π Azure Managed Disk - object.extracts.yaml
- Contextual name: π object.extracts.yaml
- ID:
/types/CA10__CaAzureManagedDisk__c/object.extracts.yaml - Located in: π Azure Managed Disk
Used Inβ
| Logic | Policy | Flags |
|---|---|---|
| π§ prod.logic.yaml π’ | π Azure Managed Disk Data Access Auth Mode is not set to Azure Active Directory π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure Managed Disk Public Network Access is not disabled π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Azure Virtual Machine OS and Data disks are not encrypted with Customer-managed key π’ | π’ x3 |
| π§ prod.logic.yaml π’ | π Unattached Azure Managed Disk is not encrypted with Customer-managed key π’ | π’ x3 |
Contentβ
---
extracts:
# Values: Succeeded, Deploying, Canceled, Failed. Not Nullable. Can't have no access, retrieved via Microsoft.Compute/disks
- name: "CA10__provisioningState__c"
value:
FIELD:
path: "CA10__provisioningState__c"
undeterminedIf:
isEmpty: "Corrupted data. Provisioning State cannot be empty."
# Values: ActiveSAS, ActiveSASFrozen, ActiveUpload, Attached, Frozen, ReadyToUpload, Reserved, Unattached. Not Nullable. Can't have no access, retrieved via Microsoft.Compute/disks
- name: "CA10__diskState__c"
value:
FIELD:
path: "CA10__diskState__c"
undeterminedIf:
isEmpty: "Corrupted data. Disk State cannot be empty."
# Values: ENCRYPTIONATRESTWITHPLATFORMKEY, ENCRYPTIONATRESTWITHCUSTOMERKEY, ENCRYPTIONATRESTWITHPLATFORMANDCUSTOMERKEYS.
- name: "CA10__encryptionType__c"
value:
FIELD:
path: "CA10__encryptionType__c"
undeterminedIf:
isEmpty: "Corrupted data. Encryption Type cannot be empty."
# Values: Enabled, Disabled. Not Nullable. Can't have no access, retrieved via Microsoft.Compute/disks
- name: "CA10__publicNetworkAccess__c"
value:
FIELD:
path: "CA10__publicNetworkAccess__c"
undeterminedIf:
isEmpty: "Corrupted data. Public Network Access cannot be empty."
# Values: AllowAll, AllowPrivate, DenyAll. Not Nullable. Can't have no access, retrieved via Microsoft.Compute/disks
- name: "CA10__networkAccessPolicy__c"
value:
FIELD:
path: "CA10__networkAccessPolicy__c"
undeterminedIf:
isEmpty: "Corrupted data. Public Network Access cannot be empty."
# Values: AzureActiveDirectory, None. Nullable (which equals none). Can't have no access, retrieved via Microsoft.Compute/disks
- name: "CA10__dataAccessAuthMode__c"
value:
FIELD:
path: "CA10__dataAccessAuthMode__c"