Question

Is it possible to apply Azure Policy to resourceTypes created through a custom resource provider?

For example, if I create a resourceType “Person” and add a few resources of that type via ARM or CLI. Am I able to run a policy against the resources that I create?

{
  "properties": {
    "resourceTypes": [
      {
        "name": "Person",
        "routingType": "Proxy",
        "endpoint": "https://{endpointURL}/"
      }
    ]
  },
  "location": "eastus"
}

A policy like the one below doesn't find any resources even though I can clearly see the resource using az resource show --ids /subscriptions/mySubId/resourceGroups/myRG/providers/Microsoft.CustomProviders/resourceProviders/myProvider/person/mike

{
  "policyRule": {
    "if": {
      "allOf": [
        {
          "field": "type",
          "equals": "Microsoft.CustomProviders/resourceProviders/person"
        },
        {
          "not": {
            "field": "name",
            "equals": "mike"
          }
        }
      ]
    },
    "then": {
      "effect": "audit"
    }
  }
}

question from:https://stackoverflow.com/questions/65904599/is-it-possible-to-apply-azure-policy-to-resourcetypes-created-through-a-custom-r

Answer 1

Waitting for answers