*
en | de
Azure DataCenter
Timespan
explore our new search
​
Block Deletes Using the New DenyAction Azure Policy Effect
Azure
Dec 10, 2022 7:00 AM

Block Deletes Using the New DenyAction Azure Policy Effect

by HubSite 365 about John Savill's [MVP]

Principal Cloud Solutions Architect

Azure DataCenterAzureSecurity

Lock down the deletion of resources with a new DenyAction policy effect.

Lock down the deletion of resources with a new DenyAction policy effect. Learn how it works and how to use it.

I have manually updated the captions to be as accurate as possible. Enable the subtitles and from there you can translate to your native language via the auto-translate feature in settings! https://youtu.be/v5b53-PgEmI for a demo of using this feature.

Looking for content on a particular topic? Search the channel. If I have something it will be there!

In this Video

0:00 - Introduction

0:45 - DenyAction new effect

3:53 - Looking at an example policy

7:32 - Testing the DenyAction for Delete

9:19 - How to apply this

13:20 - Summary and close

My example policy JSON snippet:

DenyAction (preview)

DenyAction is used to block requests on intended action to resources. The only supported action today is DELETE. This effect will help prevent any accidental deletion of critical resources.

https://learn.microsoft.com/en-us/azure/governance/policy/concepts/effects#denyaction-preview