In Today’s article, we are going over the process to manage Azure Policies.
We can assign role-based access control (RBAC) in the Azure Resource Manager and it is a great tool to delegate and implement the least privileges principle in Microsoft Azure. However, that is not the only service available to restrict and define boundaries in Microsoft Azure. We can also take advantage of Azure Policy services. Azure Policies are evaluated when creating Azure Resources and they allow the organization to check which resources are compliant or not with the existent policies. We can take advantage of Azure Policies to create an extra layer of security and implement policies to a predefined scope that could be a Subscription, Management Group, or a Resource Group. By combining Azure Policies with RBAC, we will have a more robust security in place.
Read more at the source.