Loading...

Prevent accidental deletions at scale using Azure Policy

Prevent accidental deletions at scale using Azure Policy

Azure Policy is happy to introduce a new preview effect: DenyAction! Unlike other effects that focus on resource configurations, the denyAction effect will block requests based on intended action, regardless of user permissions. Today this new effect supports deletions, but it's set up to handle other types of actions in the future. With the at-scale power of Azure Policy and the ability to block delete calls, denyAction allows you to prevent accidental deletions of your critical resources.

Sample denyAction definition that blocks delete calls on any virtual machines:

You are able to create these definitions in Portal or API. All denyAction definitions will have a compliance state of 'Not Started' during preview, and will introduce a new compliance state of 'Protected' for GA. Check out the documentation to learn more about how this effect works, and keep an eye out for the GA of this effect in the coming months!

Published on: December 28, 2022

Azure Governance and Management Blog articles

Azure Governance and Management Blog articles

Azure Governance and Management Blog articles

Share post:

Related posts

Virtual appointments with Azure Communication Services

3 days ago

Fabric Mirroring for Azure Cosmos DB: Public Preview Refresh Now Live with New Features

We’re thrilled to announce the latest refresh of Fabric Mirroring for Azure Cosmos DB, now available with several powerful new features that e...

3 days ago

Power Platform – Use Azure Key Vault secrets with environment variables

We are announcing the ability to use Azure Key Vault secrets with environment variables in Power Platform. This feature will reach general ava...

3 days ago

Webinar: Real-Time Translation of Dynamics 365 Data with our New App Powered by Azure AI Translator!

3 days ago

Validating Azure Key Vault Access Securely in Fabric Notebooks

Working with sensitive data in Microsoft Fabric requires careful handling of secrets, especially when collaborating externally. In a recent cu...

3 days ago

Azure Developer CLI (azd) – May 2025

This post announces the May release of the Azure Developer CLI (`azd`). The post Azure Developer CLI (azd) – May 2025 appeared first on ...

4 days ago

Azure Cosmos DB with DiskANN Part 4: Stable Vector Search Recall with Streaming Data

Vector Search with Azure Cosmos DB In Part 1 and Part 2 of this series, we explored vector search with Azure Cosmos DB and best practices for...

4 days ago

General Availability for Data API in vCore-based Azure Cosmos DB for MongoDB

Title: General Availability for Data API in vCore-based Azure Cosmos DB for MongoDB We’re excited to announce the general availability of the ...

4 days ago

Efficiently and Elegantly Modeling Embeddings in Azure SQL and SQL Server

Storing and querying text embeddings in a database it might seem challenging, but with the right schema design, it’s not only possible, ...

5 days ago

Analyzing email logs in Azure Communication Services

5 days ago

Blog image

Azure Governance and Management Blog articles

Azure Governance and Management Blog articles

Learn more

More from this blog

Azure Landing Zones - Policy Refresh Q1 FY25

ALZ - Policy Refresh Q1 FY25 is here! As you may be aware, the ALZ team release cadence is now on qu...

Custom Policy- Reusable Logs Templates

Reusable Templates for Sending Logs to Log Analytics Workspace Challenge: When it come...

Enhancements to Azure Monitor Baseline Alerts for Azure Landing Zones

Introduction Welcome to our latest blog post where we dive into a number of exciting new key ...

Introducing the Azure Policy Community Repo

Introducing the Azure Policy Community Repo What is the Azure Policy Community Repo? The Azu...

General Availability: Vaulted backups for Azure Blob Storage

We are excited to announce the general availability of vaulted backups for Azure Blob Storage. Vault...

Azure Update Manager to support CIS hardened images among other images

What’s coming in by end of July 2024: Azure Update Manager will add support for 35 CIS hardened imag...

Mastering your cloud journey: Essentials to Innovating, Migrating and Modernizing, on Azure

We are living during a time of rapid growth in AI technologies and seeing cloud complexity increase ...

Public Preview Announcement: Azure Policy Built-in Versioning

Welcome to a new era of policy management, where policy definitions are more agile, adaptable, and a...

Announcing Azure Monitoring Agent support in Azure Landing Zones

Introduction Hello and welcome to another blog post about Azure Landing Zones, the best prac...

Announcing the General Availability of Change Actor

Change Analysis Identifying who made a change to your Azure resources and how the change was m...

Relevant topics:

Azure

Stay up to date with latest Microsoft Dynamics 365 and Power Platform news!

* Yes, I agree to the privacy policy