Preventing creating resources using a Deny rule
Microsoft Defender for Cloud can prevent creating unhealthy and potentially insecure resources using the Deny effect of Azure Policy.
In this recipe, you will learn how to use the Deny effect of Azure Policy to enforce infrastructure security by preventing the creation of insecure and non-compliant resources.
Getting ready
To complete the steps in this recipe, you must have a resource that will generate one or more recommendations that currently support the enforce option.
The recommendations that can be used with the enforce option are listed in the There's more... section.
Open a web browser and navigate to https://portal.azure.com.
How to do it...
To use the Deny effect of Azure Policy in Microsoft Defender for Cloud, take the following steps:
- In the Azure portal, open Microsoft Defender for Cloud.
- On the left menu, click Recommendations.
- On the Recommendations page, select All recommendations...