Open In App

We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy

Microsoft Azure – Create and Assign Policy for “Not Allowed Resource Types”

Pre-requisite: Azure

In this article, we will show you how to deny the resource creation of your choice on azure subscriptions or management groups by implementing a rule policy. By implementing this policy on the specific subscription you can restrict your subscription users to create unwanted resources and also reduce the additional cost incurred. Let’s get started by implementing one.



Pre-requisites: Owner access on subscription or management group is required to implement this policy on target azure subscription scope.

Steps to Create and Assign Policy

Step 1: Log in to Azure Portal.



Step 2: Go to Policy >> then from the menu select Authoring >> Definitions.

Step 3: Type in and search for “Not Allowed Resource Types” and select.

 

Step 4: Click on the Assign to implement the rule.

 

Step 5: Under the section of Basics, select the Scope of the subscription which you want to restrict the creation and enable policy enforcement.

 

Step 6: Switch to the Parameters tab and choose the required resource type to restrict creation with this “Not Allowed Resource Types”. 

Example: We have selected “public clouds” You can select as many as you wish to restrict in the same policy.

 

Step 7: Click on Review + Create.

By applying this policy, If someone tries to public clouds in a subscription it will deny to create it and says it’s against policies in the notification. 

Article Tags :
DevOps
Microsoft Azure
Technical Scripter
Recommended Articles
1. Microsoft Azure - How to a Add a Tag Policy for Resource Group?
2. Microsoft Azure - Create a Custom Policy Initiative in Azure
3. Microsoft Azure- Writing Queries and Creating Dashboards using Azure Resource Graph
4. Microsoft Azure - Get Unused App Service Plans and Resource Groups in Azure Portal
5. Microsoft Azure - Get Azure Policies Definitions and Policy Initiatives Definitions
6. Microsoft Azure - Add CanNotDelete Lock on Azure Resource Group via Portal
7. Microsoft Azure - Enabling Resource Providers for Azure Subscription
8. Microsoft Azure - Count of Azure Resources using Resource Graph Query
9. Microsoft Azure - Check Resource Owner in Azure using KQL
10. Microsoft Azure - Graph Query to Get Properties of Azure VM Resource
11. Microsoft Azure - Using Azure Resource Manager
12. Microsoft Azure - Get Azure Subscription Details Using Resource Graph Query
13. Microsoft Azure -Create a User in Microsoft Entra ID from Azure Portal
14. Microsoft Azure - Get Azure VM Properties using Azure PowerShell
15. Microsoft Azure - RDP to Azure Virtual Machines using Azure Bastion
16. Microsoft Azure - Configure Azure SQL with Azure CLI
17. Microsoft Azure - Get CPU Utilization Data of a Azure VM in Azure Portal
18. Microsoft Azure - Archive Azure VM to Azure Storage Account
19. Microsoft Azure - Check Status of Azure VM using Azure PowerShell
20. Microsoft Azure - Azure VM Disk Space in Percentage using Azure KQL
21. Microsoft Azure - Enable Azure Monitor VM Insights Agent For Azure VM
22. Microsoft Azure - Azure CLI Commands to Manage Azure VMs
23. Microsoft Azure - Manage Azure VMs using Azure PowerShell Commands
24. Microsoft Azure - Query Azure Storage Logs in Azure Monitor Log Analytics
25. Microsoft Azure - Install Azure Command Line Interface (Azure CLI)