	45
policyDefinitions/App Service/remote-debugging-should-be- disbaled-for-app-services/azurepolicy.parameters.json	15
policyDefinitions/App Service/remote-debugging-should-be- disbaled-for-app-services/azurepolicy.rules.json	17
policyDefinitions/App Service/require-https-only-for-all-app-services/azurepolicy.json	45
policyDefinitions/App Service/require-https-only-for-all-app-services/azurepolicy.parameters.json	15
policyDefinitions/App Service/require-https-only-for-all-app-services/azurepolicy.rules.json	17
policyDefinitions/App Service/web-app-configure-always-on/azurepolicy.json	89
policyDefinitions/App Service/web-app-configure-always-on/azurepolicy.parameters.json	15
policyDefinitions/App Service/web-app-configure-always-on/azurepolicy.rules.json	61
policyDefinitions/App Service/web-app-require-always-on/azurepolicy.json	45
policyDefinitions/App Service/web-app-require-always-on/azurepolicy.parameters.json	15
policyDefinitions/App Service/web-app-require-always-on/azurepolicy.rules.json	17
policyDefinitions/App Service/web-apps-should-have-ftp-basic-auth-disabled/azurepolicy.json	52
policyDefinitions/App Service/web-apps-should-have-ftp-basic-auth-disabled/azurepolicy.parameters.json	14
policyDefinitions/App Service/web-apps-should-have-ftp-basic-auth-disabled/azurepolicy.rules.json	25
policyDefinitions/Attestation/manual-policy-per-subscription/azurepolicy.json	39
policyDefinitions/Attestation/manual-policy-per-subscription/azurepolicy.parameters.json	14
policyDefinitions/Attestation/manual-policy-per-subscription/azurepolicy.rules.json	12
policyDefinitions/Authorization/allowed-principal-ids/azurepolicy.json	54
policyDefinitions/Authorization/allowed-principal-ids/azurepolicy.parameters.json	22
policyDefinitions/Authorization/allowed-principal-ids/azurepolicy.rules.json	19
policyDefinitions/Authorization/allowed-role-definitions-for-specific-principal-ids/azurepolicy.json	66
policyDefinitions/Authorization/allowed-role-definitions-for-specific-principal-ids/azurepolicy.parameters.json	30
policyDefinitions/Authorization/allowed-role-definitions-for-specific-principal-ids/azurepolicy.rules.json	23
policyDefinitions/Authorization/allowed-role-definitions/README.md	16
policyDefinitions/Authorization/allowed-role-definitions/azurepolicy.json	68
policyDefinitions/Authorization/allowed-role-definitions/azurepolicy.parameters.json	30
policyDefinitions/Authorization/allowed-role-definitions/azurepolicy.rules.json	25
policyDefinitions/Authorization/audit-role-assignments-for-specific-principal-type/README.md	17
policyDefinitions/Authorization/audit-role-assignments-for-specific-principal-type/azurepolicy.json	57
policyDefinitions/Authorization/audit-role-assignments-for-specific-principal-type/azurepolicy.parameters.json	27
policyDefinitions/Authorization/audit-role-assignments-for-specific-principal-type/azurepolicy.rules.json	17
policyDefinitions/Authorization/audit-specified-resource-type-for-any-lock/README.md	16
policyDefinitions/Authorization/audit-specified-resource-type-for-any-lock/azurepolicy.json	73
policyDefinitions/Authorization/audit-specified-resource-type-for-any-lock/azurepolicy.parameters.json	44
policyDefinitions/Authorization/audit-specified-resource-type-for-any-lock/azurepolicy.rules.json	16
policyDefinitions/Authorization/custom-roles-are-not-allowed/azurepolicy.json	45
policyDefinitions/Authorization/custom-roles-are-not-allowed/azurepolicy.parameters.json	15
policyDefinitions/Authorization/custom-roles-are-not-allowed/azurepolicy.rules.json	17
policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.json	57
policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.parameters.json	23
policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.rules.json	21
policyDefinitions/Authorization/deploy-or-audit-for-a-specific-role-assignment-at-the-subscription-scope/azurepolicy.json	117
policyDefinitions/Authorization/deploy-or-audit-for-a-specific-role-assignment-at-the-subscription-scope/azurepolicy.parameters.json	29
policyDefinitions/Authorization/deploy-or-audit-for-a-specific-role-assignment-at-the-subscription-scope/azurepolicy.rules.json	75
policyDefinitions/Authorization/disallowed-role-definitions/azurepolicy.json	66
policyDefinitions/Authorization/disallowed-role-definitions/azurepolicy.parameters.json	30
policyDefinitions/Authorization/disallowed-role-definitions/azurepolicy.rules.json	23
policyDefinitions/Automation/audit-encryption-of-automation-account-variables/README.md	16
policyDefinitions/Automation/audit-encryption-of-automation-account-variables/azurepolicy.json	44
policyDefinitions/Automation/audit-encryption-of-automation-account-variables/azurepolicy.parameters.json	14
policyDefinitions/Automation/audit-encryption-of-automation-account-variables/azurepolicy.rules.json	17
policyDefinitions/Automation/deploy-dsc-extension-to-azure-vm-and-arc-connected-machines/README.md	16
policyDefinitions/Automation/deploy-dsc-extension-to-azure-vm-and-arc-connected-machines/azurepolicy.json	332
policyDefinitions/Automation/deploy-dsc-extension-to-azure-vm-and-arc-connected-machines/azurepolicy.parameters.json	33
policyDefinitions/Automation/deploy-dsc-extension-to-azure-vm-and-arc-connected-machines/azurepolicy.rules.json	286
policyDefinitions/Automation/onboard-azure-vm-and-arc-connected-machines-to-azure-automation-dsc/README.md	16
policyDefinitions/Automation/onboard-azure-vm-and-arc-connected-machines-to-azure-automation-dsc/azurepolicy.json	336
policyDefinitions/Automation/onboard-azure-vm-and-arc-connected-machines-to-azure-automation-dsc/azurepolicy.parameters.json	24
policyDefinitions/Automation/onboard-azure-vm-and-arc-connected-machines-to-azure-automation-dsc/azurepolicy.rules.json	299
policyDefinitions/Azure Arc/deploy-wac-extension-to-azure-arc-connected-machines/azurepolicy.json	165
policyDefinitions/Azure Arc/deploy-wac-extension-to-azure-arc-connected-machines/azurepolicy.parameters.json	30
policyDefinitions/Azure Arc/deploy-wac-extension-to-azure-arc-connected-machines/azurepolicy.rules.json	122
policyDefinitions/Azure Data Explorer/configure-private-dns-zones-for-azure-data-explorer-cluster-groupid/azurepolicy.json	183
policyDefinitions/Azure Data Explorer/configure-private-dns-zones-for-azure-data-explorer-cluster-groupid/azurepolicy.parameters.json	47
policyDefinitions/Azure Data Explorer/configure-private-dns-zones-for-azure-data-explorer-cluster-groupid/azurepolicy.rules.json	123
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-dbfs/azurepolicy.json	52
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-dbfs/azurepolicy.parameters.json	14
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-dbfs/azurepolicy.rules.json	25
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-managed-services/azurepolicy.json	44
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-managed-services/azurepolicy.parameters.json	14
policyDefinitions/Azure Databricks/audit-databricks-should-use-customer-managed-key-for-encrypting-managed-services/azurepolicy.rules.json	17
policyDefinitions/Azure Purview/deploy-purview-account-cannotdelete-lock/azurepolicy.json	86
policyDefinitions/Azure Purview/deploy-purview-account-cannotdelete-lock/azurepolicy.parameters.json	15
policyDefinitions/Azure Purview/deploy-purview-account-cannotdelete-lock/azurepolicy.rules.json	58
policyDefinitions/Backup/append-backup-rsvault-cmk/README.md	1
policyDefinitions/Backup/append-backup-rsvault-cmk/azurepolicy.json	97
policyDefinitions/Backup/append-backup-rsvault-cmk/azurepolicy.parameters.json	43
policyDefinitions/Backup/append-backup-rsvault-cmk/azurepolicy.rules.json	41
policyDefinitions/Backup/append-specified-values-for-encryption-using-customer-managed-keys-and-infrastructure-encryption-for-azure-backup/README.md	1
policyDefinitions/Backup/append-specified-values-for-encryption-using-customer-managed-keys-and-infrastructure-encryption-for-azure-backup/azurepolicy.json	97
policyDefinitions/Backup/append-specified-values-for-encryption-using-customer-managed-keys-and-infrastructure-encryption-for-azure-backup/azurepolicy.parameters.json	43
policyDefinitions/Backup/append-specified-values-for-encryption-using-customer-managed-keys-and-infrastructure-encryption-for-azure-backup/azurepolicy.rules.json	41
policyDefinitions/Backup/resource-lock-should-be-enabled/README.md	27
policyDefinitions/Backup/resource-lock-should-be-enabled/azurepolicy.json	127
policyDefinitions/Backup/resource-lock-should-be-enabled/azurepolicy.parameters.json	31
policyDefinitions/Backup/resource-lock-should-be-enabled/azurepolicy.rules.json	83
policyDefinitions/Backup/vm-backup-without-tag/README.md	35
policyDefinitions/Backup/vm-backup-without-tag/azurepolicy.json	191
policyDefinitions/Backup/vm-backup-without-tag/azurepolicy.parameters.json	55
policyDefinitions/Backup/vm-backup-without-tag/azurepolicy.rules.json	123
policyDefinitions/Backup/vm-tag-based-backup/README.md	2
policyDefinitions/Backup/vm-tag-based-backup/azurepolicy.json	167
policyDefinitions/Backup/vm-tag-based-backup/azurepolicy.parameters.json	50
policyDefinitions/Backup/vm-tag-based-backup/azurepolicy.rules.json	104
policyDefinitions/Batch/audit-enabling-of-diagnostic-logs-in-batch-accounts/README.md	16
policyDefinitions/Batch/audit-enabling-of-diagnostic-logs-in-batch-accounts/azurepolicy.json	59
policyDefinitions/Batch/audit-enabling-of-diagnostic-logs-in-batch-accounts/azurepolicy.parameters.json	22
policyDefinitions/Batch/audit-enabling-of-diagnostic-logs-in-batch-accounts/azurepolicy.rules.json	24
policyDefinitions/Budget/deploy-subscription-budget-in-mg/azurepolicy.json	254
policyDefinitions/Budget/deploy-subscription-budget-in-mg/azurepolicy.parameters.json	81
policyDefinitions/Budget/deploy-subscription-budget-in-mg/azurepolicy.rules.json	160
policyDefinitions/Cache/azure-redis-cache-should-supports-'standard-replication'/azurepolicy.json	49
policyDefinitions/Cache/azure-redis-cache-should-supports-'standard-replication'/azurepolicy.parameters.json	15
policyDefinitions/Cache/azure-redis-cache-should-supports-'standard-replication'/azurepolicy.rules.json	21
policyDefinitions/Cognitive Services/audit-content-logging/azurepolicy.json	53
policyDefinitions/Cognitive Services/audit-content-logging/azurepolicy.parameters.json	15
policyDefinitions/Cognitive Services/audit-content-logging/azurepolicy.rules.json	25
policyDefinitions/Cognitive Services/configure-a-private-dns-zone-id-for-cognitive-services-account-groupid/azurepolicy.json	142
policyDefinitions/Cognitive Services/configure-a-private-dns-zone-id-for-cognitive-services-account-groupid/azurepolicy.parameters.json	30
policyDefinitions/Cognitive Services/configure-a-private-dns-zone-id-for-cognitive-services-account-groupid/azurepolicy.rules.json	99
policyDefinitions/Cognitive Services/permit-only-approved-openai-models/azurepolicy.json	88
policyDefinitions/Cognitive Services/permit-only-approved-openai-models/azurepolicy.parameters.json	52
policyDefinitions/Cognitive Services/permit-only-approved-openai-models/azurepolicy.rules.json	23
policyDefinitions/Cognitive Services/permit-only-approved-types-of-cognitive-services/azurepolicy.json	90
policyDefinitions/Cognitive Services/permit-only-approved-types-of-cognitive-services/azurepolicy.parameters.json	58
policyDefinitions/Cognitive Services/permit-only-approved-types-of-cognitive-services/azurepolicy.rules.json	19
policyDefinitions/Cognitive Services/public-access-restriction/azurepolicy.json	73
policyDefinitions/Cognitive Services/public-access-restriction/azurepolicy.parameters.json	15
policyDefinitions/Cognitive Services/public-access-restriction/azurepolicy.rules.json	45
policyDefinitions/Compute/allow-custom-vm-image-from-a-resource-group/README.md	16
policyDefinitions/Compute/allow-custom-vm-image-from-a-resource-group/azurepolicy.json	54
policyDefinitions/Compute/allow-custom-vm-image-from-a-resource-group/azurepolicy.parameters.json	22
policyDefinitions/Compute/allow-custom-vm-image-from-a-resource-group/azurepolicy.rules.json	19
policyDefinitions/Compute/allowed-disk-skus/azurepolicy.json	52
policyDefinitions/Compute/allowed-disk-skus/azurepolicy.parameters.json	22
policyDefinitions/Compute/allowed-disk-skus/azurepolicy.rules.json	17
policyDefinitions/Compute/allowed-disk-states-for-azure-disks/azurepolicy.json	58
policyDefinitions/Compute/allowed-disk-states-for-azure-disks/azurepolicy.parameters.json	36
policyDefinitions/Compute/allowed-disk-states-for-azure-disks/azurepolicy.rules.json	9
policyDefinitions/Compute/allowed-disk-states-for-snapshots/azurepolicy.json	58
policyDefinitions/Compute/allowed-disk-states-for-snapshots/azurepolicy.parameters.json	36
policyDefinitions/Compute/allowed-disk-states-for-snapshots/azurepolicy.rules.json	9
policyDefinitions/Compute/allowed-vm-os/azurepolicy.json	117
policyDefinitions/Compute/allowed-vm-os/azurepolicy.parameters.json	15
policyDefinitions/Compute/allowed-vm-os/azurepolicy.rules.json	89
policyDefinitions/Compute/approved-vm-images/README.md	31
policyDefinitions/Compute/approved-vm-images/azurepolicy.json	54
policyDefinitions/Compute/approved-vm-images/azurepolicy.parameters.json	22
policyDefinitions/Compute/approved-vm-images/azurepolicy.rules.json	19
policyDefinitions/Compute/audit-if-extension-does-not-exist/README.md	16
policyDefinitions/Compute/audit-if-extension-does-not-exist/azurepolicy.json	81
policyDefinitions/Compute/audit-if-extension-does-not-exist/azurepolicy.parameters.json	28
policyDefinitions/Compute/audit-if-extension-does-not-exist/azurepolicy.rules.json	40
policyDefinitions/Compute/audit-os-and-data-disks-encrypted-without-a-customer-managed-key/azurepolicy.json	44
policyDefinitions/Compute/audit-os-and-data-disks-encrypted-without-a-customer-managed-key/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-os-and-data-disks-encrypted-without-a-customer-managed-key/azurepolicy.rules.json	17
policyDefinitions/Compute/audit-ssh-auth-on-existing-resources/README.md	22
policyDefinitions/Compute/audit-ssh-auth-on-existing-resources/azurepolicy.json	48
policyDefinitions/Compute/audit-ssh-auth-on-existing-resources/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-ssh-auth-on-existing-resources/azurepolicy.rules.json	21
policyDefinitions/Compute/audit-use-of-classic-virtual-machines/README.md	16
policyDefinitions/Compute/audit-use-of-classic-virtual-machines/azurepolicy.json	36
policyDefinitions/Compute/audit-use-of-classic-virtual-machines/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-use-of-classic-virtual-machines/azurepolicy.rules.json	9
policyDefinitions/Compute/audit-virtual-machine-auto-shutdown/azurepolicy.json	51
policyDefinitions/Compute/audit-virtual-machine-auto-shutdown/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-virtual-machine-auto-shutdown/azurepolicy.rules.json	24
policyDefinitions/Compute/audit-virtual-machine-scale-sets-without-automatic-os-upgrade-enabled/README.md	16
policyDefinitions/Compute/audit-virtual-machine-scale-sets-without-automatic-os-upgrade-enabled/azurepolicy.json	44
policyDefinitions/Compute/audit-virtual-machine-scale-sets-without-automatic-os-upgrade-enabled/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-virtual-machine-scale-sets-without-automatic-os-upgrade-enabled/azurepolicy.rules.json	17
policyDefinitions/Compute/audit-vm-byol-compliance/README.md	26
policyDefinitions/Compute/audit-vm-byol-compliance/azurepolicy.json	65
policyDefinitions/Compute/audit-vm-byol-compliance/azurepolicy.parameters.json	14
policyDefinitions/Compute/audit-vm-byol-compliance/azurepolicy.rules.json	38
policyDefinitions/Compute/audit-vms-based-on-marketplace-acg-images/azurepolicy.json	45
policyDefinitions/Compute/audit-vms-based-on-marketplace-acg-images/azurepolicy.parameters.json	15
policyDefinitions/Compute/audit-vms-based-on-marketplace-acg-images/azurepolicy.rules.json	17
policyDefinitions/Compute/audit-vmsss-based-on-marketplace-acg-images/azurepolicy.json	45
policyDefinitions/Compute/audit-vmsss-based-on-marketplace-acg-images/azurepolicy.parameters.json	15
policyDefinitions/Compute/audit-vmsss-based-on-marketplace-acg-images/azurepolicy.rules.json	17
policyDefinitions/Compute/blocked-disk-skus/azurepolicy.json	52
policyDefinitions/Compute/blocked-disk-skus/azurepolicy.parameters.json	22
policyDefinitions/Compute/blocked-disk-skus/azurepolicy.rules.json	17
policyDefinitions/Compute/compute-deploy-defender-for-servers/README.md	3
policyDefinitions/Compute/compute-deploy-defender-for-servers/azurepolicy.json	88
policyDefinitions/Compute/compute-deploy-defender-for-servers/azurepolicy.parameters.json	21
policyDefinitions/Compute/compute-deploy-defender-for-servers/azurepolicy.rules.json	54
policyDefinitions/Compute/configure-managed-disks-to-disable-public-access/azurepolicy.json	74
policyDefinitions/Compute/configure-managed-disks-to-disable-public-access/azurepolicy.parameters.json	28
policyDefinitions/Compute/configure-managed-disks-to-disable-public-access/azurepolicy.rules.json	30
policyDefinitions/Compute/create-delete-lock-on-specified-azure-vms/azurepolicy.json	130
policyDefinitions/Compute/create-delete-lock-on-specified-azure-vms/azurepolicy.parameters.json	43
policyDefinitions/Compute/create-delete-lock-on-specified-azure-vms/azurepolicy.rules.json	74
policyDefinitions/Compute/create-vm-using-managed-disk/README.md	16
policyDefinitions/Compute/create-vm-using-managed-disk/azurepolicy.json	69
policyDefinitions/Compute/create-vm-using-managed-disk/azurepolicy.parameters.json	15
policyDefinitions/Compute/create-vm-using-managed-disk/azurepolicy.rules.json	41
policyDefinitions/Compute/deny-data-access-authentication-mode/azurepolicy.json	45
policyDefinitions/Compute/deny-data-access-authentication-mode/azurepolicy.parameters.json	15
policyDefinitions/Compute/deny-data-access-authentication-mode/azurepolicy.rules.json	17
policyDefinitions/Compute/deny-hybrid-use-benefit/README.md	16
policyDefinitions/Compute/deny-hybrid-use-benefit/azurepolicy.json	48
policyDefinitions/Compute/deny-hybrid-use-benefit/azurepolicy.parameters.json	15
policyDefinitions/Compute/deny-hybrid-use-benefit/azurepolicy.rules.json	20
policyDefinitions/Compute/deny-ssh-auth-on-new-vms/README.md	22
policyDefinitions/Compute/deny-ssh-auth-on-new-vms/azurepolicy.json	7008
policyDefinitions/Compute/deny-ssh-auth-on-new-vms/azurepolicy.parameters.json	15
policyDefinitions/Compute/deny-ssh-auth-on-new-vms/azurepolicy.rules.json	6980
policyDefinitions/Compute/deploy-azure-hybrid-benefit-for-windows/azurepolicy.json	118
policyDefinitions/Compute/deploy-azure-hybrid-benefit-for-windows/azurepolicy.parameters.json	15
policyDefinitions/Compute/deploy-azure-hybrid-benefit-for-windows/azurepolicy.rules.json	90
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-linux-vms/azurepolicy.json	145
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-linux-vms/azurepolicy.parameters.json	32
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-linux-vms/azurepolicy.rules.json	100
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-windows-vms/README.md	16
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-windows-vms/azurepolicy.json	145
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-windows-vms/azurepolicy.parameters.json	32
policyDefinitions/Compute/deploy-default-log-analytics-vm-extension-for-windows-vms/azurepolicy.rules.json	100
policyDefinitions/Compute/deploy-hybrid-use-for-windows-server/README.md	16
policyDefinitions/Compute/deploy-hybrid-use-for-windows-server/azurepolicy.json	96
policyDefinitions/Compute/deploy-hybrid-use-for-windows-server/azurepolicy.parameters.json	15
policyDefinitions/Compute/deploy-hybrid-use-for-windows-server/azurepolicy.rules.json	68
policyDefinitions/Compute/deploy-linux-vm-app/azurepolicy.json	165
policyDefinitions/Compute/deploy-linux-vm-app/azurepolicy.parameters.json	51
policyDefinitions/Compute/deploy-linux-vm-app/azurepolicy.rules.json	101
policyDefinitions/Compute/deploy-microsoft-iaasantimalware-extension-for-custom-windows-images/azurepolicy.json	179
policyDefinitions/Compute/deploy-microsoft-iaasantimalware-extension-for-custom-windows-images/azurepolicy.parameters.json	15
policyDefinitions/Compute/deploy-microsoft-iaasantimalware-extension-for-custom-windows-images/azurepolicy.rules.json	151
policyDefinitions/Compute/deploy-qualys-agent-to-windows-vms/azurepolicy.json	330
policyDefinitions/Compute/deploy-qualys-agent-to-windows-vms/azurepolicy.parameters.json	41
policyDefinitions/Compute/deploy-qualys-agent-to-windows-vms/azurepolicy.rules.json	276
policyDefinitions/Compute/deploy-vm-auto-shutdown/azurepolicy.json	157
policyDefinitions/Compute/deploy-vm-auto-shutdown/azurepolicy.parameters.json	49
policyDefinitions/Compute/deploy-vm-auto-shutdown/azurepolicy.rules.json	95
policyDefinitions/Compute/deploy-windows-vm-app/azurepolicy.json	182
policyDefinitions/Compute/deploy-windows-vm-app/azurepolicy.parameters.json	51
policyDefinitions/Compute/deploy-windows-vm-app/azurepolicy.rules.json	102
policyDefinitions/Compute/enable-automatic-os-upgrade-on-virtual-machine-scale-sets/README.md	25
policyDefinitions/Compute/enable-automatic-os-upgrade-on-virtual-machine-scale-sets/azurepolicy.json	96
policyDefinitions/Compute/enable-automatic-os-upgrade-on-virtual-machine-scale-sets/azurepolicy.parameters.json	15
policyDefinitions/Compute/enable-automatic-os-upgrade-on-virtual-machine-scale-sets/azurepolicy.rules.json	68
policyDefinitions/Compute/enforce-hybrid-use-benefit/README.md	16
policyDefinitions/Compute/enforce-hybrid-use-benefit/azurepolicy.json	134
policyDefinitions/Compute/enforce-hybrid-use-benefit/azurepolicy.parameters.json	15
policyDefinitions/Compute/enforce-hybrid-use-benefit/azurepolicy.rules.json	106
policyDefinitions/Compute/enforce-redhat-hybrid-use-benefit/README.md	16
policyDefinitions/Compute/enforce-redhat-hybrid-use-benefit/azurepolicy.json	88
policyDefinitions/Compute/enforce-redhat-hybrid-use-benefit/azurepolicy.parameters.json	15
policyDefinitions/Compute/enforce-redhat-hybrid-use-benefit/azurepolicy.rules.json	60
policyDefinitions/Compute/not-allowed-vm-extensions/README.md	16
policyDefinitions/Compute/not-allowed-vm-extensions/azurepolicy.json	64
policyDefinitions/Compute/not-allowed-vm-extensions/azurepolicy.parameters.json	22
policyDefinitions/Compute/not-allowed-vm-extensions/azurepolicy.rules.json	29
policyDefinitions/Compute/only-allow-a-certain-vm-platform-image/README.md	16
policyDefinitions/Compute/only-allow-a-certain-vm-platform-image/azurepolicy.json	69
policyDefinitions/Compute/only-allow-a-certain-vm-platform-image/azurepolicy.parameters.json	15
policyDefinitions/Compute/only-allow-a-certain-vm-platform-image/azurepolicy.rules.json	41
policyDefinitions/Compute/only-allow-images-from-certain-image-publishers-to-be-deployed/README.md	50
policyDefinitions/Compute/only-allow-images-from-certain-image-publishers-to-be-deployed/azurepolicy.json	57
policyDefinitions/Compute/only-allow-images-from-certain-image-publishers-to-be-deployed/azurepolicy.parameters.json	22
policyDefinitions/Compute/only-allow-images-from-certain-image-publishers-to-be-deployed/azurepolicy.rules.json	22
policyDefinitions/Compute/only-approved-vmss-extensions-should-be-installed/azurepolicy.json	71
policyDefinitions/Compute/only-approved-vmss-extensions-should-be-installed/azurepolicy.parameters.json	22
policyDefinitions/Compute/only-approved-vmss-extensions-should-be-installed/azurepolicy.rules.json	33
policyDefinitions/Compute/prevent-deployment-of-windows-vm-or-vmss-without-byol/azurepolicy.json	77
policyDefinitions/Compute/prevent-deployment-of-windows-vm-or-vmss-without-byol/azurepolicy.parameters.json	15
policyDefinitions/Compute/prevent-deployment-of-windows-vm-or-vmss-without-byol/azurepolicy.rules.json	49
policyDefinitions/Compute/vm-use-allowed-images/azurepolicy.json	138
policyDefinitions/Compute/vm-use-allowed-images/azurepolicy.parameters.json	47
policyDefinitions/Compute/vm-use-allowed-images/azurepolicy.rules.json	75
policyDefinitions/Compute/vmaccess-virtual-machine-extension-for-linux/README.md	19
policyDefinitions/Compute/vmaccess-virtual-machine-extension-for-linux/azurepolicy.json	45
policyDefinitions/Compute/vmaccess-virtual-machine-extension-for-linux/azurepolicy.parameters.json	15
policyDefinitions/Compute/vmaccess-virtual-machine-extension-for-linux/azurepolicy.rules.json	17
policyDefinitions/Container Registry/container-registries-enable-retention-policy/azurepolicy.json	48
policyDefinitions/Container Registry/container-registries-enable-retention-policy/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-enable-retention-policy/azurepolicy.rules.json	20
policyDefinitions/Container Registry/container-registries-enable-soft-delete-policy/azurepolicy.json	45
policyDefinitions/Container Registry/container-registries-enable-soft-delete-policy/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-enable-soft-delete-policy/azurepolicy.rules.json	17
policyDefinitions/Container Registry/container-registries-enable-trust-policy/azurepolicy.json	45
policyDefinitions/Container Registry/container-registries-enable-trust-policy/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-enable-trust-policy/azurepolicy.rules.json	17
policyDefinitions/Container Registry/container-registries-enable-zone-redundancy/azurepolicy.json	49
policyDefinitions/Container Registry/container-registries-enable-zone-redundancy/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-enable-zone-redundancy/azurepolicy.rules.json	21
policyDefinitions/Container Registry/container-registries-prevent-access-to-trusted-services/azurepolicy.json	56
policyDefinitions/Container Registry/container-registries-prevent-access-to-trusted-services/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-prevent-access-to-trusted-services/azurepolicy.rules.json	25
policyDefinitions/Container Registry/container-registries-prevent-managed-identity/azurepolicy.json	48
policyDefinitions/Container Registry/container-registries-prevent-managed-identity/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/container-registries-prevent-managed-identity/azurepolicy.rules.json	17
policyDefinitions/Container Registry/enforce-admin-user-is-disabled-on-all-container-registry-instances/README.md	16
policyDefinitions/Container Registry/enforce-admin-user-is-disabled-on-all-container-registry-instances/azurepolicy.json	45
policyDefinitions/Container Registry/enforce-admin-user-is-disabled-on-all-container-registry-instances/azurepolicy.parameters.json	15
policyDefinitions/Container Registry/enforce-admin-user-is-disabled-on-all-container-registry-instances/azurepolicy.rules.json	17
policyDefinitions/Cosmos DB/audit-automatic-failover-for-azure-cosmos-db/azurepolicy.json	44
policyDefinitions/Cosmos DB/audit-automatic-failover-for-azure-cosmos-db/azurepolicy.parameters.json	14
policyDefinitions/Cosmos DB/audit-automatic-failover-for-azure-cosmos-db/azurepolicy.rules.json	17
policyDefinitions/Cosmos DB/audit-automatic-failover-for-cosmosdb-accounts/README.md	16
policyDefinitions/Cosmos DB/audit-automatic-failover-for-cosmosdb-accounts/azurepolicy.json	48
policyDefinitions/Cosmos DB/audit-automatic-failover-for-cosmosdb-accounts/azurepolicy.parameters.json	14
policyDefinitions/Cosmos DB/audit-automatic-failover-for-cosmosdb-accounts/azurepolicy.rules.json	21
policyDefinitions/Cosmos DB/audit-cosmos-db-throughput-exceeding-max/README.md	49
policyDefinitions/Cosmos DB/audit-cosmos-db-throughput-exceeding-max/azurepolicy.json	151
policyDefinitions/Cosmos DB/audit-cosmos-db-throughput-exceeding-max/azurepolicy.parameters.json	21
policyDefinitions/Cosmos DB/audit-cosmos-db-throughput-exceeding-max/azurepolicy.rules.json	117
policyDefinitions/Cosmos DB/audit-geo-replication-for-azure-cosmos-db/azurepolicy.json	46
policyDefinitions/Cosmos DB/audit-geo-replication-for-azure-cosmos-db/azurepolicy.parameters.json	14
policyDefinitions/Cosmos DB/audit-geo-replication-for-azure-cosmos-db/azurepolicy.rules.json	19
policyDefinitions/Cosmos DB/audit-or-deny-cosmos-db-multiple-write-locations-not-set-as-required/README.md	66
policyDefinitions/Cosmos DB/audit-or-deny-cosmos-db-multiple-write-locations-not-set-as-required/azurepolicy.json	56
policyDefinitions/Cosmos DB/audit-or-deny-cosmos-db-multiple-write-locations-not-set-as-required/azurepolicy.parameters.json	26
policyDefinitions/Cosmos DB/audit-or-deny-cosmos-db-multiple-write-locations-not-set-as-required/azurepolicy.rules.json	17
policyDefinitions/Cosmos DB/enforce-virtual-network-filtering-on-cosmos-db-accounts/README.md	16
policyDefinitions/Cosmos DB/enforce-virtual-network-filtering-on-cosmos-db-accounts/azurepolicy.json	53
policyDefinitions/Cosmos DB/enforce-virtual-network-filtering-on-cosmos-db-accounts/azurepolicy.parameters.json	15
policyDefinitions/Cosmos DB/enforce-virtual-network-filtering-on-cosmos-db-accounts/azurepolicy.rules.json	25
policyDefinitions/Cost Optimization/unused-app-service-plans-driving-cost-should-be-avoided/README.md	16
policyDefinitions/Cost Optimization/unused-app-service-plans-driving-cost-should-be-avoided/azurepolicy.json	48
policyDefinitions/Cost Optimization/unused-app-service-plans-driving-cost-should-be-avoided/azurepolicy.parameters.json	14
policyDefinitions/Cost Optimization/unused-app-service-plans-driving-cost-should-be-avoided/azurepolicy.rules.json	21
policyDefinitions/Cost Optimization/unused-disks-driving-cost-should-be-avoided/README.md	16
policyDefinitions/Cost Optimization/unused-disks-driving-cost-should-be-avoided/azurepolicy.json	60
policyDefinitions/Cost Optimization/unused-disks-driving-cost-should-be-avoided/azurepolicy.parameters.json	14
policyDefinitions/Cost Optimization/unused-disks-driving-cost-should-be-avoided/azurepolicy.rules.json	33
policyDefinitions/Cost Optimization/unused-public-ip-addresses-driving-cost-should-be-avoided/README.md	16
policyDefinitions/Cost Optimization/unused-public-ip-addresses-driving-cost-should-be-avoided/azurepolicy.json	80
policyDefinitions/Cost Optimization/unused-public-ip-addresses-driving-cost-should-be-avoided/azurepolicy.parameters.json	14
policyDefinitions/Cost Optimization/unused-public-ip-addresses-driving-cost-should-be-avoided/azurepolicy.rules.json	53
policyDefinitions/Data Factory/deny-datafactory-identitytype/azurepolicy.json	45
policyDefinitions/Data Factory/deny-datafactory-identitytype/azurepolicy.parameters.json	15
policyDefinitions/Data Factory/deny-datafactory-identitytype/azurepolicy.rules.json	17
policyDefinitions/Data Factory/prevent-datafactory-managedssisruntime/azurepolicy.json	53
policyDefinitions/Data Factory/prevent-datafactory-managedssisruntime/azurepolicy.parameters.json	15
policyDefinitions/Data Factory/prevent-datafactory-managedssisruntime/azurepolicy.rules.json	25
policyDefinitions/Data Lake/audit-enabling-of-diagnostic-logs-in-data-lake-analytics/README.md	16
policyDefinitions/Data Lake/audit-enabling-of-diagnostic-logs-in-data-lake-analytics/azurepolicy.json	59
policyDefinitions/Data Lake/audit-enabling-of-diagnostic-logs-in-data-lake-analytics/azurepolicy.parameters.json	22
policyDefinitions/Data Lake/audit-enabling-of-diagnostic-logs-in-data-lake-analytics/azurepolicy.rules.json	24
policyDefinitions/Data Lake/enforce-encryption-on-data-lake-store-accounts/README.md	16
policyDefinitions/Data Lake/enforce-encryption-on-data-lake-store-accounts/azurepolicy.json	45
policyDefinitions/Data Lake/enforce-encryption-on-data-lake-store-accounts/azurepolicy.parameters.json	15
policyDefinitions/Data Lake/enforce-encryption-on-data-lake-store-accounts/azurepolicy.rules.json	17
policyDefinitions/Database for PostgreSQL/allowed-postgresql-skus/azurepolicy.json	48
policyDefinitions/Database for PostgreSQL/allowed-postgresql-skus/azurepolicy.parameters.json	18
policyDefinitions/Database for PostgreSQL/allowed-postgresql-skus/azurepolicy.rules.json	17
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings-v1/azurepolicy.json	90
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings-v1/azurepolicy.parameters.json	21
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings-v1/azurepolicy.rules.json	56
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings/azurepolicy.json	90
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings/azurepolicy.parameters.json	21
policyDefinitions/Database for PostgreSQL/postgresql-diagnostic-settings/azurepolicy.rules.json	56
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-enforce-ssl-connections/azurepolicy.json	44
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-enforce-ssl-connections/azurepolicy.parameters.json	14
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-enforce-ssl-connections/azurepolicy.rules.json	17
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-checkpoints/azurepolicy.json	44
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-checkpoints/azurepolicy.parameters.json	14
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-checkpoints/azurepolicy.rules.json	17
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-connections/azurepolicy.json	44
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-connections/azurepolicy.parameters.json	14
policyDefinitions/Database for PostgreSQL/postgresql-flexible-servers-should-log-connections/azurepolicy.rules.json	17
policyDefinitions/Dev Test Labs/allowed-devtestlabs-repo-url-prefix/azurepolicy.json	55
policyDefinitions/Dev Test Labs/allowed-devtestlabs-repo-url-prefix/azurepolicy.parameters.json	23
policyDefinitions/Dev Test Labs/allowed-devtestlabs-repo-url-prefix/azurepolicy.rules.json	17
policyDefinitions/Event Grid/enforce-event-grid-system-topic-handler-type-to-be-storage-account/azurepolicy.json	48
policyDefinitions/Event Grid/enforce-event-grid-system-topic-handler-type-to-be-storage-account/azurepolicy.parameters.json	15
policyDefinitions/Event Grid/enforce-event-grid-system-topic-handler-type-to-be-storage-account/azurepolicy.rules.json	17
policyDefinitions/Event Grid/enforce-event-grid-system-topic-source-type-to-be-storage-account/azurepolicy.json	48
policyDefinitions/Event Grid/enforce-event-grid-system-topic-source-type-to-be-storage-account/azurepolicy.parameters.json	15
policyDefinitions/Event Grid/enforce-event-grid-system-topic-source-type-to-be-storage-account/azurepolicy.rules.json	17
policyDefinitions/Event Hub/audit-authorization-rules-on-event-hub-namespaces/README.md	16
policyDefinitions/Event Hub/audit-authorization-rules-on-event-hub-namespaces/azurepolicy.json	44
policyDefinitions/Event Hub/audit-authorization-rules-on-event-hub-namespaces/azurepolicy.parameters.json	14
policyDefinitions/Event Hub/audit-authorization-rules-on-event-hub-namespaces/azurepolicy.rules.json	17
policyDefinitions/Event Hub/audit-existence-of-authorization-rules-on-event-hub-entities/README.md	16
policyDefinitions/Event Hub/audit-existence-of-authorization-rules-on-event-hub-entities/azurepolicy.json	39
policyDefinitions/Event Hub/audit-existence-of-authorization-rules-on-event-hub-entities/azurepolicy.parameters.json	14
policyDefinitions/Event Hub/audit-existence-of-authorization-rules-on-event-hub-entities/azurepolicy.rules.json	12
policyDefinitions/Event Hub/deny-configure-event-hubs-to-allow-only-certain-skus/azurepolicy.json	56
policyDefinitions/Event Hub/deny-configure-event-hubs-to-allow-only-certain-skus/azurepolicy.parameters.json	26
policyDefinitions/Event Hub/deny-configure-event-hubs-to-allow-only-certain-skus/azurepolicy.rules.json	17
policyDefinitions/Event Hub/deny-configure-event-hubs-to-disable-public-network-access/azurepolicy.json	45
policyDefinitions/Event Hub/deny-configure-event-hubs-to-disable-public-network-access/azurepolicy.parameters.json	15
policyDefinitions/Event Hub/deny-configure-event-hubs-to-disable-public-network-access/azurepolicy.rules.json	17
policyDefinitions/Event Hub/deny-configure-event-hubs-to-use-availability-zones/azurepolicy.json	45
policyDefinitions/Event Hub/deny-configure-event-hubs-to-use-availability-zones/azurepolicy.parameters.json	15
policyDefinitions/Event Hub/deny-configure-event-hubs-to-use-availability-zones/azurepolicy.rules.json	17
policyDefinitions/Event Hub/event-hub-firewall-should-only-allow-certain-ips/README.md	25
policyDefinitions/Event Hub/event-hub-firewall-should-only-allow-certain-ips/azurepolicy.json	63
policyDefinitions/Event Hub/event-hub-firewall-should-only-allow-certain-ips/azurepolicy.parameters.json	23
policyDefinitions/Event Hub/event-hub-firewall-should-only-allow-certain-ips/azurepolicy.rules.json	27
policyDefinitions/Event Hub/event-hub-namespaces-should-have-the-specified-minimum-tls-version/README.md	25
policyDefinitions/Event Hub/event-hub-namespaces-should-have-the-specified-minimum-tls-version/azurepolicy.json	68
policyDefinitions/Event Hub/event-hub-namespaces-should-have-the-specified-minimum-tls-version/azurepolicy.parameters.json	28
policyDefinitions/Event Hub/event-hub-namespaces-should-have-the-specified-minimum-tls-version/azurepolicy.rules.json	25
policyDefinitions/General/allowed-nc-for-allowed-locations-for-rgs/README.md	3
policyDefinitions/General/allowed-nc-for-allowed-locations-for-rgs/azurepolicy.json	162
policyDefinitions/General/allowed-nc-for-allowed-locations-for-rgs/azurepolicy.parameters.json	80
policyDefinitions/General/allowed-nc-for-allowed-locations-for-rgs/azurepolicy.rules.json	69
policyDefinitions/General/audit-resource-locks-on-resource-groups-based-on-tags/README.md	17
policyDefinitions/General/audit-resource-locks-on-resource-groups-based-on-tags/azurepolicy.json	65
policyDefinitions/General/audit-resource-locks-on-resource-groups-based-on-tags/azurepolicy.parameters.json	28
policyDefinitions/General/audit-resource-locks-on-resource-groups-based-on-tags/azurepolicy.rules.json	24
policyDefinitions/General/deny-fabric-capacity-creation/azurepolicy.json	37
policyDefinitions/General/deny-fabric-capacity-creation/azurepolicy.parameters.json	15
policyDefinitions/General/deny-fabric-capacity-creation/azurepolicy.rules.json	9
policyDefinitions/General/deploy-resource-lock-on-rgs-tag-exclusion/azurepolicy.json	94
policyDefinitions/General/deploy-resource-lock-on-rgs-tag-exclusion/azurepolicy.parameters.json	31
policyDefinitions/General/deploy-resource-lock-on-rgs-tag-exclusion/azurepolicy.rules.json	50
policyDefinitions/General/match-multiple-name-patterns/README.md	16
policyDefinitions/General/match-multiple-name-patterns/azurepolicy.json	49
policyDefinitions/General/match-multiple-name-patterns/azurepolicy.parameters.json	15
policyDefinitions/General/match-multiple-name-patterns/azurepolicy.rules.json	21
policyDefinitions/General/name-pattern-with-like-condition/README.md	16
policyDefinitions/General/name-pattern-with-like-condition/azurepolicy.json	45
policyDefinitions/General/name-pattern-with-like-condition/azurepolicy.parameters.json	21
policyDefinitions/General/name-pattern-with-like-condition/azurepolicy.rules.json	11
policyDefinitions/General/name-pattern-with-match-condition/README.md	16
policyDefinitions/General/name-pattern-with-match-condition/azurepolicy.json	45
policyDefinitions/General/name-pattern-with-match-condition/azurepolicy.parameters.json	21
policyDefinitions/General/name-pattern-with-match-condition/azurepolicy.rules.json	11
policyDefinitions/General/require-resource-location-match-resourcegroup/README.md	16
policyDefinitions/General/require-resource-location-match-resourcegroup/azurepolicy.json	49
policyDefinitions/General/require-resource-location-match-resourcegroup/azurepolicy.parameters.json	15
policyDefinitions/General/require-resource-location-match-resourcegroup/azurepolicy.rules.json	21
policyDefinitions/General/resource-name-contains-resource-group-name/README.md	22
policyDefinitions/General/resource-name-contains-resource-group-name/azurepolicy.json	37
policyDefinitions/General/resource-name-contains-resource-group-name/azurepolicy.parameters.json	15
policyDefinitions/General/resource-name-contains-resource-group-name/azurepolicy.rules.json	9
policyDefinitions/General/use-match-condition-on-tag-value/README.md	16
policyDefinitions/General/use-match-condition-on-tag-value/azurepolicy.json	39
policyDefinitions/General/use-match-condition-on-tag-value/azurepolicy.parameters.json	15
policyDefinitions/General/use-match-condition-on-tag-value/azurepolicy.rules.json	11
policyDefinitions/Key Vault/audit-if-key-vault-has-no-virtual-network-rules/README.md	16
policyDefinitions/Key Vault/audit-if-key-vault-has-no-virtual-network-rules/azurepolicy.json	56
policyDefinitions/Key Vault/audit-if-key-vault-has-no-virtual-network-rules/azurepolicy.parameters.json	14
policyDefinitions/Key Vault/audit-if-key-vault-has-no-virtual-network-rules/azurepolicy.rules.json	29
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-assigned-to-the-key-vault-data-plane/README.md	23
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-assigned-to-the-key-vault-data-plane/azurepolicy.json	53
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-assigned-to-the-key-vault-data-plane/azurepolicy.parameters.json	21
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-assigned-to-the-key-vault-data-plane/azurepolicy.rules.json	19
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-not-assigned-to-the-key-vault-data-plane/README.md	23
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-not-assigned-to-the-key-vault-data-plane/azurepolicy.json	51
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-not-assigned-to-the-key-vault-data-plane/azurepolicy.parameters.json	21
policyDefinitions/Key Vault/audit-when-a-given-service-principal-is-not-assigned-to-the-key-vault-data-plane/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deny-creation-of-access-policies-with-certificate-authorities-roles/azurepolicy.json	62
policyDefinitions/Key Vault/deny-creation-of-access-policies-with-certificate-authorities-roles/azurepolicy.parameters.json	29
policyDefinitions/Key Vault/deny-creation-of-access-policies-with-certificate-authorities-roles/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deny-deployment-with-access-to-specific-services-vm,-arm,-ade/azurepolicy.json	60
policyDefinitions/Key Vault/deny-deployment-with-access-to-specific-services-vm,-arm,-ade/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/deny-deployment-with-access-to-specific-services-vm,-arm,-ade/azurepolicy.rules.json	29
policyDefinitions/Key Vault/deny-deployment-with-azure-rbac-enabled/azurepolicy.json	48
policyDefinitions/Key Vault/deny-deployment-with-azure-rbac-enabled/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/deny-deployment-with-azure-rbac-enabled/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deny-kv-resourceaccess-arm-template-deployment/azurepolicy.json	45
policyDefinitions/Key Vault/deny-kv-resourceaccess-arm-template-deployment/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/deny-kv-resourceaccess-arm-template-deployment/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deny-kv-resourceaccess-disk-encryption/azurepolicy.json	45
policyDefinitions/Key Vault/deny-kv-resourceaccess-disk-encryption/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/deny-kv-resourceaccess-disk-encryption/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deny-kv-resourceaccess-virtual-machine-deployment/azurepolicy.json	45
policyDefinitions/Key Vault/deny-kv-resourceaccess-virtual-machine-deployment/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/deny-kv-resourceaccess-virtual-machine-deployment/azurepolicy.rules.json	17
policyDefinitions/Key Vault/deploy-diagnostic-setting-for-key-vault-to-stream-to-event-hub/README.md	16
policyDefinitions/Key Vault/deploy-diagnostic-setting-for-key-vault-to-stream-to-event-hub/azurepolicy.json	123
policyDefinitions/Key Vault/deploy-diagnostic-setting-for-key-vault-to-stream-to-event-hub/azurepolicy.parameters.json	27
policyDefinitions/Key Vault/deploy-diagnostic-setting-for-key-vault-to-stream-to-event-hub/azurepolicy.rules.json	83
policyDefinitions/Key Vault/enable-soft-delete-and-purge-protection-on-key-vaults/README.md	16
policyDefinitions/Key Vault/enable-soft-delete-and-purge-protection-on-key-vaults/azurepolicy.json	79
policyDefinitions/Key Vault/enable-soft-delete-and-purge-protection-on-key-vaults/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/enable-soft-delete-and-purge-protection-on-key-vaults/azurepolicy.rules.json	101
policyDefinitions/Key Vault/enforce-key-vault-firewall-blocking-public-access/azurepolicy.json	72
policyDefinitions/Key Vault/enforce-key-vault-firewall-blocking-public-access/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/enforce-key-vault-firewall-blocking-public-access/azurepolicy.rules.json	41
policyDefinitions/Key Vault/enforce-key-vault-premium-sku/azurepolicy.json	48
policyDefinitions/Key Vault/enforce-key-vault-premium-sku/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/enforce-key-vault-premium-sku/azurepolicy.rules.json	17
policyDefinitions/Key Vault/key-vault-diagnostic-settings-aine/azurepolicy.json	139
policyDefinitions/Key Vault/key-vault-diagnostic-settings-aine/azurepolicy.parameters.json	50
policyDefinitions/Key Vault/key-vault-diagnostic-settings-aine/azurepolicy.rules.json	76
policyDefinitions/Key Vault/key-vault-diagnostic-settings-dine/azurepolicy.json	227
policyDefinitions/Key Vault/key-vault-diagnostic-settings-dine/azurepolicy.parameters.json	51
policyDefinitions/Key Vault/key-vault-diagnostic-settings-dine/azurepolicy.rules.json	163
policyDefinitions/Key Vault/key-vault-firewall-settings-audit/azurepolicy.json	71
policyDefinitions/Key Vault/key-vault-firewall-settings-audit/azurepolicy.parameters.json	21
policyDefinitions/Key Vault/key-vault-firewall-settings-audit/azurepolicy.rules.json	37
policyDefinitions/Key Vault/key-vault-firewall-settings-deny/azurepolicy.json	72
policyDefinitions/Key Vault/key-vault-firewall-settings-deny/azurepolicy.parameters.json	22
policyDefinitions/Key Vault/key-vault-firewall-settings-deny/azurepolicy.rules.json	37
policyDefinitions/Key Vault/key-vault-sku-setting-audit/azurepolicy.json	52
policyDefinitions/Key Vault/key-vault-sku-setting-audit/azurepolicy.parameters.json	22
policyDefinitions/Key Vault/key-vault-sku-setting-audit/azurepolicy.rules.json	17
policyDefinitions/Key Vault/key-vault-sku-setting-deny/azurepolicy.json	53
policyDefinitions/Key Vault/key-vault-sku-setting-deny/azurepolicy.parameters.json	23
policyDefinitions/Key Vault/key-vault-sku-setting-deny/azurepolicy.rules.json	17
policyDefinitions/Key Vault/prevent-key-vault-access-to-trusted-services/azurepolicy.json	48
policyDefinitions/Key Vault/prevent-key-vault-access-to-trusted-services/azurepolicy.parameters.json	15
policyDefinitions/Key Vault/prevent-key-vault-access-to-trusted-services/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/aks-prevent-load-balancer-profile/azurepolicy.json	48
policyDefinitions/Kubernetes/aks-prevent-load-balancer-profile/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/aks-prevent-load-balancer-profile/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/aks-prevent-node-public-ip/azurepolicy.json	62
policyDefinitions/Kubernetes/aks-prevent-node-public-ip/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/aks-prevent-node-public-ip/azurepolicy.rules.json	31
policyDefinitions/Kubernetes/allowed-external-ips/azurepolicy.json	71
policyDefinitions/Kubernetes/allowed-external-ips/azurepolicy.parameters.json	35
policyDefinitions/Kubernetes/allowed-external-ips/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/allowed-external-ips/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/allowed-host-paths/azurepolicy.json	106
policyDefinitions/Kubernetes/allowed-host-paths/azurepolicy.parameters.json	70
policyDefinitions/Kubernetes/allowed-host-paths/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/allowed-host-paths/examples-good/azurepolicy.assignment.parameters.json	11
policyDefinitions/Kubernetes/allowed-proc-mount-types/azurepolicy.json	75
policyDefinitions/Kubernetes/allowed-proc-mount-types/azurepolicy.parameters.json	39
policyDefinitions/Kubernetes/allowed-proc-mount-types/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/allowed-proc-mount-types/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/allowed-seccomp-profiles/azurepolicy.json	71
policyDefinitions/Kubernetes/allowed-seccomp-profiles/azurepolicy.parameters.json	35
policyDefinitions/Kubernetes/allowed-seccomp-profiles/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/allowed-seccomp-profiles/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/allowed-users/azurepolicy.json	206
policyDefinitions/Kubernetes/allowed-users/azurepolicy.parameters.json	163
policyDefinitions/Kubernetes/allowed-users/azurepolicy.rules.json	28
policyDefinitions/Kubernetes/allowed-users/examples-good/azurepolicy.assignment.parameters.json	33
policyDefinitions/Kubernetes/allowed-volume-types/azurepolicy.json	71
policyDefinitions/Kubernetes/allowed-volume-types/azurepolicy.parameters.json	34
policyDefinitions/Kubernetes/allowed-volume-types/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/allowed-volume-types/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/append-aks-api-ip-restrictions/README.md	16
policyDefinitions/Kubernetes/append-aks-api-ip-restrictions/azurepolicy.json	74
policyDefinitions/Kubernetes/append-aks-api-ip-restrictions/azurepolicy.parameters.json	18
policyDefinitions/Kubernetes/append-aks-api-ip-restrictions/azurepolicy.rules.json	43
policyDefinitions/Kubernetes/block-usage-of-the-default-namespace-in-a-kubernetes-cluster/azurepolicy.json	61
policyDefinitions/Kubernetes/block-usage-of-the-default-namespace-in-a-kubernetes-cluster/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/block-usage-of-the-default-namespace-in-a-kubernetes-cluster/azurepolicy.rules.json	20
policyDefinitions/Kubernetes/container-allowed-capabilities/azurepolicy.json	80
policyDefinitions/Kubernetes/container-allowed-capabilities/azurepolicy.parameters.json	43
policyDefinitions/Kubernetes/container-allowed-capabilities/azurepolicy.rules.json	22
policyDefinitions/Kubernetes/container-allowed-capabilities/examples-good/azurepolicy.assignment.parameters.json	7
policyDefinitions/Kubernetes/container-disallowed-capabilities/azurepolicy.json	71
policyDefinitions/Kubernetes/container-disallowed-capabilities/azurepolicy.parameters.json	35
policyDefinitions/Kubernetes/container-disallowed-capabilities/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/container-disallowed-capabilities/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/do-not-allow-container-privilege-escalation-in-kubernetes-cluster/azurepolicy.json	61
policyDefinitions/Kubernetes/do-not-allow-container-privilege-escalation-in-kubernetes-cluster/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/do-not-allow-container-privilege-escalation-in-kubernetes-cluster/azurepolicy.rules.json	20
policyDefinitions/Kubernetes/do-not-allow-sharing-of-host-process-id-and-ipc-namespaces-in-a-kubernetes-cluster/azurepolicy.json	61
policyDefinitions/Kubernetes/do-not-allow-sharing-of-host-process-id-and-ipc-namespaces-in-a-kubernetes-cluster/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/do-not-allow-sharing-of-host-process-id-and-ipc-namespaces-in-a-kubernetes-cluster/azurepolicy.rules.json	20
policyDefinitions/Kubernetes/enforce-aks-aad-support/azurepolicy.json	48
policyDefinitions/Kubernetes/enforce-aks-aad-support/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/enforce-aks-aad-support/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/enforce-aks-network-plugin/azurepolicy.json	56
policyDefinitions/Kubernetes/enforce-aks-network-plugin/azurepolicy.parameters.json	23
policyDefinitions/Kubernetes/enforce-aks-network-plugin/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/enforce-aks-outbound-type/azurepolicy.json	60
policyDefinitions/Kubernetes/enforce-aks-outbound-type/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/enforce-aks-outbound-type/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/enforce-apparmor-profile/azurepolicy.json	70
policyDefinitions/Kubernetes/enforce-apparmor-profile/azurepolicy.parameters.json	34
policyDefinitions/Kubernetes/enforce-apparmor-profile/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/enforce-apparmor-profile/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pool-profiles/azurepolicy.json	45
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pool-profiles/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pool-profiles/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pools/azurepolicy.json	45
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pools/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/ensure-ephemeral-disks-are-used-for-os-disks-on-agent-pools/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/ensure-read-only-access-to-root-filesystem-in-a-kubernetes-cluster/azurepolicy.json	61
policyDefinitions/Kubernetes/ensure-read-only-access-to-root-filesystem-in-a-kubernetes-cluster/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/ensure-read-only-access-to-root-filesystem-in-a-kubernetes-cluster/azurepolicy.rules.json	20
policyDefinitions/Kubernetes/ensure-the-aks-cluster-is-not-using-the-free-tier-sku/azurepolicy.json	45
policyDefinitions/Kubernetes/ensure-the-aks-cluster-is-not-using-the-free-tier-sku/azurepolicy.parameters.json	15
policyDefinitions/Kubernetes/ensure-the-aks-cluster-is-not-using-the-free-tier-sku/azurepolicy.rules.json	17
policyDefinitions/Kubernetes/flexvolume-drivers/azurepolicy.json	67
policyDefinitions/Kubernetes/flexvolume-drivers/azurepolicy.parameters.json	35
policyDefinitions/Kubernetes/flexvolume-drivers/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/flexvolume-drivers/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/forbidden-sysctl-interfaces/azurepolicy.json	70
policyDefinitions/Kubernetes/forbidden-sysctl-interfaces/azurepolicy.parameters.json	34
policyDefinitions/Kubernetes/forbidden-sysctl-interfaces/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/forbidden-sysctl-interfaces/examples-good/azurepolicy.assignment.parameters.json	6
policyDefinitions/Kubernetes/host-network-ports/azurepolicy.json	89
policyDefinitions/Kubernetes/host-network-ports/azurepolicy.parameters.json	51
policyDefinitions/Kubernetes/host-network-ports/azurepolicy.rules.json	23
policyDefinitions/Kubernetes/host-network-ports/examples-good/azurepolicy.assignment.parameters.json	8
policyDefinitions/Kubernetes/kubernetes-clusters-should-disable-automounting-api-credentials/azurepolicy.json	61
policyDefinitions/Kubernetes/kubernetes-clusters-should-disable-automounting-api-credentials/azurepolicy.parameters.json	27
policyDefinitions/Kubernetes/kubernetes-clusters-should-disable-automounting-api-credentials/azurepolicy.rules.json	20
policyDefinitions/Kubernetes/selinux/azurepolicy.json	99
policyDefinitions/Kubernetes/selinux/azurepolicy.parameters.json	64
policyDefinitions/Kubernetes/selinux/azurepolicy.rules.json	21
policyDefinitions/Kubernetes/selinux/examples-good/azurepolicy.assignment.parameters.json	13
policyDefinitions/Logic Apps/audit-enabling-of-diagnostic-logs-in-logic-apps/README.md	16
policyDefinitions/Logic Apps/audit-enabling-of-diagnostic-logs-in-logic-apps/azurepolicy.json	59
policyDefinitions/Logic Apps/audit-enabling-of-diagnostic-logs-in-logic-apps/azurepolicy.parameters.json	22
policyDefinitions/Logic Apps/audit-enabling-of-diagnostic-logs-in-logic-apps/azurepolicy.rules.json	24
policyDefinitions/Managed Identity/add-user-assigned-managed-identity-to-virtual-machines/azurepolicy.json	84
policyDefinitions/Managed Identity/add-user-assigned-managed-identity-to-virtual-machines/azurepolicy.parameters.json	23
policyDefinitions/Managed Identity/add-user-assigned-managed-identity-to-virtual-machines/azurepolicy.rules.json	48
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machine-scale-set/azurepolicy.json	407
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machine-scale-set/azurepolicy.parameters.json	58
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machine-scale-set/azurepolicy.rules.json	336
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machines/azurepolicy.json	407
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machines/azurepolicy.parameters.json	58
policyDefinitions/Managed Identity/assign-cross-subscription-user-assigned-managed-identity-to-virtual-machines/azurepolicy.rules.json	336
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Blob Services to Event Hub/azurepolicy.json	265
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Blob Services to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Blob Services to Event Hub/azurepolicy.rules.json	176
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for File Services to Event Hub/azurepolicy.json	265
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for File Services to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for File Services to Event Hub/azurepolicy.rules.json	176
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Queue Services to Event Hub/azurepolicy.json	265
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Queue Services to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Queue Services to Event Hub/azurepolicy.rules.json	176
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Storage Accounts to Event Hub/azurepolicy.json	229
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Storage Accounts to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Storage Accounts to Event Hub/azurepolicy.rules.json	152
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Table Services to Event Hub/azurepolicy.json	265
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Table Services to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Configure diagnostic settings for Table Services to Event Hub/azurepolicy.rules.json	176
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Application Group to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Application Group to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Application Group to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Host Pool to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Host Pool to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Host Pool to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Scaling Plan to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Scaling Plan to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Scaling Plan to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Workspace to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Workspace to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for AVD Workspace to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Analysis Services to Event Hub/azurepolicy.json	243
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Analysis Services to Event Hub/azurepolicy.parameters.json	75
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Analysis Services to Event Hub/azurepolicy.rules.json	155
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for App Service to Event Hub/azurepolicy.json	252
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for App Service to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for App Service to Event Hub/azurepolicy.rules.json	163
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Gateway to Event Hub/azurepolicy.json	248
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Gateway to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Gateway to Event Hub/azurepolicy.rules.json	159
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Insights to Event Hub/azurepolicy.json	248
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Insights to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Application Insights to Event Hub/azurepolicy.rules.json	159
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Autoscale Settings to Event Hub/azurepolicy.json	247
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Autoscale Settings to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Autoscale Settings to Event Hub/azurepolicy.rules.json	158
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure API for FHIR to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure API for FHIR to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure API for FHIR to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Data Explorer Cluster to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Data Explorer Cluster to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Data Explorer Cluster to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Function App to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Function App to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Azure Function App to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Batch Account to Event Hub/azurepolicy.json	229
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Batch Account to Event Hub/azurepolicy.parameters.json	72
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Batch Account to Event Hub/azurepolicy.rules.json	144
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for CDN Endpoint to Event Hub/azurepolicy.json	202
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for CDN Endpoint to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for CDN Endpoint to Event Hub/azurepolicy.rules.json	125
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Cosmos DB to Event Hub/azurepolicy.json	311
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Cosmos DB to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Cosmos DB to Event Hub/azurepolicy.rules.json	222
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Data Factory to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Data Factory to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Data Factory to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for MySQL to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for MySQL to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for MySQL to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for PostgreSQL to Event Hub/azurepolicy.json	248
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for PostgreSQL to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Database for PostgreSQL to Event Hub/azurepolicy.rules.json	159
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Databricks to Event Hub/azurepolicy.json	202
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Databricks to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Databricks to Event Hub/azurepolicy.rules.json	125
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Dev Center to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Dev Center to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Dev Center to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid System Topic to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid System Topic to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid System Topic to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid Topic to Event Hub/azurepolicy.json	249
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid Topic to Event Hub/azurepolicy.parameters.json	77
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Event Grid Topic to Event Hub/azurepolicy.rules.json	159
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for ExpressRoute to Event Hub/azurepolicy.json	246
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for ExpressRoute to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for ExpressRoute to Event Hub/azurepolicy.rules.json	157
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Firewall to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Firewall to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Firewall to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Load Balancer to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Load Balancer to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Load Balancer to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps ISE to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps ISE to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps ISE to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps to Event Hub/azurepolicy.json	247
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Logic Apps to Event Hub/azurepolicy.rules.json	158
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Machine Learning workspace to Event Hub/azurepolicy.json	235
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Machine Learning workspace to Event Hub/azurepolicy.parameters.json	77
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Machine Learning workspace to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for MariaDB to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for MariaDB to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for MariaDB to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Network Security Groups to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Network Security Groups to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Network Security Groups to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Power BI Embedded to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Power BI Embedded to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Power BI Embedded to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Recovery Services vault to Event Hub/azurepolicy.json	278
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Recovery Services vault to Event Hub/azurepolicy.parameters.json	92
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Recovery Services vault to Event Hub/azurepolicy.rules.json	173
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Relay to Event Hub/azurepolicy.json	229
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Relay to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Relay to Event Hub/azurepolicy.rules.json	140
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for SQL Pools under Synapse Analytics to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for SQL Pools under Synapse Analytics to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for SQL Pools under Synapse Analytics to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Analytics to Event Hub/azurepolicy.json	216
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Analytics to Event Hub/azurepolicy.parameters.json	64
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Analytics to Event Hub/azurepolicy.rules.json	139
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Spark Pool to Event Hub/azurepolicy.json	247
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Spark Pool to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Synapse Spark Pool to Event Hub/azurepolicy.rules.json	158
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Time Series Insights to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Time Series Insights to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Time Series Insights to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Traffic Manager to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Traffic Manager to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Traffic Manager to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Virtual Network to Event Hub/azurepolicy.json	234
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Virtual Network to Event Hub/azurepolicy.parameters.json	76
policyDefinitions/Monitoring/To Event Hub/Deploy Diagnostic Settings for Virtual Network to Event Hub/azurepolicy.rules.json	145
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-aks-microsoft.containerservice-managedclusters-to-a-regional-event-hub/azurepolicy.json	267
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-aks-microsoft.containerservice-managedclusters-to-a-regional-event-hub/azurepolicy.parameters.json	72
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-aks-microsoft.containerservice-managedclusters-to-a-regional-event-hub/azurepolicy.rules.json	182
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-microsoft.dbforpostgresql-flexibleservers-to-a-regional-event-hub/azurepolicy.json	244
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-microsoft.dbforpostgresql-flexibleservers-to-a-regional-event-hub/azurepolicy.parameters.json	72
policyDefinitions/Monitoring/To Event Hub/apply-diagnostic-settings-for-microsoft.dbforpostgresql-flexibleservers-to-a-regional-event-hub/azurepolicy.rules.json	159
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-log-analytics-workspace/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-log-analytics-workspace/azurepolicy.json	198
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-log-analytics-workspace/azurepolicy.parameters.json	62
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-log-analytics-workspace/azurepolicy.rules.json	123
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-regional-event-hub/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-regional-event-hub/azurepolicy.json	211
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-regional-event-hub/azurepolicy.parameters.json	68
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-key-vault-to-a-regional-event-hub/azurepolicy.rules.json	130
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-log-analytics-workspace/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-log-analytics-workspace/azurepolicy.json	198
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-log-analytics-workspace/azurepolicy.parameters.json	62
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-log-analytics-workspace/azurepolicy.rules.json	123
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-regional-event-hub/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-regional-event-hub/azurepolicy.json	211
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-regional-event-hub/azurepolicy.parameters.json	68
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-public-ipaddresses-to-a-regional-event-hub/azurepolicy.rules.json	130
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-log-analytics-workspace/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-log-analytics-workspace/azurepolicy.json	230
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-log-analytics-workspace/azurepolicy.parameters.json	62
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-log-analytics-workspace/azurepolicy.rules.json	155
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-regional-event-hub/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-regional-event-hub/azurepolicy.json	255
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-regional-event-hub/azurepolicy.parameters.json	72
policyDefinitions/Monitoring/apply-diagnostic-settings-for-azure-sql-to-a-regional-event-hub/azurepolicy.rules.json	170
policyDefinitions/Monitoring/apply-diagnostic-settings-for-network-security-groups/README.md	16
policyDefinitions/Monitoring/apply-diagnostic-settings-for-network-security-groups/azurepolicy.json	191
policyDefinitions/Monitoring/apply-diagnostic-settings-for-network-security-groups/azurepolicy.parameters.json	29
policyDefinitions/Monitoring/apply-diagnostic-settings-for-network-security-groups/azurepolicy.rules.json	149
policyDefinitions/Monitoring/audit-configuration-of-metric-alert-rules-on-batch-accounts/README.md	16
policyDefinitions/Monitoring/audit-configuration-of-metric-alert-rules-on-batch-accounts/azurepolicy.json	63
policyDefinitions/Monitoring/audit-configuration-of-metric-alert-rules-on-batch-accounts/azurepolicy.parameters.json	21
policyDefinitions/Monitoring/audit-configuration-of-metric-alert-rules-on-batch-accounts/azurepolicy.rules.json	29
policyDefinitions/Monitoring/audit-diagnostic-setting/README.md	16
policyDefinitions/Monitoring/audit-diagnostic-setting/azurepolicy.json	58
policyDefinitions/Monitoring/audit-diagnostic-setting/azurepolicy.parameters.json	21
policyDefinitions/Monitoring/audit-diagnostic-setting/azurepolicy.rules.json	24
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.json	59
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.parameters.json	26
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.rules.json	20
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.json	59
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.parameters.json	26
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.rules.json	20
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.json	59
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.parameters.json	26
policyDefinitions/Monitoring/audit-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.rules.json	20
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-app-services/README.md	16
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-app-services/azurepolicy.json	60
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-app-services/azurepolicy.parameters.json	14
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-app-services/azurepolicy.rules.json	33
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-event-hub/README.md	16
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-event-hub/azurepolicy.json	59
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-event-hub/azurepolicy.parameters.json	22
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-event-hub/azurepolicy.rules.json	24
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-key-vault/README.md	16
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-key-vault/azurepolicy.json	59
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-key-vault/azurepolicy.parameters.json	22
policyDefinitions/Monitoring/audit-enabling-of-diagnostic-logs-in-key-vault/azurepolicy.rules.json	24
policyDefinitions/Monitoring/configure-ama-on-linux-vm-with-cross-subscription-uami/azurepolicy.json	584
policyDefinitions/Monitoring/configure-ama-on-linux-vm-with-cross-subscription-uami/azurepolicy.parameters.json	124
policyDefinitions/Monitoring/configure-ama-on-linux-vm-with-cross-subscription-uami/azurepolicy.rules.json	447
policyDefinitions/Monitoring/configure-ama-on-linux-vmss-with-cross-subscription-uami/azurepolicy.json	584
policyDefinitions/Monitoring/configure-ama-on-linux-vmss-with-cross-subscription-uami/azurepolicy.parameters.json	124
policyDefinitions/Monitoring/configure-ama-on-linux-vmss-with-cross-subscription-uami/azurepolicy.rules.json	447
policyDefinitions/Monitoring/configure-ama-on-windows-vm-with-cross-subscription-uami/azurepolicy.json	435
policyDefinitions/Monitoring/configure-ama-on-windows-vm-with-cross-subscription-uami/azurepolicy.parameters.json	124
policyDefinitions/Monitoring/configure-ama-on-windows-vm-with-cross-subscription-uami/azurepolicy.rules.json	298
policyDefinitions/Monitoring/configure-ama-on-windows-vmss-with-cross-subscription-uami/azurepolicy.json	435
policyDefinitions/Monitoring/configure-ama-on-windows-vmss-with-cross-subscription-uami/azurepolicy.parameters.json	124
policyDefinitions/Monitoring/configure-ama-on-windows-vmss-with-cross-subscription-uami/azurepolicy.rules.json	298
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub-v2/azurepolicy.json	414
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub-v2/azurepolicy.parameters.json	136
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub-v2/azurepolicy.rules.json	265
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub/azurepolicy.json	199
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub/azurepolicy.parameters.json	51
policyDefinitions/Monitoring/configure-azure-activity-logs-to-stream-to-specified-event-hub/azurepolicy.rules.json	135
policyDefinitions/Monitoring/configure-diagnostic-settings-for-storage-accounts-to-event-hub/azurepolicy.json	408
policyDefinitions/Monitoring/configure-diagnostic-settings-for-storage-accounts-to-event-hub/azurepolicy.parameters.json	110
policyDefinitions/Monitoring/configure-diagnostic-settings-for-storage-accounts-to-event-hub/azurepolicy.rules.json	285
policyDefinitions/Monitoring/deny-change-of-retention-days-in-log-analytics-workspace/azurepolicy.json	53
policyDefinitions/Monitoring/deny-change-of-retention-days-in-log-analytics-workspace/azurepolicy.parameters.json	22
policyDefinitions/Monitoring/deny-change-of-retention-days-in-log-analytics-workspace/azurepolicy.rules.json	17
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-assingments/azurepolicy.json	182
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-assingments/azurepolicy.parameters.json	36
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-assingments/azurepolicy.rules.json	133
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-definitions/azurepolicy.json	182
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-definitions/azurepolicy.parameters.json	36
policyDefinitions/Monitoring/deploy-activity-log-alert-to-detect-crud-against-policy-definitions/azurepolicy.rules.json	133
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-event-hub/azurepolicy.json	150
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-event-hub/azurepolicy.parameters.json	32
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-event-hub/azurepolicy.rules.json	105
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-log-analytics-workspace/azurepolicy.json	150
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-log-analytics-workspace/azurepolicy.parameters.json	32
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-log-analytics-workspace/azurepolicy.rules.json	105
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-storage-account/azurepolicy.json	140
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-storage-account/azurepolicy.parameters.json	41
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-activity-log-to-storage-account/azurepolicy.rules.json	86
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-app-service-to-log-analytics-workspace/azurepolicy.json	309
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-app-service-to-log-analytics-workspace/azurepolicy.parameters.json	128
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-app-service-to-log-analytics-workspace/azurepolicy.rules.json	168
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-application-insights-to-log-analytics-workspace/azurepolicy.json	186
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-application-insights-to-log-analytics-workspace/azurepolicy.parameters.json	55
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-application-insights-to-log-analytics-workspace/azurepolicy.rules.json	118
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-autoscale-settings-to-log-analytics-workspace/azurepolicy.json	185
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-autoscale-settings-to-log-analytics-workspace/azurepolicy.parameters.json	55
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-autoscale-settings-to-log-analytics-workspace/azurepolicy.rules.json	117
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage,-including-blobs,-files,-tables,-and-queues-to-a-log-analytics-workspace/README.md	33
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage,-including-blobs,-files,-tables,-and-queues-to-a-log-analytics-workspace/azurepolicy.json	396
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage,-including-blobs,-files,-tables,-and-queues-to-a-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage,-including-blobs,-files,-tables,-and-queues-to-a-log-analytics-workspace/azurepolicy.rules.json	327
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-blobs-to-log-analytics-workspace/README.md	27
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-blobs-to-log-analytics-workspace/azurepolicy.json	205
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-blobs-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-blobs-to-log-analytics-workspace/azurepolicy.rules.json	136
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-files-to-log-analytics-workspace/README.md	27
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-files-to-log-analytics-workspace/azurepolicy.json	205
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-files-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-files-to-log-analytics-workspace/azurepolicy.rules.json	136
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-queues-to-log-analytics-workspace/README.md	27
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-queues-to-log-analytics-workspace/azurepolicy.json	205
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-queues-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-queues-to-log-analytics-workspace/azurepolicy.rules.json	136
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-tables-to-log-analytics-workspace/README.md	27
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-tables-to-log-analytics-workspace/azurepolicy.json	205
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-tables-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-tables-to-log-analytics-workspace/azurepolicy.rules.json	136
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-to-log-analytics-workspace/README.md	27
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-to-log-analytics-workspace/azurepolicy.json	180
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-azure-storage-to-log-analytics-workspace/azurepolicy.rules.json	111
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-dev-centers-to-log-analytics-workspace/azurepolicy.json	153
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-dev-centers-to-log-analytics-workspace/azurepolicy.parameters.json	43
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-dev-centers-to-log-analytics-workspace/azurepolicy.rules.json	97
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-expressroute-connection-to-log-analytics-workspace/azurepolicy.json	161
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-expressroute-connection-to-log-analytics-workspace/azurepolicy.parameters.json	43
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-expressroute-connection-to-log-analytics-workspace/azurepolicy.rules.json	105
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-sql-pool-under-synapse-analytics-to-log-analytics-workspace/azurepolicy.json	186
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-sql-pool-under-synapse-analytics-to-log-analytics-workspace/azurepolicy.parameters.json	55
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-sql-pool-under-synapse-analytics-to-log-analytics-workspace/azurepolicy.rules.json	118
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-blob-services-to-log-analytics-workspace/azurepolicy.json	199
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-blob-services-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-blob-services-to-log-analytics-workspace/azurepolicy.rules.json	130
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-file-services-to-log-analytics-workspace/azurepolicy.json	199
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-file-services-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-file-services-to-log-analytics-workspace/azurepolicy.rules.json	130
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-queue-services-to-log-analytics-workspace/azurepolicy.json	199
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-queue-services-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-queue-services-to-log-analytics-workspace/azurepolicy.rules.json	130
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-table-services-to-log-analytics-workspace/azurepolicy.json	199
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-table-services-to-log-analytics-workspace/azurepolicy.parameters.json	56
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-storage-table-services-to-log-analytics-workspace/azurepolicy.rules.json	130
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-log-analytics-workspace/README.md	3
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-log-analytics-workspace/azurepolicy.json	141
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-log-analytics-workspace/azurepolicy.parameters.json	31
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-log-analytics-workspace/azurepolicy.rules.json	97
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-storage-account/azurepolicy.json	141
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-storage-account/azurepolicy.parameters.json	31
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-subscription-to-storage-account/azurepolicy.rules.json	97
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-synapse-analytic-to-log-analytics-workspace/azurepolicy.json	186
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-synapse-analytic-to-log-analytics-workspace/azurepolicy.parameters.json	55
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-synapse-analytic-to-log-analytics-workspace/azurepolicy.rules.json	118
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-web-slots-to-log-analytics-workspace/azurepolicy.json	186
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-web-slots-to-log-analytics-workspace/azurepolicy.parameters.json	53
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-web-slots-to-log-analytics-workspace/azurepolicy.rules.json	120
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.json	152
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.parameters.json	43
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-application-groups-to-log-analytics-workspace/azurepolicy.rules.json	96
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.json	164
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.parameters.json	43
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-host-pools-to-log-analytics-workspace/azurepolicy.rules.json	108
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/README.md	15
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.json	156
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.parameters.json	43
policyDefinitions/Monitoring/deploy-diagnostic-settings-for-wvd-workspaces-to-log-analytics-workspace/azurepolicy.rules.json	100
policyDefinitions/Monitoring/deploy-diagnostic-settings-on-azure-kubernetes-service-and-send-to-eventhub/README.md	16
policyDefinitions/Monitoring/deploy-diagnostic-settings-on-azure-kubernetes-service-and-send-to-eventhub/azurepolicy.json	399
policyDefinitions/Monitoring/deploy-diagnostic-settings-on-azure-kubernetes-service-and-send-to-eventhub/azurepolicy.parameters.json	128
policyDefinitions/Monitoring/deploy-diagnostic-settings-on-azure-kubernetes-service-and-send-to-eventhub/azurepolicy.rules.json	258
policyDefinitions/Monitoring/deploy-linux-diagnostic-agent-to-collect-security-related-events/azurepolicy.json	178
policyDefinitions/Monitoring/deploy-linux-diagnostic-agent-to-collect-security-related-events/azurepolicy.parameters.json	24
policyDefinitions/Monitoring/deploy-linux-diagnostic-agent-to-collect-security-related-events/azurepolicy.rules.json	141
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-linux-vms/azurepolicy.json	329
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-linux-vms/azurepolicy.parameters.json	44
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-linux-vms/azurepolicy.rules.json	272
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-windows-vms/azurepolicy.json	337
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-windows-vms/azurepolicy.parameters.json	44
policyDefinitions/Monitoring/deploy-log-analytics-agent-dynamically-to-different-regions-for-windows-vms/azurepolicy.rules.json	280
policyDefinitions/Monitoring/deploy-service-health-alerts-and-corresponding-action-group-to-notifiy-of-service-health-incidents/azurepolicy.json	292
policyDefinitions/Monitoring/deploy-service-health-alerts-and-corresponding-action-group-to-notifiy-of-service-health-incidents/azurepolicy.parameters.json	53
policyDefinitions/Monitoring/deploy-service-health-alerts-and-corresponding-action-group-to-notifiy-of-service-health-incidents/azurepolicy.rules.json	226
policyDefinitions/Monitoring/deploy-sql-managed-instance-database-diagnostic-setting-storage-account/azurepolicy.json	158
policyDefinitions/Monitoring/deploy-sql-managed-instance-database-diagnostic-setting-storage-account/azurepolicy.parameters.json	29
policyDefinitions/Monitoring/deploy-sql-managed-instance-database-diagnostic-setting-storage-account/azurepolicy.rules.json	116
policyDefinitions/Monitoring/deploy-sql-managed-instance-diagnostic-setting-storage-account/azurepolicy.json	142
policyDefinitions/Monitoring/deploy-sql-managed-instance-diagnostic-setting-storage-account/azurepolicy.parameters.json	29
policyDefinitions/Monitoring/deploy-sql-managed-instance-diagnostic-setting-storage-account/azurepolicy.rules.json	100
policyDefinitions/Monitoring/deploy-windows-diagnostic-agent-to-collect-security-related-events/azurepolicy.json	187
policyDefinitions/Monitoring/deploy-windows-diagnostic-agent-to-collect-security-related-events/azurepolicy.parameters.json	24
policyDefinitions/Monitoring/deploy-windows-diagnostic-agent-to-collect-security-related-events/azurepolicy.rules.json	150
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-event-hub/azurepolicy.json	224
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-event-hub/azurepolicy.parameters.json	60
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-event-hub/azurepolicy.rules.json	151
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-log-analytics/azurepolicy.json	207
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-log-analytics/azurepolicy.parameters.json	54
policyDefinitions/Monitoring/enable-logging-by-category-group-for-notification-hubs-namespaces-to-log-analytics/azurepolicy.rules.json	140
policyDefinitions/Monitoring/log-analytics-workspace-require-daily-quota/azurepolicy.json	45
policyDefinitions/Monitoring/log-analytics-workspace-require-daily-quota/azurepolicy.parameters.json	15
policyDefinitions/Monitoring/log-analytics-workspace-require-daily-quota/azurepolicy.rules.json	17
policyDefinitions/Monitoring/log-analytics-workspace-require-retention-in-days/azurepolicy.json	53
policyDefinitions/Monitoring/log-analytics-workspace-require-retention-in-days/azurepolicy.parameters.json	23
policyDefinitions/Monitoring/log-analytics-workspace-require-retention-in-days/azurepolicy.rules.json	17
policyDefinitions/Network/address-space-must-be-pre-allocated-for-region/README.md	24
policyDefinitions/Network/address-space-must-be-pre-allocated-for-region/azurepolicy.json	126
policyDefinitions/Network/address-space-must-be-pre-allocated-for-region/azurepolicy.parameters.json	42
policyDefinitions/Network/address-space-must-be-pre-allocated-for-region/azurepolicy.rules.json	70
policyDefinitions/Network/adds-route-with-address-prefix-0.0.0.0-0-pointing-to-the-virtual-appliance-in-case-there-is-none/azurepolicy.json	79
policyDefinitions/Network/adds-route-with-address-prefix-0.0.0.0-0-pointing-to-the-virtual-appliance-in-case-there-is-none/azurepolicy.parameters.json	23
policyDefinitions/Network/adds-route-with-address-prefix-0.0.0.0-0-pointing-to-the-virtual-appliance-in-case-there-is-none/azurepolicy.rules.json	43
policyDefinitions/Network/adds-the-default-network-security-group-to-subnets-in-case-there-is-none/azurepolicy.json	66
policyDefinitions/Network/adds-the-default-network-security-group-to-subnets-in-case-there-is-none/azurepolicy.parameters.json	23
policyDefinitions/Network/adds-the-default-network-security-group-to-subnets-in-case-there-is-none/azurepolicy.rules.json	30
policyDefinitions/Network/adds-the-default-route-table-to-subnets/README.md	89
policyDefinitions/Network/adds-the-default-route-table-to-subnets/azurepolicy.json	66
policyDefinitions/Network/adds-the-default-route-table-to-subnets/azurepolicy.parameters.json	23
policyDefinitions/Network/adds-the-default-route-table-to-subnets/azurepolicy.rules.json	30
policyDefinitions/Network/allowed-application-gateway-skus/README.md	16
policyDefinitions/Network/allowed-application-gateway-skus/azurepolicy.json	54
policyDefinitions/Network/allowed-application-gateway-skus/azurepolicy.parameters.json	22
policyDefinitions/Network/allowed-application-gateway-skus/azurepolicy.rules.json	19
policyDefinitions/Network/allowed-express-route-bandwidth/README.md	16
policyDefinitions/Network/allowed-express-route-bandwidth/azurepolicy.json	54
policyDefinitions/Network/allowed-express-route-bandwidth/azurepolicy.parameters.json	22
policyDefinitions/Network/allowed-express-route-bandwidth/azurepolicy.rules.json	19
policyDefinitions/Network/allowed-express-route-skus/README.md	16
policyDefinitions/Network/allowed-express-route-skus/azurepolicy.json	54
policyDefinitions/Network/allowed-express-route-skus/azurepolicy.parameters.json	22
policyDefinitions/Network/allowed-express-route-skus/azurepolicy.rules.json	19
policyDefinitions/Network/allowed-load-balancer-skus/README.md	16
policyDefinitions/Network/allowed-load-balancer-skus/azurepolicy.json	54
policyDefinitions/Network/allowed-load-balancer-skus/azurepolicy.parameters.json	22
policyDefinitions/Network/allowed-load-balancer-skus/azurepolicy.rules.json	19
policyDefinitions/Network/allowed-peering-location-for-express-route/README.md	16
policyDefinitions/Network/allowed-peering-location-for-express-route/azurepolicy.json	55
policyDefinitions/Network/allowed-peering-location-for-express-route/azurepolicy.parameters.json	23
policyDefinitions/Network/allowed-peering-location-for-express-route/azurepolicy.rules.json	19
policyDefinitions/Network/allowed-virtual-network-gateway-skus/README.md	16
policyDefinitions/Network/allowed-virtual-network-gateway-skus/azurepolicy.json	68
policyDefinitions/Network/allowed-virtual-network-gateway-skus/azurepolicy.parameters.json	32
policyDefinitions/Network/allowed-virtual-network-gateway-skus/azurepolicy.rules.json	23
policyDefinitions/Network/allowed-vm-images-for-resource-groups-containing-a-specific-suffix/azurepolicy.json	82
policyDefinitions/Network/allowed-vm-images-for-resource-groups-containing-a-specific-suffix/azurepolicy.parameters.json	38
policyDefinitions/Network/allowed-vm-images-for-resource-groups-containing-a-specific-suffix/azurepolicy.rules.json	31
policyDefinitions/Network/app-gateway-can-only-have-a-vm's-or-vmss-in-its-backend-pool/azurepolicy.json	47
policyDefinitions/Network/app-gateway-can-only-have-a-vm's-or-vmss-in-its-backend-pool/azurepolicy.parameters.json	15
policyDefinitions/Network/app-gateway-can-only-have-a-vm's-or-vmss-in-its-backend-pool/azurepolicy.rules.json	19
policyDefinitions/Network/append-nsg-rule/azurepolicy.json	216
policyDefinitions/Network/append-nsg-rule/azurepolicy.parameters.json	86
policyDefinitions/Network/append-nsg-rule/azurepolicy.rules.json	117
policyDefinitions/Network/audit-changes-to-route-tables-udrs/azurepolicy.json	40
policyDefinitions/Network/audit-changes-to-route-tables-udrs/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-changes-to-route-tables-udrs/azurepolicy.rules.json	13
policyDefinitions/Network/audit-for-application-gateway-without-http-redirect/azurepolicy.json	55
policyDefinitions/Network/audit-for-application-gateway-without-http-redirect/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-for-application-gateway-without-http-redirect/azurepolicy.rules.json	28
policyDefinitions/Network/audit-if-network-watcher-is-not-enabled-for-region/README.md	16
policyDefinitions/Network/audit-if-network-watcher-is-not-enabled-for-region/azurepolicy.json	52
policyDefinitions/Network/audit-if-network-watcher-is-not-enabled-for-region/azurepolicy.parameters.json	22
policyDefinitions/Network/audit-if-network-watcher-is-not-enabled-for-region/azurepolicy.rules.json	17
policyDefinitions/Network/audit-loadbalancers-with-public-ip/README.md	16
policyDefinitions/Network/audit-loadbalancers-with-public-ip/azurepolicy.json	44
policyDefinitions/Network/audit-loadbalancers-with-public-ip/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-loadbalancers-with-public-ip/azurepolicy.rules.json	17
policyDefinitions/Network/audit-peering-between-two-prefixes-based-on-first-octate/azurepolicy.json	52
policyDefinitions/Network/audit-peering-between-two-prefixes-based-on-first-octate/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-peering-between-two-prefixes-based-on-first-octate/azurepolicy.rules.json	23
policyDefinitions/Network/audit-servicebus-namespaces-without-network-configuration/azurepolicy.json	44
policyDefinitions/Network/audit-servicebus-namespaces-without-network-configuration/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-servicebus-namespaces-without-network-configuration/azurepolicy.rules.json	17
policyDefinitions/Network/audit-unattached-static-public-ips/azurepolicy.json	48
policyDefinitions/Network/audit-unattached-static-public-ips/azurepolicy.parameters.json	14
policyDefinitions/Network/audit-unattached-static-public-ips/azurepolicy.rules.json	21
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-application-rules/azurepolicy.json	139
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-application-rules/azurepolicy.parameters.json	36
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-application-rules/azurepolicy.rules.json	90
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-network-rules/azurepolicy.json	114
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-network-rules/azurepolicy.parameters.json	29
policyDefinitions/Network/azure-firewall-policy-should-only-allow-user-defined-standard-ports-and-fqdns-within-network-rules/azurepolicy.rules.json	72
policyDefinitions/Network/block-nsg-creations-and-updates/azurepolicy.json	93
policyDefinitions/Network/block-nsg-creations-and-updates/azurepolicy.parameters.json	15
policyDefinitions/Network/block-nsg-creations-and-updates/azurepolicy.rules.json	65
policyDefinitions/Network/configure-private-endpoint-for-paas-services-to-use-private-dns-zones/azurepolicy.json	141
policyDefinitions/Network/configure-private-endpoint-for-paas-services-to-use-private-dns-zones/azurepolicy.parameters.json	36
policyDefinitions/Network/configure-private-endpoint-for-paas-services-to-use-private-dns-zones/azurepolicy.rules.json	92
policyDefinitions/Network/create-nsg-rule/azurepolicy.json	105
policyDefinitions/Network/create-nsg-rule/azurepolicy.parameters.json	57
policyDefinitions/Network/create-nsg-rule/azurepolicy.rules.json	35
policyDefinitions/Network/create-private-dns-zone-virtual-network-link-to-virtual-networks-if-not-available/README.md	46
policyDefinitions/Network/create-private-dns-zone-virtual-network-link-to-virtual-networks-if-not-available/azurepolicy.json	124
policyDefinitions/Network/create-private-dns-zone-virtual-network-link-to-virtual-networks-if-not-available/azurepolicy.parameters.json	31
policyDefinitions/Network/create-private-dns-zone-virtual-network-link-to-virtual-networks-if-not-available/azurepolicy.rules.json	80
policyDefinitions/Network/denies-nsg-rule-changes-that-allow-all-inbound-traffic/README.md	16
policyDefinitions/Network/denies-nsg-rule-changes-that-allow-all-inbound-traffic/azurepolicy.json	87
policyDefinitions/Network/denies-nsg-rule-changes-that-allow-all-inbound-traffic/azurepolicy.parameters.json	15
policyDefinitions/Network/denies-nsg-rule-changes-that-allow-all-inbound-traffic/azurepolicy.rules.json	59
policyDefinitions/Network/deny-app-gateway-only-allowed-in-approved-subnet/azurepolicy.json	51
policyDefinitions/Network/deny-app-gateway-only-allowed-in-approved-subnet/azurepolicy.parameters.json	21
policyDefinitions/Network/deny-app-gateway-only-allowed-in-approved-subnet/azurepolicy.rules.json	17
policyDefinitions/Network/deny-app-gateways-cant-have-private-listener/azurepolicy.json	51
policyDefinitions/Network/deny-app-gateways-cant-have-private-listener/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-app-gateways-cant-have-private-listener/azurepolicy.rules.json	23
policyDefinitions/Network/deny-bastion-shared-links/azurepolicy.json	47
policyDefinitions/Network/deny-bastion-shared-links/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-bastion-shared-links/azurepolicy.rules.json	19
policyDefinitions/Network/deny-changing-address-space-of-a-virtual-network/azurepolicy.json	60
policyDefinitions/Network/deny-changing-address-space-of-a-virtual-network/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-changing-address-space-of-a-virtual-network/azurepolicy.rules.json	25
policyDefinitions/Network/deny-changing-vnet-dns-settings-from-pre-defined-value/azurepolicy.json	60
policyDefinitions/Network/deny-changing-vnet-dns-settings-from-pre-defined-value/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-changing-vnet-dns-settings-from-pre-defined-value/azurepolicy.rules.json	25
policyDefinitions/Network/deny-creation-of-vnets-that-don't-follow-a-pre-defined-naming-convention/azurepolicy.json	52
policyDefinitions/Network/deny-creation-of-vnets-that-don't-follow-a-pre-defined-naming-convention/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-creation-of-vnets-that-don't-follow-a-pre-defined-naming-convention/azurepolicy.rules.json	17
policyDefinitions/Network/deny-load-balancer-outbound-rules/azurepolicy.json	50
policyDefinitions/Network/deny-load-balancer-outbound-rules/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-load-balancer-outbound-rules/azurepolicy.rules.json	19
policyDefinitions/Network/deny-new-security-rules-with-source-any-adding-to-existing-nsgs/azurepolicy.json	65
policyDefinitions/Network/deny-new-security-rules-with-source-any-adding-to-existing-nsgs/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-new-security-rules-with-source-any-adding-to-existing-nsgs/azurepolicy.rules.json	37
policyDefinitions/Network/deny-nics-from-having-public-ips-when-attached-to-subnets-containing-a-defined-suffix/azurepolicy.json	66
policyDefinitions/Network/deny-nics-from-having-public-ips-when-attached-to-subnets-containing-a-defined-suffix/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-nics-from-having-public-ips-when-attached-to-subnets-containing-a-defined-suffix/azurepolicy.rules.json	31
policyDefinitions/Network/deny-nics-joining-an-asg-if-in-a-different-resource-group/README.md	40
policyDefinitions/Network/deny-nics-joining-an-asg-if-in-a-different-resource-group/azurepolicy.json	51
policyDefinitions/Network/deny-nics-joining-an-asg-if-in-a-different-resource-group/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-nics-joining-an-asg-if-in-a-different-resource-group/azurepolicy.rules.json	23
policyDefinitions/Network/deny-nsg-rule-inbound-from-internet-network-security-group/azurepolicy.json	138
policyDefinitions/Network/deny-nsg-rule-inbound-from-internet-network-security-group/azurepolicy.parameters.json	29
policyDefinitions/Network/deny-nsg-rule-inbound-from-internet-network-security-group/azurepolicy.rules.json	96
policyDefinitions/Network/deny-nsgs-with-rules-with-source-any/azurepolicy.json	77
policyDefinitions/Network/deny-nsgs-with-rules-with-source-any/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-nsgs-with-rules-with-source-any/azurepolicy.rules.json	49
policyDefinitions/Network/deny-ports-nsg/azurepolicy.json	97
policyDefinitions/Network/deny-ports-nsg/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-ports-nsg/azurepolicy.rules.json	69
policyDefinitions/Network/deny-private-endpoints-if-not-being-deployed-to-a-specific-subnet/README.md	44
policyDefinitions/Network/deny-private-endpoints-if-not-being-deployed-to-a-specific-subnet/azurepolicy.json	69
policyDefinitions/Network/deny-private-endpoints-if-not-being-deployed-to-a-specific-subnet/azurepolicy.parameters.json	29
policyDefinitions/Network/deny-private-endpoints-if-not-being-deployed-to-a-specific-subnet/azurepolicy.rules.json	27
policyDefinitions/Network/deny-private-endpoints-in-specific-subnets-based-on-a-naming-convention/azurepolicy.json	52
policyDefinitions/Network/deny-private-endpoints-in-specific-subnets-based-on-a-naming-convention/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-private-endpoints-in-specific-subnets-based-on-a-naming-convention/azurepolicy.rules.json	17
policyDefinitions/Network/deny-private-link-service/azurepolicy.json	37
policyDefinitions/Network/deny-private-link-service/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-private-link-service/azurepolicy.rules.json	9
policyDefinitions/Network/deny-route-with-address-prefix-0.0.0.0-0-not-pointing-to-the-virtual-appliance/azurepolicy.json	102
policyDefinitions/Network/deny-route-with-address-prefix-0.0.0.0-0-not-pointing-to-the-virtual-appliance/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-route-with-address-prefix-0.0.0.0-0-not-pointing-to-the-virtual-appliance/azurepolicy.rules.json	67
policyDefinitions/Network/deny-route-with-next-hop-type-internet/README.md	29
policyDefinitions/Network/deny-route-with-next-hop-type-internet/azurepolicy.json	67
policyDefinitions/Network/deny-route-with-next-hop-type-internet/azurepolicy.parameters.json	15
policyDefinitions/Network/deny-route-with-next-hop-type-internet/azurepolicy.rules.json	39
policyDefinitions/Network/deny-service-endpoints-on-subnets-based-on-naming-convention/azurepolicy.json	90
policyDefinitions/Network/deny-service-endpoints-on-subnets-based-on-naming-convention/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-service-endpoints-on-subnets-based-on-naming-convention/azurepolicy.rules.json	55
policyDefinitions/Network/deny-subnet-delegation-on-subnets-containing-a-key-word/azurepolicy.json	89
policyDefinitions/Network/deny-subnet-delegation-on-subnets-containing-a-key-word/azurepolicy.parameters.json	21
policyDefinitions/Network/deny-subnet-delegation-on-subnets-containing-a-key-word/azurepolicy.rules.json	55
policyDefinitions/Network/deny-subnets-missing-suffix/azurepolicy.json	110
policyDefinitions/Network/deny-subnets-missing-suffix/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-subnets-missing-suffix/azurepolicy.rules.json	75
policyDefinitions/Network/deny-vm-creation-in-subnets-that-contain-specified-suffix/azurepolicy.json	69
policyDefinitions/Network/deny-vm-creation-in-subnets-that-contain-specified-suffix/azurepolicy.parameters.json	29
policyDefinitions/Network/deny-vm-creation-in-subnets-that-contain-specified-suffix/azurepolicy.rules.json	27
policyDefinitions/Network/deny-vm-vmss-and-load-balancer-from-subnet/azurepolicy.json	86
policyDefinitions/Network/deny-vm-vmss-and-load-balancer-from-subnet/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-vm-vmss-and-load-balancer-from-subnet/azurepolicy.rules.json	51
policyDefinitions/Network/deny-vnet-creation-outside-of-resource-groups-based-on-a-naming-standard/azurepolicy.json	52
policyDefinitions/Network/deny-vnet-creation-outside-of-resource-groups-based-on-a-naming-standard/azurepolicy.parameters.json	22
policyDefinitions/Network/deny-vnet-creation-outside-of-resource-groups-based-on-a-naming-standard/azurepolicy.rules.json	17
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-tagged-network-security-group/azurepolicy.json	283
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-tagged-network-security-group/azurepolicy.parameters.json	96
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-tagged-network-security-group/azurepolicy.rules.json	174
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-virtual-network/azurepolicy.json	275
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-virtual-network/azurepolicy.parameters.json	85
policyDefinitions/Network/deploy-a-traffic-analytics-enabled-flow-log-resource-with-target-virtual-network/azurepolicy.rules.json	175
policyDefinitions/Network/deploy-a-user-defined-route-to-a-vnet-with-specific-routes/azurepolicy.json	127
policyDefinitions/Network/deploy-a-user-defined-route-to-a-vnet-with-specific-routes/azurepolicy.parameters.json	30
policyDefinitions/Network/deploy-a-user-defined-route-to-a-vnet-with-specific-routes/azurepolicy.rules.json	84
policyDefinitions/Network/deploy-network-watcher-when-virtual-networks-are-created/README.md	16
policyDefinitions/Network/deploy-network-watcher-when-virtual-networks-are-created/azurepolicy.json	75
policyDefinitions/Network/deploy-network-watcher-when-virtual-networks-are-created/azurepolicy.parameters.json	15
policyDefinitions/Network/deploy-network-watcher-when-virtual-networks-are-created/azurepolicy.rules.json	47
policyDefinitions/Network/deploy-nsg-flow-logs-to-target-region/azurepolicy.json	144
policyDefinitions/Network/deploy-nsg-flow-logs-to-target-region/azurepolicy.parameters.json	29
policyDefinitions/Network/deploy-nsg-flow-logs-to-target-region/azurepolicy.rules.json	102
policyDefinitions/Network/deploy-nsg-rule/azurepolicy.json	295
policyDefinitions/Network/deploy-nsg-rule/azurepolicy.parameters.json	85
policyDefinitions/Network/deploy-nsg-rule/azurepolicy.rules.json	194
policyDefinitions/Network/deploy-private-endpoint-private-dns-zone-link/azurepolicy.json	227
policyDefinitions/Network/deploy-private-endpoint-private-dns-zone-link/azurepolicy.parameters.json	64
policyDefinitions/Network/deploy-private-endpoint-private-dns-zone-link/azurepolicy.rules.json	150
policyDefinitions/Network/deploy-route-to-route-tables/azurepolicy.json	142
policyDefinitions/Network/deploy-route-to-route-tables/azurepolicy.parameters.json	51
policyDefinitions/Network/deploy-route-to-route-tables/azurepolicy.rules.json	75
policyDefinitions/Network/enforce-a-route-table-on-every-subnet/README.md	27
policyDefinitions/Network/enforce-a-route-table-on-every-subnet/azurepolicy.json	72
policyDefinitions/Network/enforce-a-route-table-on-every-subnet/azurepolicy.parameters.json	22
policyDefinitions/Network/enforce-a-route-table-on-every-subnet/azurepolicy.rules.json	37
policyDefinitions/Network/enforce-disabling-of-snat-in-load-balancer-rules/azurepolicy.json	54
policyDefinitions/Network/enforce-disabling-of-snat-in-load-balancer-rules/azurepolicy.parameters.json	15
policyDefinitions/Network/enforce-disabling-of-snat-in-load-balancer-rules/azurepolicy.rules.json	23
policyDefinitions/Network/enforce-firewall-policy-dns-servers/azurepolicy.json	69
policyDefinitions/Network/enforce-firewall-policy-dns-servers/azurepolicy.parameters.json	22
policyDefinitions/Network/enforce-firewall-policy-dns-servers/azurepolicy.rules.json	31
policyDefinitions/Network/enforce-load-balancer-private-ip-addresses-only-in-frontend-configuration/azurepolicy.json	60
policyDefinitions/Network/enforce-load-balancer-private-ip-addresses-only-in-frontend-configuration/azurepolicy.parameters.json	15
policyDefinitions/Network/enforce-load-balancer-private-ip-addresses-only-in-frontend-configuration/azurepolicy.rules.json	29
policyDefinitions/Network/enforce-load-balancer-regional-tier/azurepolicy.json	52
policyDefinitions/Network/enforce-load-balancer-regional-tier/azurepolicy.parameters.json	15
policyDefinitions/Network/enforce-load-balancer-regional-tier/azurepolicy.rules.json	21
policyDefinitions/Network/enforce-load-balancer-standard-sku/azurepolicy.json	48
policyDefinitions/Network/enforce-load-balancer-standard-sku/azurepolicy.parameters.json	15
policyDefinitions/Network/enforce-load-balancer-standard-sku/azurepolicy.rules.json	17
policyDefinitions/Network/enforce-network-security-groups-to-have-a-deny-rdp-security-rule/azurepolicy.json	109
policyDefinitions/Network/enforce-network-security-groups-to-have-a-deny-rdp-security-rule/azurepolicy.parameters.json	22
policyDefinitions/Network/enforce-network-security-groups-to-have-a-deny-rdp-security-rule/azurepolicy.rules.json	74
policyDefinitions/Network/enforce-vnet-dns-servers/azurepolicy.json	69
policyDefinitions/Network/enforce-vnet-dns-servers/azurepolicy.parameters.json	22
policyDefinitions/Network/enforce-vnet-dns-servers/azurepolicy.rules.json	31
policyDefinitions/Network/expressroute-should-not-use-authorization-keys/azurepolicy.json	47
policyDefinitions/Network/expressroute-should-not-use-authorization-keys/azurepolicy.parameters.json	15
policyDefinitions/Network/expressroute-should-not-use-authorization-keys/azurepolicy.rules.json	19
policyDefinitions/Network/modify-inject-routes-into-exsiting-route-table/README.md	50
policyDefinitions/Network/modify-inject-routes-into-exsiting-route-table/azurepolicy.json	93
policyDefinitions/Network/modify-inject-routes-into-exsiting-route-table/azurepolicy.parameters.json	44
policyDefinitions/Network/modify-inject-routes-into-exsiting-route-table/azurepolicy.rules.json	36
policyDefinitions/Network/network-security-group-security-rules/azurepolicy.json	128
policyDefinitions/Network/network-security-group-security-rules/azurepolicy.parameters.json	29
policyDefinitions/Network/network-security-group-security-rules/azurepolicy.rules.json	86
policyDefinitions/Network/network-security-groups-allow-inbound-rules-with-any-as-source/README.md	17
policyDefinitions/Network/network-security-groups-allow-inbound-rules-with-any-as-source/azurepolicy.json	53
policyDefinitions/Network/network-security-groups-allow-inbound-rules-with-any-as-source/azurepolicy.parameters.json	15
policyDefinitions/Network/network-security-groups-allow-inbound-rules-with-any-as-source/azurepolicy.rules.json	25
policyDefinitions/Network/newly-created-subnets-will-be-assigned-a-route-table/azurepolicy.json	79
policyDefinitions/Network/newly-created-subnets-will-be-assigned-a-route-table/azurepolicy.parameters.json	37
policyDefinitions/Network/newly-created-subnets-will-be-assigned-a-route-table/azurepolicy.rules.json	29
policyDefinitions/Network/newly-created-vnets-will-have-certain-subnets-assigned-a-route-table/azurepolicy.json	79
policyDefinitions/Network/newly-created-vnets-will-have-certain-subnets-assigned-a-route-table/azurepolicy.parameters.json	37
policyDefinitions/Network/newly-created-vnets-will-have-certain-subnets-assigned-a-route-table/azurepolicy.rules.json	29
policyDefinitions/Network/no-network-peering-to-er-network/README.md	16
policyDefinitions/Network/no-network-peering-to-er-network/azurepolicy.json	53
policyDefinitions/Network/no-network-peering-to-er-network/azurepolicy.parameters.json	23
policyDefinitions/Network/no-network-peering-to-er-network/azurepolicy.rules.json	17
policyDefinitions/Network/no-user-defined-route-table/README.md	16
policyDefinitions/Network/no-user-defined-route-table/azurepolicy.json	63
policyDefinitions/Network/no-user-defined-route-table/azurepolicy.parameters.json	15
policyDefinitions/Network/no-user-defined-route-table/azurepolicy.rules.json	35
policyDefinitions/Network/nsg-rule-ports-without-ip-source/azurepolicy.json	59
policyDefinitions/Network/nsg-rule-ports-without-ip-source/azurepolicy.parameters.json	21
policyDefinitions/Network/nsg-rule-ports-without-ip-source/azurepolicy.rules.json	25
policyDefinitions/Network/nsg-x-on-every-subnet/README.md	16
policyDefinitions/Network/nsg-x-on-every-subnet/azurepolicy.json	72
policyDefinitions/Network/nsg-x-on-every-subnet/azurepolicy.parameters.json	22
policyDefinitions/Network/nsg-x-on-every-subnet/azurepolicy.rules.json	37
policyDefinitions/Network/prevent-cross-subscription-private-link/azurepolicy.json	72
policyDefinitions/Network/prevent-cross-subscription-private-link/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-subscription-private-link/azurepolicy.rules.json	41
policyDefinitions/Network/prevent-cross-tenant-private-link-for-acr/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-acr/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-acr/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-aks/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-aks/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-aks/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-ampls/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-ampls/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-ampls/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-domains/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-domains/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-domains/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-topics/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-topics/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-eventgrid-topics/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-key-vault/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-key-vault/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-key-vault/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-cross-tenant-private-link-for-storage/azurepolicy.json	56
policyDefinitions/Network/prevent-cross-tenant-private-link-for-storage/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-cross-tenant-private-link-for-storage/azurepolicy.rules.json	25
policyDefinitions/Network/prevent-deletion-of-private-dns-zone/README.md	2
policyDefinitions/Network/prevent-deletion-of-private-dns-zone/azurepolicy.json	48
policyDefinitions/Network/prevent-deletion-of-private-dns-zone/azurepolicy.parameters.json	14
policyDefinitions/Network/prevent-deletion-of-private-dns-zone/azurepolicy.rules.json	21
policyDefinitions/Network/prevent-inbound-dnat-on-azure-firewalls/azurepolicy.json	55
policyDefinitions/Network/prevent-inbound-dnat-on-azure-firewalls/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-inbound-dnat-on-azure-firewalls/azurepolicy.rules.json	27
policyDefinitions/Network/prevent-internet-routes-in-route-tables/azurepolicy.json	70
policyDefinitions/Network/prevent-internet-routes-in-route-tables/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-internet-routes-in-route-tables/azurepolicy.rules.json	39
policyDefinitions/Network/prevent-route-with-next-hop-type-internet-nexthop-fw/azurepolicy.json	75
policyDefinitions/Network/prevent-route-with-next-hop-type-internet-nexthop-fw/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-route-with-next-hop-type-internet-nexthop-fw/azurepolicy.rules.json	47
policyDefinitions/Network/prevent-subnets-without-nsg/azurepolicy.json	98
policyDefinitions/Network/prevent-subnets-without-nsg/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-subnets-without-nsg/azurepolicy.rules.json	67
policyDefinitions/Network/prevent-subnets-without-route-table/azurepolicy.json	86
policyDefinitions/Network/prevent-subnets-without-route-table/azurepolicy.parameters.json	15
policyDefinitions/Network/prevent-subnets-without-route-table/azurepolicy.rules.json	55
policyDefinitions/Network/require-specific-route-on-udr/azurepolicy.json	91
policyDefinitions/Network/require-specific-route-on-udr/azurepolicy.parameters.json	43
policyDefinitions/Network/require-specific-route-on-udr/azurepolicy.rules.json	35
policyDefinitions/Network/service-endpoints-on-subnets/azurepolicy.json	51
policyDefinitions/Network/service-endpoints-on-subnets/azurepolicy.parameters.json	15
policyDefinitions/Network/service-endpoints-on-subnets/azurepolicy.rules.json	23
policyDefinitions/Network/subnets-must-have-an-nsg-and-that-nsg-must-have-the-same-suffix-as-the-subnet/azurepolicy.json	106
policyDefinitions/Network/subnets-must-have-an-nsg-and-that-nsg-must-have-the-same-suffix-as-the-subnet/azurepolicy.parameters.json	22
policyDefinitions/Network/subnets-must-have-an-nsg-and-that-nsg-must-have-the-same-suffix-as-the-subnet/azurepolicy.rules.json	71
policyDefinitions/Network/use-approved-subnet-for-vm-network-interfaces/README.md	16
policyDefinitions/Network/use-approved-subnet-for-vm-network-interfaces/azurepolicy.json	54
policyDefinitions/Network/use-approved-subnet-for-vm-network-interfaces/azurepolicy.parameters.json	22
policyDefinitions/Network/use-approved-subnet-for-vm-network-interfaces/azurepolicy.rules.json	19
policyDefinitions/Network/use-approved-vnet-for-vm-network-interfaces/README.md	16
policyDefinitions/Network/use-approved-vnet-for-vm-network-interfaces/azurepolicy.json	54
policyDefinitions/Network/use-approved-vnet-for-vm-network-interfaces/azurepolicy.parameters.json	22
policyDefinitions/Network/use-approved-vnet-for-vm-network-interfaces/azurepolicy.rules.json	19
policyDefinitions/Network/virtual-machine-nic-must-have-nsg/azurepolicy.json	52
policyDefinitions/Network/virtual-machine-nic-must-have-nsg/azurepolicy.parameters.json	15
policyDefinitions/Network/virtual-machine-nic-must-have-nsg/azurepolicy.rules.json	21
policyDefinitions/Network/vms-in-resource-groups-containing-suffix-must-have-nics-in-resource-groups-with-same-suffix/azurepolicy.json	88
policyDefinitions/Network/vms-in-resource-groups-containing-suffix-must-have-nics-in-resource-groups-with-same-suffix/azurepolicy.parameters.json	22
policyDefinitions/Network/vms-in-resource-groups-containing-suffix-must-have-nics-in-resource-groups-with-same-suffix/azurepolicy.rules.json	53
policyDefinitions/Network/vms-not-in-a-specific-subnet-cannot-be-part-of-a-backend-pool/azurepolicy.json	57
policyDefinitions/Network/vms-not-in-a-specific-subnet-cannot-be-part-of-a-backend-pool/azurepolicy.parameters.json	21
policyDefinitions/Network/vms-not-in-a-specific-subnet-cannot-be-part-of-a-backend-pool/azurepolicy.rules.json	23
policyDefinitions/Network/vnet-peering-deny-removal/azurepolicy.json	57
policyDefinitions/Network/vnet-peering-deny-removal/azurepolicy.parameters.json	22
policyDefinitions/Network/vnet-peering-deny-removal/azurepolicy.rules.json	22
policyDefinitions/Network/vnet-peering-disallowed-outside-subscription/azurepolicy.json	45
policyDefinitions/Network/vnet-peering-disallowed-outside-subscription/azurepolicy.parameters.json	15
policyDefinitions/Network/vnet-peering-disallowed-outside-subscription/azurepolicy.rules.json	17
policyDefinitions/Network/vnet-peering-is-only-allowed-to-approved-vnets/azurepolicy.json	82
policyDefinitions/Network/vnet-peering-is-only-allowed-to-approved-vnets/azurepolicy.parameters.json	24
policyDefinitions/Network/vnet-peering-is-only-allowed-to-approved-vnets/azurepolicy.rules.json	43
policyDefinitions/Policy/deny-policy-exemption-with-an-expiration-date-greater-than-given-days/azurepolicy.json	52
policyDefinitions/Policy/deny-policy-exemption-with-an-expiration-date-greater-than-given-days/azurepolicy.parameters.json	22
policyDefinitions/Policy/deny-policy-exemption-with-an-expiration-date-greater-than-given-days/azurepolicy.rules.json	17
policyDefinitions/Policy/deny-policy-exemption-without-description/azurepolicy.json	45
policyDefinitions/Policy/deny-policy-exemption-without-description/azurepolicy.parameters.json	15
policyDefinitions/Policy/deny-policy-exemption-without-description/azurepolicy.rules.json	17
policyDefinitions/Policy/deny-policy-exemption-without-expiration-date/azurepolicy.json	45
policyDefinitions/Policy/deny-policy-exemption-without-expiration-date/azurepolicy.parameters.json	15
policyDefinitions/Policy/deny-policy-exemption-without-expiration-date/azurepolicy.rules.json	17
policyDefinitions/Policy/deny-policy-exemption-without-given-info/azurepolicy.json	64
policyDefinitions/Policy/deny-policy-exemption-without-given-info/azurepolicy.parameters.json	22
policyDefinitions/Policy/deny-policy-exemption-without-given-info/azurepolicy.rules.json	29
policyDefinitions/Regulatory Compliance/deploy-cannotdelete-resource-lock-on-resource-groups/azurepolicy.json	85
policyDefinitions/Regulatory Compliance/deploy-cannotdelete-resource-lock-on-resource-groups/azurepolicy.parameters.json	25
policyDefinitions/Regulatory Compliance/deploy-cannotdelete-resource-lock-on-resource-groups/azurepolicy.rules.json	47
policyDefinitions/SQL Server/audit-sql-vm-byol-compliance/README.md	27
policyDefinitions/SQL Server/audit-sql-vm-byol-compliance/azurepolicy.json	51
policyDefinitions/SQL Server/audit-sql-vm-byol-compliance/azurepolicy.parameters.json	14
policyDefinitions/SQL Server/audit-sql-vm-byol-compliance/azurepolicy.rules.json	24
policyDefinitions/SQL Server/enable-hybrid-use-for-sql-iaas/README.md	16
policyDefinitions/SQL Server/enable-hybrid-use-for-sql-iaas/azurepolicy.json	111
policyDefinitions/SQL Server/enable-hybrid-use-for-sql-iaas/azurepolicy.parameters.json	15
policyDefinitions/SQL Server/enable-hybrid-use-for-sql-iaas/azurepolicy.rules.json	83
policyDefinitions/SQL/allowed-sql-database-collations/README.md	16
policyDefinitions/SQL/allowed-sql-database-collations/azurepolicy.json	58
policyDefinitions/SQL/allowed-sql-database-collations/azurepolicy.parameters.json	22
policyDefinitions/SQL/allowed-sql-database-collations/azurepolicy.rules.json	23
policyDefinitions/SQL/allowed-sql-db-skus/README.md	16
policyDefinitions/SQL/allowed-sql-db-skus/azurepolicy.json	73
policyDefinitions/SQL/allowed-sql-db-skus/azurepolicy.parameters.json	29
policyDefinitions/SQL/allowed-sql-db-skus/azurepolicy.rules.json	31
policyDefinitions/SQL/allowed-sql-elastic-pool-capacity/README.md	16
policyDefinitions/SQL/allowed-sql-elastic-pool-capacity/azurepolicy.json	52
policyDefinitions/SQL/allowed-sql-elastic-pool-capacity/azurepolicy.parameters.json	22
policyDefinitions/SQL/allowed-sql-elastic-pool-capacity/azurepolicy.rules.json	17
policyDefinitions/SQL/audit-allow-azure-services-and-resources-to-access-this-server/azurepolicy.json	45
policyDefinitions/SQL/audit-allow-azure-services-and-resources-to-access-this-server/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-allow-azure-services-and-resources-to-access-this-server/azurepolicy.rules.json	17
policyDefinitions/SQL/audit-db-level-threat-detection-setting/README.md	16
policyDefinitions/SQL/audit-db-level-threat-detection-setting/azurepolicy.json	62
policyDefinitions/SQL/audit-db-level-threat-detection-setting/azurepolicy.parameters.json	24
policyDefinitions/SQL/audit-db-level-threat-detection-setting/azurepolicy.rules.json	25
policyDefinitions/SQL/audit-if-no-aad-admin/README.md	16
policyDefinitions/SQL/audit-if-no-aad-admin/azurepolicy.json	39
policyDefinitions/SQL/audit-if-no-aad-admin/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-if-no-aad-admin/azurepolicy.rules.json	12
policyDefinitions/SQL/audit-private-endpoint-connections-setting-for-azure-sql-database/README.md	16
policyDefinitions/SQL/audit-private-endpoint-connections-setting-for-azure-sql-database/azurepolicy.json	52
policyDefinitions/SQL/audit-private-endpoint-connections-setting-for-azure-sql-database/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-private-endpoint-connections-setting-for-azure-sql-database/azurepolicy.rules.json	25
policyDefinitions/SQL/audit-public-network-access-setting-for-azure-sql-database/README.md	16
policyDefinitions/SQL/audit-public-network-access-setting-for-azure-sql-database/azurepolicy.json	44
policyDefinitions/SQL/audit-public-network-access-setting-for-azure-sql-database/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-public-network-access-setting-for-azure-sql-database/azurepolicy.rules.json	17
policyDefinitions/SQL/audit-server-level-threat-detection-setting/README.md	16
policyDefinitions/SQL/audit-server-level-threat-detection-setting/azurepolicy.json	58
policyDefinitions/SQL/audit-server-level-threat-detection-setting/azurepolicy.parameters.json	24
policyDefinitions/SQL/audit-server-level-threat-detection-setting/azurepolicy.rules.json	21
policyDefinitions/SQL/audit-sql-db-level-audit-setting/README.md	16
policyDefinitions/SQL/audit-sql-db-level-audit-setting/azurepolicy.json	62
policyDefinitions/SQL/audit-sql-db-level-audit-setting/azurepolicy.parameters.json	24
policyDefinitions/SQL/audit-sql-db-level-audit-setting/azurepolicy.rules.json	25
policyDefinitions/SQL/audit-sql-db-without-hybrid-licensing/README.md	16
policyDefinitions/SQL/audit-sql-db-without-hybrid-licensing/azurepolicy.json	48
policyDefinitions/SQL/audit-sql-db-without-hybrid-licensing/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-sql-db-without-hybrid-licensing/azurepolicy.rules.json	21
policyDefinitions/SQL/audit-sql-server-firewall-rule/README.md	16
policyDefinitions/SQL/audit-sql-server-firewall-rule/azurepolicy.json	65
policyDefinitions/SQL/audit-sql-server-firewall-rule/azurepolicy.parameters.json	28
policyDefinitions/SQL/audit-sql-server-firewall-rule/azurepolicy.rules.json	24
policyDefinitions/SQL/audit-sql-server-level-auditing-settings/README.md	16
policyDefinitions/SQL/audit-sql-server-level-auditing-settings/azurepolicy.json	44
policyDefinitions/SQL/audit-sql-server-level-auditing-settings/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-sql-server-level-auditing-settings/azurepolicy.rules.json	17
policyDefinitions/SQL/audit-sql-server-virtual-network-rule/README.md	16
policyDefinitions/SQL/audit-sql-server-virtual-network-rule/azurepolicy.json	50
policyDefinitions/SQL/audit-sql-server-virtual-network-rule/azurepolicy.parameters.json	21
policyDefinitions/SQL/audit-sql-server-virtual-network-rule/azurepolicy.rules.json	16
policyDefinitions/SQL/audit-transparent-data-encryption-status/README.md	16
policyDefinitions/SQL/audit-transparent-data-encryption-status/azurepolicy.json	60
policyDefinitions/SQL/audit-transparent-data-encryption-status/azurepolicy.parameters.json	14
policyDefinitions/SQL/audit-transparent-data-encryption-status/azurepolicy.rules.json	33
policyDefinitions/SQL/configure-azure-sql-db-to-use-tls-1.2/README.md	16
policyDefinitions/SQL/configure-azure-sql-db-to-use-tls-1.2/azurepolicy.json	75
policyDefinitions/SQL/configure-azure-sql-db-to-use-tls-1.2/azurepolicy.parameters.json	16
policyDefinitions/SQL/configure-azure-sql-db-to-use-tls-1.2/azurepolicy.rules.json	46
policyDefinitions/SQL/deny-changes-to-sqlmi-long-term-backup-retention/azurepolicy.json	57
policyDefinitions/SQL/deny-changes-to-sqlmi-long-term-backup-retention/azurepolicy.parameters.json	15
policyDefinitions/SQL/deny-changes-to-sqlmi-long-term-backup-retention/azurepolicy.rules.json	29
policyDefinitions/SQL/deny-postgresql-version/azurepolicy.json	56
policyDefinitions/SQL/deny-postgresql-version/azurepolicy.parameters.json	26
policyDefinitions/SQL/deny-postgresql-version/azurepolicy.rules.json	17
policyDefinitions/SQL/deny-sql-database-transparent-data-encryption-disablement/README.md	16
policyDefinitions/SQL/deny-sql-database-transparent-data-encryption-disablement/azurepolicy.json	49
policyDefinitions/SQL/deny-sql-database-transparent-data-encryption-disablement/azurepolicy.parameters.json	15
policyDefinitions/SQL/deny-sql-database-transparent-data-encryption-disablement/azurepolicy.rules.json	21
policyDefinitions/SQL/deny-sql-vm-tempdb-localssd/azurepolicy.json	53
policyDefinitions/SQL/deny-sql-vm-tempdb-localssd/azurepolicy.parameters.json	23
policyDefinitions/SQL/deny-sql-vm-tempdb-localssd/azurepolicy.rules.json	17
policyDefinitions/SQL/deploy-advanced-data-security-managed-instances/azurepolicy.json	85
policyDefinitions/SQL/deploy-advanced-data-security-managed-instances/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-advanced-data-security-managed-instances/azurepolicy.rules.json	57
policyDefinitions/SQL/deploy-advanced-data-security-on-sql-servers-exempt-resources-with-a-matching-tag-key-value/azurepolicy.json	134
policyDefinitions/SQL/deploy-advanced-data-security-on-sql-servers-exempt-resources-with-a-matching-tag-key-value/azurepolicy.parameters.json	21
policyDefinitions/SQL/deploy-advanced-data-security-on-sql-servers-exempt-resources-with-a-matching-tag-key-value/azurepolicy.rules.json	100
policyDefinitions/SQL/deploy-hybrid-use-for-azure-sql-elastic-pools/README.md	16
policyDefinitions/SQL/deploy-hybrid-use-for-azure-sql-elastic-pools/azurepolicy.json	104
policyDefinitions/SQL/deploy-hybrid-use-for-azure-sql-elastic-pools/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-hybrid-use-for-azure-sql-elastic-pools/azurepolicy.rules.json	76
policyDefinitions/SQL/deploy-hybrid-use-for-sql-paas/README.md	16
policyDefinitions/SQL/deploy-hybrid-use-for-sql-paas/azurepolicy.json	116
policyDefinitions/SQL/deploy-hybrid-use-for-sql-paas/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-hybrid-use-for-sql-paas/azurepolicy.rules.json	88
policyDefinitions/SQL/deploy-hybrid-use-sql-mi/README.md	16
policyDefinitions/SQL/deploy-hybrid-use-sql-mi/azurepolicy.json	95
policyDefinitions/SQL/deploy-hybrid-use-sql-mi/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-hybrid-use-sql-mi/azurepolicy.rules.json	67
policyDefinitions/SQL/deploy-sql-database-diag-loganalytics/README.md	16
policyDefinitions/SQL/deploy-sql-database-diag-loganalytics/azurepolicy.json	204
policyDefinitions/SQL/deploy-sql-database-diag-loganalytics/azurepolicy.parameters.json	56
policyDefinitions/SQL/deploy-sql-database-diag-loganalytics/azurepolicy.rules.json	135
policyDefinitions/SQL/deploy-sql-managedinstance-diag-loganalytics/README.md	16
policyDefinitions/SQL/deploy-sql-managedinstance-diag-loganalytics/azurepolicy.json	156
policyDefinitions/SQL/deploy-sql-managedinstance-diag-loganalytics/azurepolicy.parameters.json	44
policyDefinitions/SQL/deploy-sql-managedinstance-diag-loganalytics/azurepolicy.rules.json	99
policyDefinitions/SQL/deploy-sql-server-auditing/README.md	18
policyDefinitions/SQL/deploy-sql-server-auditing/azurepolicy.json	146
policyDefinitions/SQL/deploy-sql-server-auditing/azurepolicy.parameters.json	31
policyDefinitions/SQL/deploy-sql-server-auditing/azurepolicy.rules.json	103
policyDefinitions/SQL/deploy-sql-server-auditing/createStorage.template.json	42
policyDefinitions/SQL/deploy-tde-sql-databases/azurepolicy.json	77
policyDefinitions/SQL/deploy-tde-sql-databases/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-tde-sql-databases/azurepolicy.rules.json	49
policyDefinitions/SQL/deploy-threat-detection-on-sql-servers/README.md	16
policyDefinitions/SQL/deploy-threat-detection-on-sql-servers/azurepolicy.json	79
policyDefinitions/SQL/deploy-threat-detection-on-sql-servers/azurepolicy.parameters.json	15
policyDefinitions/SQL/deploy-threat-detection-on-sql-servers/azurepolicy.rules.json	51
policyDefinitions/SQL/depoly-sql-managedinstance-shortterm-backup-retention-policy/azurepolicy.json	81
policyDefinitions/SQL/depoly-sql-managedinstance-shortterm-backup-retention-policy/azurepolicy.parameters.json	15
policyDefinitions/SQL/depoly-sql-managedinstance-shortterm-backup-retention-policy/azurepolicy.rules.json	53
policyDefinitions/SQL/enforce-1.2-as-minimum-tls-version-for-sql-server/README.md	17
policyDefinitions/SQL/enforce-1.2-as-minimum-tls-version-for-sql-server/azurepolicy.json	67
policyDefinitions/SQL/enforce-1.2-as-minimum-tls-version-for-sql-server/azurepolicy.parameters.json	16
policyDefinitions/SQL/enforce-1.2-as-minimum-tls-version-for-sql-server/azurepolicy.rules.json	38
policyDefinitions/SQL/enforce-postgresql-administrator-group-principal-name-prefix/azurepolicy.json	56
policyDefinitions/SQL/enforce-postgresql-administrator-group-principal-name-prefix/azurepolicy.parameters.json	22
policyDefinitions/SQL/enforce-postgresql-administrator-group-principal-name-prefix/azurepolicy.rules.json	21
policyDefinitions/SQL/enforce-postgresql-administrator-principal-types/azurepolicy.json	55
policyDefinitions/SQL/enforce-postgresql-administrator-principal-types/azurepolicy.parameters.json	25
policyDefinitions/SQL/enforce-postgresql-administrator-principal-types/azurepolicy.rules.json	17
policyDefinitions/SQL/enforce-postgresql-entra-only-authentication/azurepolicy.json	53
policyDefinitions/SQL/enforce-postgresql-entra-only-authentication/azurepolicy.parameters.json	15
policyDefinitions/SQL/enforce-postgresql-entra-only-authentication/azurepolicy.rules.json	25
policyDefinitions/SQL/enforce-ssl-on-all-db-for-mysql-instances/README.md	16
policyDefinitions/SQL/enforce-ssl-on-all-db-for-mysql-instances/azurepolicy.json	45
policyDefinitions/SQL/enforce-ssl-on-all-db-for-mysql-instances/azurepolicy.parameters.json	15
policyDefinitions/SQL/enforce-ssl-on-all-db-for-mysql-instances/azurepolicy.rules.json	17
policyDefinitions/SQL/ensure-server-parameter-'audit_log_enabled'-is-on-for-mysql-db-server/azurepolicy.json	110
policyDefinitions/SQL/ensure-server-parameter-'audit_log_enabled'-is-on-for-mysql-db-server/azurepolicy.parameters.json	15
policyDefinitions/SQL/ensure-server-parameter-'audit_log_enabled'-is-on-for-mysql-db-server/azurepolicy.rules.json	82
policyDefinitions/SQL/geo-replicated-microsoft-sql-databases/README.md	17
policyDefinitions/SQL/geo-replicated-microsoft-sql-databases/azurepolicy.json	44
policyDefinitions/SQL/geo-replicated-microsoft-sql-databases/azurepolicy.parameters.json	14
policyDefinitions/SQL/geo-replicated-microsoft-sql-databases/azurepolicy.rules.json	17
policyDefinitions/SQL/require-secure-transport-shoud-be-enabled-for-mysql-flexible-servers/README.md	16
policyDefinitions/SQL/require-secure-transport-shoud-be-enabled-for-mysql-flexible-servers/azurepolicy.json	44
policyDefinitions/SQL/require-secure-transport-shoud-be-enabled-for-mysql-flexible-servers/azurepolicy.parameters.json	14
policyDefinitions/SQL/require-secure-transport-shoud-be-enabled-for-mysql-flexible-servers/azurepolicy.rules.json	17
policyDefinitions/SQL/require-sql-server-vm-auto-backup/azurepolicy.json	53
policyDefinitions/SQL/require-sql-server-vm-auto-backup/azurepolicy.parameters.json	23
policyDefinitions/SQL/require-sql-server-vm-auto-backup/azurepolicy.rules.json	17
policyDefinitions/SQL/require-sql-server-vm-auto-patching/azurepolicy.json	53
policyDefinitions/SQL/require-sql-server-vm-auto-patching/azurepolicy.parameters.json	23
policyDefinitions/SQL/require-sql-server-vm-auto-patching/azurepolicy.rules.json	17
policyDefinitions/SQL/require-sql-server-vm-key-vault-integration/azurepolicy.json	53
policyDefinitions/SQL/require-sql-server-vm-key-vault-integration/azurepolicy.parameters.json	23
policyDefinitions/SQL/require-sql-server-vm-key-vault-integration/azurepolicy.rules.json	17
policyDefinitions/SQL/require-sql-server-vm-sql-connectivity/azurepolicy.json	58
policyDefinitions/SQL/require-sql-server-vm-sql-connectivity/azurepolicy.parameters.json	28
policyDefinitions/SQL/require-sql-server-vm-sql-connectivity/azurepolicy.rules.json	17
policyDefinitions/SQL/require-sql-vm-license-models/azurepolicy.json	58
policyDefinitions/SQL/require-sql-vm-license-models/azurepolicy.parameters.json	28
policyDefinitions/SQL/require-sql-vm-license-models/azurepolicy.rules.json	17
policyDefinitions/SQL/sql-databases-should-be-zone-redundant/README.md	16
policyDefinitions/SQL/sql-databases-should-be-zone-redundant/azurepolicy.json	48
policyDefinitions/SQL/sql-databases-should-be-zone-redundant/azurepolicy.parameters.json	14
policyDefinitions/SQL/sql-databases-should-be-zone-redundant/azurepolicy.rules.json	21
policyDefinitions/SQL/sql-db-backup-retention/azurepolicy.json	101
policyDefinitions/SQL/sql-db-backup-retention/azurepolicy.parameters.json	23
policyDefinitions/SQL/sql-db-backup-retention/azurepolicy.rules.json	65
policyDefinitions/SQL/sql-server-auditing-settings-must-log-to-specified-workspace/azurepolicy.json	152
policyDefinitions/SQL/sql-server-auditing-settings-must-log-to-specified-workspace/azurepolicy.parameters.json	31
policyDefinitions/SQL/sql-server-auditing-settings-must-log-to-specified-workspace/azurepolicy.rules.json	108
policyDefinitions/Security Center/deny-enabling-security-center-auto-provisioning/azurepolicy.json	45
policyDefinitions/Security Center/deny-enabling-security-center-auto-provisioning/azurepolicy.parameters.json	15
policyDefinitions/Security Center/deny-enabling-security-center-auto-provisioning/azurepolicy.rules.json	17
policyDefinitions/Security Center/deploy-azure-security-center-pricing-tier/azurepolicy.json	684
policyDefinitions/Security Center/deploy-azure-security-center-pricing-tier/azurepolicy.parameters.json	195
policyDefinitions/Security Center/deploy-azure-security-center-pricing-tier/azurepolicy.rules.json	476
policyDefinitions/Security Center/deploy-azure-security-center-vulnerability-assessment-extension-if-does-not-exist/README.md	16
policyDefinitions/Security Center/deploy-azure-security-center-vulnerability-assessment-extension-if-does-not-exist/azurepolicy.json	153
policyDefinitions/Security Center/deploy-azure-security-center-vulnerability-assessment-extension-if-does-not-exist/azurepolicy.parameters.json	51
policyDefinitions/Security Center/deploy-azure-security-center-vulnerability-assessment-extension-if-does-not-exist/azurepolicy.rules.json	89
policyDefinitions/Security Center/deploy-security-center-standard-to-workspaces/azurepolicy.json	86
policyDefinitions/Security Center/deploy-security-center-standard-to-workspaces/azurepolicy.parameters.json	15
policyDefinitions/Security Center/deploy-security-center-standard-to-workspaces/azurepolicy.rules.json	58
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-audit/azurepolicy.json	50
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-audit/azurepolicy.parameters.json	14
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-audit/azurepolicy.rules.json	23
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-deny/azurepolicy.json	51
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-deny/azurepolicy.parameters.json	15
policyDefinitions/Service Bus/service-bus-namespace-customer-managed-keys-deny/azurepolicy.rules.json	23
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-aine/azurepolicy.json	179
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-aine/azurepolicy.parameters.json	55
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-aine/azurepolicy.rules.json	111
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-dine/azurepolicy.json	275
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-dine/azurepolicy.parameters.json	56
policyDefinitions/Service Bus/service-bus-namespace-diagnostic-settings-dine/azurepolicy.rules.json	206
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-audit/azurepolicy.json	89
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-audit/azurepolicy.parameters.json	21
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-audit/azurepolicy.rules.json	55
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-deny/azurepolicy.json	90
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-deny/azurepolicy.parameters.json	22
policyDefinitions/Service Bus/service-bus-namespace-firewall-settings-deny/azurepolicy.rules.json	55
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-audit/azurepolicy.json	48
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-audit/azurepolicy.parameters.json	14
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-audit/azurepolicy.rules.json	21
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-deny/azurepolicy.json	49
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-deny/azurepolicy.parameters.json	15
policyDefinitions/Service Bus/service-bus-namespace-tier-setting-deny/azurepolicy.rules.json	21
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-audit/azurepolicy.json	44
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-audit/azurepolicy.parameters.json	14
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-audit/azurepolicy.rules.json	17
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-deny/azurepolicy.json	45
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-deny/azurepolicy.parameters.json	15
policyDefinitions/Service Bus/service-bus-namespace-trusted-microsoft-services-deny/azurepolicy.rules.json	17
policyDefinitions/Storage/audit-azure-files-should-have-soft-delete-enabled/azurepolicy.json	68
policyDefinitions/Storage/audit-azure-files-should-have-soft-delete-enabled/azurepolicy.parameters.json	23
policyDefinitions/Storage/audit-azure-files-should-have-soft-delete-enabled/azurepolicy.rules.json	32
policyDefinitions/Storage/audit-azure-storage-blobs-and-containers-should-have-soft-delete-enabled/azurepolicy.json	88
policyDefinitions/Storage/audit-azure-storage-blobs-and-containers-should-have-soft-delete-enabled/azurepolicy.parameters.json	23
policyDefinitions/Storage/audit-azure-storage-blobs-and-containers-should-have-soft-delete-enabled/azurepolicy.rules.json	52
policyDefinitions/Storage/audit-diagnostic-setting-for-selected-resource-types/azurepolicy.json	73
policyDefinitions/Storage/audit-diagnostic-setting-for-selected-resource-types/azurepolicy.parameters.json	29
policyDefinitions/Storage/audit-diagnostic-setting-for-selected-resource-types/azurepolicy.rules.json	28
policyDefinitions/Storage/audit-storage-accounts-with-unrestricted-network-access/azurepolicy.json	53
policyDefinitions/Storage/audit-storage-accounts-with-unrestricted-network-access/azurepolicy.parameters.json	15
policyDefinitions/Storage/audit-storage-accounts-with-unrestricted-network-access/azurepolicy.rules.json	25
policyDefinitions/Storage/audit-storage-encryptionwithouthsm/azurepolicy.json	52
policyDefinitions/Storage/audit-storage-encryptionwithouthsm/azurepolicy.parameters.json	14
policyDefinitions/Storage/audit-storage-encryptionwithouthsm/azurepolicy.rules.json	25
policyDefinitions/Storage/audit-storageaccounts-should-have-lifecycle-policy-enabled/azurepolicy.json	58
policyDefinitions/Storage/audit-storageaccounts-should-have-lifecycle-policy-enabled/azurepolicy.parameters.json	14
policyDefinitions/Storage/audit-storageaccounts-should-have-lifecycle-policy-enabled/azurepolicy.rules.json	31
policyDefinitions/Storage/configure-blob-soft-delete-on-a-storage-account/azurepolicy.json	90
policyDefinitions/Storage/configure-blob-soft-delete-on-a-storage-account/azurepolicy.parameters.json	26
policyDefinitions/Storage/configure-blob-soft-delete-on-a-storage-account/azurepolicy.rules.json	51
policyDefinitions/Storage/configure-storage-account-to-have-container-soft-delete-enabled/azurepolicy.json	88
policyDefinitions/Storage/configure-storage-account-to-have-container-soft-delete-enabled/azurepolicy.parameters.json	24
policyDefinitions/Storage/configure-storage-account-to-have-container-soft-delete-enabled/azurepolicy.rules.json	51
policyDefinitions/Storage/deny-blob-softdelete-retention/azurepolicy.json	68
policyDefinitions/Storage/deny-blob-softdelete-retention/azurepolicy.parameters.json	22
policyDefinitions/Storage/deny-blob-softdelete-retention/azurepolicy.rules.json	33
policyDefinitions/Storage/deny-deletion-of-storage-account/azurepolicy.json	42
policyDefinitions/Storage/deny-deletion-of-storage-account/azurepolicy.parameters.json	14
policyDefinitions/Storage/deny-deletion-of-storage-account/azurepolicy.rules.json	14
policyDefinitions/Storage/deny-local-authentication-usage/azurepolicy.json	49
policyDefinitions/Storage/deny-local-authentication-usage/azurepolicy.parameters.json	1
policyDefinitions/Storage/deny-local-authentication-usage/azurepolicy.rules.json	21
policyDefinitions/Storage/deny-permanent-delete-for-soft-deleted-items/azurepolicy.json	45
policyDefinitions/Storage/deny-permanent-delete-for-soft-deleted-items/azurepolicy.parameters.json	15
policyDefinitions/Storage/deny-permanent-delete-for-soft-deleted-items/azurepolicy.rules.json	17
policyDefinitions/Storage/deploy-'geo-redundant'-replication-on-storage-account/README.md	16
policyDefinitions/Storage/deploy-'geo-redundant'-replication-on-storage-account/azurepolicy.json	103
policyDefinitions/Storage/deploy-'geo-redundant'-replication-on-storage-account/azurepolicy.parameters.json	15
policyDefinitions/Storage/deploy-'geo-redundant'-replication-on-storage-account/azurepolicy.rules.json	75
policyDefinitions/Storage/deploy-a-data-lifecycle-management-policy-for-storage-accounts/README.md	27
policyDefinitions/Storage/deploy-a-data-lifecycle-management-policy-for-storage-accounts/azurepolicy.json	168
policyDefinitions/Storage/deploy-a-data-lifecycle-management-policy-for-storage-accounts/azurepolicy.parameters.json	38
policyDefinitions/Storage/deploy-a-data-lifecycle-management-policy-for-storage-accounts/azurepolicy.rules.json	117
policyDefinitions/Storage/deploy-sas-expiration-policy-on-storage-account/azurepolicy.json	111
policyDefinitions/Storage/deploy-sas-expiration-policy-on-storage-account/azurepolicy.parameters.json	23
policyDefinitions/Storage/deploy-sas-expiration-policy-on-storage-account/azurepolicy.rules.json	75
policyDefinitions/Storage/deploy-storage-advanced-threat-protection-tag-exemption/azurepolicy.json	95
policyDefinitions/Storage/deploy-storage-advanced-threat-protection-tag-exemption/azurepolicy.parameters.json	21
policyDefinitions/Storage/deploy-storage-advanced-threat-protection-tag-exemption/azurepolicy.rules.json	61
policyDefinitions/Storage/disable-storage-atp-based-on-tag/azurepolicy.json	95
policyDefinitions/Storage/disable-storage-atp-based-on-tag/azurepolicy.parameters.json	21
policyDefinitions/Storage/disable-storage-atp-based-on-tag/azurepolicy.rules.json	61
policyDefinitions/Storage/enable-blob-softdelete-30days/azurepolicy.json	122
policyDefinitions/Storage/enable-blob-softdelete-30days/azurepolicy.parameters.json	23
policyDefinitions/Storage/enable-blob-softdelete-30days/azurepolicy.rules.json	86
policyDefinitions/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.json	191
policyDefinitions/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.parameters.json	52
policyDefinitions/Storage/enforce-or-extend-storage-account-iprules-if-tag-match/azurepolicy.rules.json	126
policyDefinitions/Storage/enforce-storage-account-public-firewall-blocking-access/azurepolicy.json	72
policyDefinitions/Storage/enforce-storage-account-public-firewall-blocking-access/azurepolicy.parameters.json	15
policyDefinitions/Storage/enforce-storage-account-public-firewall-blocking-access/azurepolicy.rules.json	41
policyDefinitions/Storage/enforce-storageaccount-namingconvention/azurepolicy.json	53
policyDefinitions/Storage/enforce-storageaccount-namingconvention/azurepolicy.parameters.json	15
policyDefinitions/Storage/enforce-storageaccount-namingconvention/azurepolicy.rules.json	25
policyDefinitions/Storage/ensure-https-traffic-only-for-storage-account/README.md	16
policyDefinitions/Storage/ensure-https-traffic-only-for-storage-account/azurepolicy.json	61
policyDefinitions/Storage/ensure-https-traffic-only-for-storage-account/azurepolicy.parameters.json	15
policyDefinitions/Storage/ensure-https-traffic-only-for-storage-account/azurepolicy.rules.json	33
policyDefinitions/Storage/ensure-storage-file-encryption/README.md	16
policyDefinitions/Storage/ensure-storage-file-encryption/azurepolicy.json	45
policyDefinitions/Storage/ensure-storage-file-encryption/azurepolicy.parameters.json	15
policyDefinitions/Storage/ensure-storage-file-encryption/azurepolicy.rules.json	17
policyDefinitions/Storage/restrict-cloud-shell-storage-account-creation/azurepolicy.json	45
policyDefinitions/Storage/restrict-cloud-shell-storage-account-creation/azurepolicy.parameters.json	15
policyDefinitions/Storage/restrict-cloud-shell-storage-account-creation/azurepolicy.rules.json	17
policyDefinitions/Storage/restrict-container-immutability-period/azurepolicy.json	45
policyDefinitions/Storage/restrict-container-immutability-period/azurepolicy.parameters.json	15
policyDefinitions/Storage/restrict-container-immutability-period/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-account-access-key-setting-audit/azurepolicy.json	44
policyDefinitions/Storage/storage-account-access-key-setting-audit/azurepolicy.parameters.json	14
policyDefinitions/Storage/storage-account-access-key-setting-audit/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-account-access-key-setting-deny/azurepolicy.json	45
policyDefinitions/Storage/storage-account-access-key-setting-deny/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-access-key-setting-deny/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-account-access-tier/README.md	16
policyDefinitions/Storage/storage-account-access-tier/azurepolicy.json	52
policyDefinitions/Storage/storage-account-access-tier/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-access-tier/azurepolicy.rules.json	24
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-audit/azurepolicy.json	46
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-audit/azurepolicy.parameters.json	14
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-audit/azurepolicy.rules.json	19
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-deny/azurepolicy.json	47
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-deny/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-customer-managed-keys-blob-and-file-storage-deny/azurepolicy.rules.json	19
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-audit/azurepolicy.json	48
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-audit/azurepolicy.parameters.json	14
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-audit/azurepolicy.rules.json	21
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-deny/azurepolicy.json	49
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-deny/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-customer-managed-keys-queue-and-table-storage-deny/azurepolicy.rules.json	21
policyDefinitions/Storage/storage-account-diagnostic-settings-aine/azurepolicy.json	75
policyDefinitions/Storage/storage-account-diagnostic-settings-aine/azurepolicy.parameters.json	28
policyDefinitions/Storage/storage-account-diagnostic-settings-aine/azurepolicy.rules.json	34
policyDefinitions/Storage/storage-account-diagnostic-settings-dine/azurepolicy.json	386
policyDefinitions/Storage/storage-account-diagnostic-settings-dine/azurepolicy.parameters.json	98
policyDefinitions/Storage/storage-account-diagnostic-settings-dine/azurepolicy.rules.json	275
policyDefinitions/Storage/storage-account-firewall-settings-audit/azurepolicy.json	69
policyDefinitions/Storage/storage-account-firewall-settings-audit/azurepolicy.parameters.json	21
policyDefinitions/Storage/storage-account-firewall-settings-audit/azurepolicy.rules.json	35
policyDefinitions/Storage/storage-account-firewall-settings-deny/azurepolicy.json	70
policyDefinitions/Storage/storage-account-firewall-settings-deny/azurepolicy.parameters.json	22
policyDefinitions/Storage/storage-account-firewall-settings-deny/azurepolicy.rules.json	35
policyDefinitions/Storage/storage-account-public-access-should-be-disallowed-block-anonymous-blob-access/azurepolicy.json	56
policyDefinitions/Storage/storage-account-public-access-should-be-disallowed-block-anonymous-blob-access/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-public-access-should-be-disallowed-block-anonymous-blob-access/azurepolicy.rules.json	25
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-audit/azurepolicy.json	52
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-audit/azurepolicy.parameters.json	14
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-audit/azurepolicy.rules.json	25
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-deny/azurepolicy.json	53
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-deny/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-read-access-logs-and-metrics-deny/azurepolicy.rules.json	25
policyDefinitions/Storage/storage-account-tls-setting-audit/azurepolicy.json	52
policyDefinitions/Storage/storage-account-tls-setting-audit/azurepolicy.parameters.json	22
policyDefinitions/Storage/storage-account-tls-setting-audit/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-account-tls-setting-deny/azurepolicy.json	53
policyDefinitions/Storage/storage-account-tls-setting-deny/azurepolicy.parameters.json	23
policyDefinitions/Storage/storage-account-tls-setting-deny/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-account-trusted-azure-services-audit/azurepolicy.json	48
policyDefinitions/Storage/storage-account-trusted-azure-services-audit/azurepolicy.parameters.json	14
policyDefinitions/Storage/storage-account-trusted-azure-services-audit/azurepolicy.rules.json	21
policyDefinitions/Storage/storage-account-trusted-azure-services-deny/azurepolicy.json	49
policyDefinitions/Storage/storage-account-trusted-azure-services-deny/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-account-trusted-azure-services-deny/azurepolicy.rules.json	21
policyDefinitions/Storage/storage-accounts-firewall-ip-rules-may-only-contain-ips-from-a-list-of-approved-ips/azurepolicy.json	61
policyDefinitions/Storage/storage-accounts-firewall-ip-rules-may-only-contain-ips-from-a-list-of-approved-ips/azurepolicy.parameters.json	18
policyDefinitions/Storage/storage-accounts-firewall-ip-rules-may-only-contain-ips-from-a-list-of-approved-ips/azurepolicy.rules.json	30
policyDefinitions/Storage/storage-accounts-should-be-have-minimal-tls-version-1.2/azurepolicy.json	66
policyDefinitions/Storage/storage-accounts-should-be-have-minimal-tls-version-1.2/azurepolicy.parameters.json	28
policyDefinitions/Storage/storage-accounts-should-be-have-minimal-tls-version-1.2/azurepolicy.rules.json	25
policyDefinitions/Storage/storage-accounts-should-enable-aad-authorization-in-the-azure-portal/azurepolicy.json	45
policyDefinitions/Storage/storage-accounts-should-enable-aad-authorization-in-the-azure-portal/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-accounts-should-enable-aad-authorization-in-the-azure-portal/azurepolicy.rules.json	17
policyDefinitions/Storage/storage-accounts-should-prevent-allowed-copy-scope-outside-aad-tenant/azurepolicy.json	48
policyDefinitions/Storage/storage-accounts-should-prevent-allowed-copy-scope-outside-aad-tenant/azurepolicy.parameters.json	15
policyDefinitions/Storage/storage-accounts-should-prevent-allowed-copy-scope-outside-aad-tenant/azurepolicy.rules.json	20
policyDefinitions/Synapse/deploy-diagnostic-settings-for-synapse-spark-pool-to-log-analytics-workspace/azurepolicy.json	186
policyDefinitions/Synapse/deploy-diagnostic-settings-for-synapse-spark-pool-to-log-analytics-workspace/azurepolicy.parameters.json	55
policyDefinitions/Synapse/deploy-diagnostic-settings-for-synapse-spark-pool-to-log-analytics-workspace/azurepolicy.rules.json	118
policyDefinitions/Tags/add-date-created-tag/README.md	3
policyDefinitions/Tags/add-date-created-tag/azurepolicy.json	58
policyDefinitions/Tags/add-date-created-tag/azurepolicy.parameters.json	24
policyDefinitions/Tags/add-date-created-tag/azurepolicy.rules.json	21
policyDefinitions/Tags/append-tag-and-its-value-from-the-resource-group/README.md	25
policyDefinitions/Tags/append-tag-and-its-value-from-the-resource-group/azurepolicy.json	63
policyDefinitions/Tags/append-tag-and-its-value-from-the-resource-group/azurepolicy.parameters.json	23
policyDefinitions/Tags/append-tag-and-its-value-from-the-resource-group/azurepolicy.rules.json	27
policyDefinitions/Tags/audit-resource-groups-missing-tags/README.md	16
policyDefinitions/Tags/audit-resource-groups-missing-tags/azurepolicy.json	50
policyDefinitions/Tags/audit-resource-groups-missing-tags/azurepolicy.parameters.json	20
policyDefinitions/Tags/audit-resource-groups-missing-tags/azurepolicy.rules.json	17
policyDefinitions/Tags/deny-resource-without-tag/azurepolicy.json	48
policyDefinitions/Tags/deny-resource-without-tag/azurepolicy.parameters.json	22
policyDefinitions/Tags/deny-resource-without-tag/azurepolicy.rules.json	13
policyDefinitions/Tags/enforce-tag-and-its-value-on-resource-groups/README.md	16
policyDefinitions/Tags/enforce-tag-and-its-value-on-resource-groups/azurepolicy.json	59
policyDefinitions/Tags/enforce-tag-and-its-value-on-resource-groups/azurepolicy.parameters.json	27
policyDefinitions/Tags/enforce-tag-and-its-value-on-resource-groups/azurepolicy.rules.json	19
policyDefinitions/Tags/enforce-tag-casing-on-resource-groups-and-subscriptions/azurepolicy.json	77
policyDefinitions/Tags/enforce-tag-casing-on-resource-groups-and-subscriptions/azurepolicy.parameters.json	27
policyDefinitions/Tags/enforce-tag-casing-on-resource-groups-and-subscriptions/azurepolicy.rules.json	37
policyDefinitions/Tags/enforce-tag-casing-on-resources/azurepolicy.json	61
policyDefinitions/Tags/enforce-tag-casing-on-resources/azurepolicy.parameters.json	27
policyDefinitions/Tags/enforce-tag-casing-on-resources/azurepolicy.rules.json	21
policyDefinitions/Tags/enforce-tag-name-and-value-casing-on-rg-and-sub/azurepolicy.json	100
policyDefinitions/Tags/enforce-tag-name-and-value-casing-on-rg-and-sub/azurepolicy.parameters.json	42
policyDefinitions/Tags/enforce-tag-name-and-value-casing-on-rg-and-sub/azurepolicy.rules.json	45
policyDefinitions/Tags/inherit-a-tag-from-resource-group-and-overwrite-existing/README.md	17
policyDefinitions/Tags/inherit-a-tag-from-resource-group-and-overwrite-existing/azurepolicy.json	87
policyDefinitions/Tags/inherit-a-tag-from-resource-group-and-overwrite-existing/azurepolicy.parameters.json	37
policyDefinitions/Tags/inherit-a-tag-from-resource-group-and-overwrite-existing/azurepolicy.rules.json	37
policyDefinitions/Tags/required-tag-and-value-set-on-resource-groups/azurepolicy.json	81
policyDefinitions/Tags/required-tag-and-value-set-on-resource-groups/azurepolicy.parameters.json	37
policyDefinitions/Tags/required-tag-and-value-set-on-resource-groups/azurepolicy.rules.json	36
policyDefinitions/Tags/required-tag-and-value-set-on-resources/azurepolicy.json	90
policyDefinitions/Tags/required-tag-and-value-set-on-resources/azurepolicy.parameters.json	46
policyDefinitions/Tags/required-tag-and-value-set-on-resources/azurepolicy.rules.json	36
policyDefinitions/Tags/required-tag-and-value-set-on-subscriptions/azurepolicy.json	62
policyDefinitions/Tags/required-tag-and-value-set-on-subscriptions/azurepolicy.parameters.json	29
policyDefinitions/Tags/required-tag-and-value-set-on-subscriptions/azurepolicy.rules.json	25
policyDefinitions/Tags/validate-date-tag-on-subscription/azurepolicy.json	52
policyDefinitions/Tags/validate-date-tag-on-subscription/azurepolicy.parameters.json	22
policyDefinitions/Tags/validate-date-tag-on-subscription/azurepolicy.rules.json	17
policyDefinitions/Tags/validate-email-tag-on-subscription/azurepolicy.json	59
policyDefinitions/Tags/validate-email-tag-on-subscription/azurepolicy.parameters.json	29
policyDefinitions/Tags/validate-email-tag-on-subscription/azurepolicy.rules.json	17
policyDefinitions/Tags/validate-length-of-subscription-tag/azurepolicy.json	52
policyDefinitions/Tags/validate-length-of-subscription-tag/azurepolicy.parameters.json	22
policyDefinitions/Tags/validate-length-of-subscription-tag/azurepolicy.rules.json	17
policySetDefinitions/multiple-billing-tags/README.md	15
policySetDefinitions/multiple-billing-tags/azurepolicyset.definitions.json	46
policySetDefinitions/multiple-billing-tags/azurepolicyset.json	66
policySetDefinitions/multiple-billing-tags/azurepolicyset.parameters.json	14
policySetDefinitions/regulatorycompliance-nzism/README.md	13
policySetDefinitions/regulatorycompliance-nzism/azurepolicyset.definitions.json	1572
policySetDefinitions/regulatorycompliance-nzism/azurepolicyset.groups.json	908
policySetDefinitions/regulatorycompliance-nzism/azurepolicyset.json	2746
policySetDefinitions/regulatorycompliance-nzism/azurepolicyset.parameters.json	73
policySetDefinitions/skus-for-multiple-types/README.md	16
policySetDefinitions/skus-for-multiple-types/azurepolicyset.definitions.json	18
policySetDefinitions/skus-for-multiple-types/azurepolicyset.json	43
policySetDefinitions/skus-for-multiple-types/azurepolicyset.parameters.json	16