What is Azure Policy?
Azure Policy is a service that you use to create, assign, and manage policy definitions. Policy definitions impose different rules and actions on your resources, so that those resources remain in compliance with your corporate standards and service-level agreements. The policy focuses on both the properties of resources during deployment and for existing resources. It performs an assessment of your resources, checking those resources that don't conform to your policy definitions.
In summary, you use Azure Policy to:
- Enforce compliance by:
- Turning on built-in policies or building custom policies for all resource types.
- Performing real-time policy evaluation and enforcement.
- Performing periodic and on-demand compliance evaluation.
- Implementing virtual machine In-Guest Policy.
- Apply policies at scale
- Apply policies to a Management Group with control across your entire organization.
- Apply multiple policies and aggregate policy states with policy initiative.
- Handle exclusion scopes
- Remediation
- Real-time remediation.
- Remediation on existing resources.