Skip to content

Commit

Permalink
updates policy built-ins doc
Browse files Browse the repository at this point in the history
  • Loading branch information
@davidsmatlak
davidsmatlak committed Feb 28, 2025
1 parent de21923 commit 60715a0
Showing 1 changed file with 62 additions and 68 deletions.
130 changes: 62 additions & 68 deletions articles/governance/policy/samples/index.md
View file
Original file line number Diff line number Diff line change
@@ -1,90 +1,84 @@
---
title: Index of policy samples
description: Index of built-ins for Azure Policy. Categories include Tags, Regulatory Compliance, Key Vault, Kubernetes, Guest Configuration, and more.
ms.date: 05/30/2024
title: Index of Azure Policy built-in definitions and initiatives
description: Index of documentation for Azure Policy built-in definitions and initiatives, and built-ins for Regulatory Compliance.
ms.date: 02/28/2025
ms.topic: sample
---

# Azure Policy Samples
# Azure Policy built-ins

This page is an index of Azure Policy built-in policy definitions and language use patterns.
This page is an index of documentation for Azure Policy built-in policy definitions and initiatives, and Regulatory Compliance built-ins that are available in Azure portal.

## Built-ins

- [Policies](./built-in-policies.md)
- [Initiatives](./built-in-initiatives.md)
Azure Policy built-in policies and initiatives and the name links to the documentation.

## Patterns

The following are examples of different patterns using the language and operators in Azure Policy:

- [Logical operators](./pattern-logical-operators.md)
- [Fields](./pattern-fields.md)
- [Parameters](./pattern-parameters.md)
- [Effect details](./pattern-effect-details.md)
- [Using tags](./pattern-tags.md)
- [Value operator](./pattern-value-operator.md)
- [Count operator](./pattern-count-operator.md)
- [Grouping policy definitions in an initiative](./pattern-group-with-initiative.md)
- [Deploying resources with deployIfNotExists](./pattern-deploy-resources.md)
| Name | Description |
| ---- | ---- |
| [Policies](./built-in-policies.md) | Azure Policy built-in definitions. |
| [Initiatives](./built-in-initiatives.md) | Azure Policy built-in initiatives. |

## Regulatory Compliance

The following are the [Regulatory Compliance](../concepts/regulatory-compliance.md) built-ins in
Azure:

- [Australian Government ISM PROTECTED](./australia-ism.md)
- [Canada Federal PBMM](./canada-federal-pbmm.md)
- [CIS Microsoft Azure Foundations Benchmark 1.1.0](./cis-azure-1-1-0.md)
- [CIS Microsoft Azure Foundations Benchmark 1.3.0](./cis-azure-1-3-0.md)
- [CIS Microsoft Azure Foundations Benchmark 1.4.0](./cis-azure-1-4-0.md)
- [CIS Microsoft Azure Foundations Benchmark 2.0.0](./cis-azure-2-0-0.md)
- [CMMC Level 3](./cmmc-l3.md)
- [FedRAMP High](./fedramp-high.md)
- [FedRAMP Moderate](./fedramp-moderate.md)
- [HIPAA HITRUST 9.2](./hipaa-hitrust-9-2.md)
- [IRS 1075 September 2016](./irs-1075-sept2016.md)
- [ISO 27001:2013](./iso-27001.md)
- [Microsoft cloud security benchmark](./azure-security-benchmark.md)
- [Microsoft Cloud for Sovereignty Confidential](./mcfs-baseline-confidential.md)
- [Microsoft Cloud for Sovereignty Global](./mcfs-baseline-global.md)
- [NIST SP 800-53 Rev. 4](./nist-sp-800-53-r4.md)
- [NIST SP 800-53 Rev. 5](./nist-sp-800-53-r5.md)
- [NIST SP 800-171 R2](./nist-sp-800-171-r2.md)
- [NL BIO Cloud Theme](./nl-bio-cloud-theme.md)
- [PCI DSS 3.2.1](./pci-dss-3-2-1.md)
- [PCI DSS 4.0](./pci-dss-4-0.md)
- [RBI ITF Banks v2016](./rbi-itf-banks-2016.md)
- [RBI ITF NBFC v2017](./rbi-itf-nbfc-2017.md)
- [RMIT Malaysia](./rmit-malaysia.md)
- [Spain ENS](./spain-ens.md)
- [System and Organization Controls (SOC) 2](./soc-2.md)
- [SWIFT CSP-CSCF v2021](./swift-csp-cscf-2021.md)
- [SWIFT CSP-CSCF v2022](./swift-csp-cscf-2022.md)
- [UK OFFICIAL and UK NHS](./ukofficial-uknhs.md)
Azure. The name links to the documentation and you can use the ID to find the initiative in Azure Policy definitions in the portal.

| Name | ID |
| ---- | ---- |
| [Australian Government ISM PROTECTED](./australia-ism.md) | `27272c0b-c225-4cc3-b8b0-f2534b093077` |
| [Canada Federal PBMM](./canada-federal-pbmm.md) | `4c4a5f27-de81-430b-b4e5-9cbd50595a87` |
| [CIS Microsoft Azure Foundations Benchmark 1.1.0](./cis-azure-1-1-0.md) | `1a5bb27d-173f-493e-9568-eb56638dde4d` |
| [CIS Microsoft Azure Foundations Benchmark 1.3.0](./cis-azure-1-3-0.md) | `612b5213-9160-4969-8578-1518bd2a000c` |
| [CIS Microsoft Azure Foundations Benchmark 1.4.0](./cis-azure-1-4-0.md) | `c3f5c4d9-9a1d-4a99-85c0-7f93e384d5c5` |
| [CIS Microsoft Azure Foundations Benchmark 2.0.0](./cis-azure-2-0-0.md) | `06f19060-9e68-4070-92ca-f15cc126059e` |
| [CMMC Level 3](./cmmc-l3.md) | `b5629c75-5c77-4422-87b9-2509e680f8de` |
| [FedRAMP High](./fedramp-high.md) | `d5264498-16f4-418a-b659-fa7ef418175f` |
| [FedRAMP Moderate](./fedramp-moderate.md) | `e95f5a9f-57ad-4d03-bb0b-b1d16db93693` |
| [HIPAA HITRUST](./hipaa-hitrust-9-2.md) | `a169a624-5599-4385-a696-c8d643089fab` |
| [IRS 1075 September 2016](./irs-1075-sept2016.md) | `105e0327-6175-4eb2-9af4-1fba43bdb39d` |
| [ISO 27001:2013](./iso-27001.md) | `89c6cddc-1c73-4ac1-b19c-54d1a15a42f2` |
| [Microsoft cloud security benchmark](./azure-security-benchmark.md) | `1f3afdf9-d0c9-4c3d-847f-89da613e70a8` |
| [Microsoft Cloud for Sovereignty Confidential](./mcfs-baseline-confidential.md) | `03de05a4-c324-4ccd-882f-a814ea8ab9ea` |
| [Microsoft Cloud for Sovereignty Global](./mcfs-baseline-global.md) | `c1cbff38-87c0-4b9f-9f70-035c7a3b5523` |
| [NIST SP 800-53 Rev. 4](./nist-sp-800-53-r4.md) | `cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f` |
| [NIST SP 800-53 Rev. 5](./nist-sp-800-53-r5.md) | `179d1daa-458f-4e47-8086-2a68d0d6c38f` |
| [NIST SP 800-171 R2](./nist-sp-800-171-r2.md) | `03055927-78bd-4236-86c0-f36125a10dc9` |
| [NL BIO Cloud Theme](./nl-bio-cloud-theme.md) | `6ce73208-883e-490f-a2ac-44aac3b3687f` |
| [PCI DSS 3.2.1](./pci-dss-3-2-1.md) | `496eeda9-8f2f-4d5e-8dfd-204f0a92ed41` |
| [PCI DSS 4.0](./pci-dss-4-0.md) | `c676748e-3af9-4e22-bc28-50feed564afb` |
| [RBI ITF Banks v2016](./rbi-itf-banks-2016.md) | `d0d5578d-cc08-2b22-31e3-f525374f235a` |
| [RBI ITF NBFC v2017](./rbi-itf-nbfc-2017.md) | `7f89f09c-48c1-f28d-1bd5-84f3fb22f86c` |
| [RMIT Malaysia](./rmit-malaysia.md) | `97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6` |
| [Spain ENS](./spain-ens.md) | `175daf90-21e1-4fec-b745-7b4c909aa94c` |
| [System and Organization Controls (SOC) 2](./soc-2.md) | `4054785f-702b-4a98-9215-009cbd58b141` |
| [SWIFT CSP-CSCF v2021](./swift-csp-cscf-2021.md) | `abf84fac-f817-a70c-14b5-47eec767458a` |
| [SWIFT CSP-CSCF v2022](./swift-csp-cscf-2022.md) | `7bc7cd6c-4114-ff31-3cac-59be3157596d` |
| [UK OFFICIAL and UK NHS](./ukofficial-uknhs.md) | `3937f550-eedd-4639-9c5e-294358be442e` |

## Regulatory Compliance Azure Government

The following are the [Regulatory Compliance](../concepts/regulatory-compliance.md) built-ins in
Azure Government:

- [CIS Microsoft Azure Foundations Benchmark v1.1.0](./gov-cis-azure-1-1-0.md)
- [CIS Microsoft Azure Foundations Benchmark v1.3.0](./gov-cis-azure-1-3-0.md)
- [CMMC Level 3](./gov-cmmc-l3.md)
- [FedRAMP High](./gov-fedramp-high.md)
- [FedRAMP Moderate](./gov-fedramp-moderate.md)
- [IRS 1075 September 2016](./gov-irs-1075-sept2016.md)
- [ISO 27001:2013](./gov-iso-27001.md)
- [Microsoft cloud security benchmark](./gov-azure-security-benchmark.md)
- [NIST SP 800-53 Rev. 4](./gov-nist-sp-800-53-r4.md)
- [NIST SP 800-53 Rev. 5](./gov-nist-sp-800-53-r5.md)
- [NIST SP 800-171 R2](./gov-nist-sp-800-171-r2.md)
- [System and Organization Controls (SOC) 2](./gov-soc-2.md)

## Other Samples

- [GitHub - Community Policy repo](https://github.com/Azure/Community-Policy)
Azure Government. The name links to the documentation and you can use the ID to find the initiative in Azure Policy definitions in the portal. The government initiatives use the same ID but might differ from Azure initiatives by which policy definitions are included. The initiative version numbers between Azure and Azure Government are also different.

| Name | ID |
| ---- | ---- |
| [CIS Microsoft Azure Foundations Benchmark v1.1.0](./gov-cis-azure-1-1-0.md) | `1a5bb27d-173f-493e-9568-eb56638dde4d` |
| [CIS Microsoft Azure Foundations Benchmark v1.3.0](./gov-cis-azure-1-3-0.md) | `612b5213-9160-4969-8578-1518bd2a000c` |
| [CMMC Level 3](./gov-cmmc-l3.md) | `b5629c75-5c77-4422-87b9-2509e680f8de` |
| [FedRAMP High](./gov-fedramp-high.md) | `d5264498-16f4-418a-b659-fa7ef418175f` |
| [FedRAMP Moderate](./gov-fedramp-moderate.md) | `e95f5a9f-57ad-4d03-bb0b-b1d16db93693` |
| [IRS 1075 September 2016](./gov-irs-1075-sept2016.md) | `105e0327-6175-4eb2-9af4-1fba43bdb39d` |
| [ISO 27001:2013](./gov-iso-27001.md) | `89c6cddc-1c73-4ac1-b19c-54d1a15a42f2` |
| [Microsoft cloud security benchmark](./gov-azure-security-benchmark.md) | `1f3afdf9-d0c9-4c3d-847f-89da613e70a8` |
| [NIST SP 800-53 Rev. 4](./gov-nist-sp-800-53-r4.md) | `cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f` |
| [NIST SP 800-53 Rev. 5](./gov-nist-sp-800-53-r5.md) | `179d1daa-458f-4e47-8086-2a68d0d6c38f` |
| [NIST SP 800-171 R2](./gov-nist-sp-800-171-r2.md) | `03055927-78bd-4236-86c0-f36125a10dc9` |
| [System and Organization Controls (SOC) 2](./gov-soc-2.md) | `4054785f-702b-4a98-9215-009cbd58b141` |

## Next steps

- Share and collaborate on making custom policies in the [GitHub community policy repository](https://github.com/Azure/Community-Policy).
- See the built-ins on the [Azure Policy GitHub repo](https://github.com/Azure/azure-policy).
- Review the [Azure Policy definition structure](../concepts/definition-structure-basics.md).
- Review [Understanding policy effects](../concepts/effect-basics.md).

0 comments on commit 60715a0

Please sign in to comment.