ServiceNow CMDB CI relationship sync: faster, more complete →
Mods
Azure

Policy: Azure > Network > Application Security Group > CMDB

Configure whether to record and synchronize details for the Azure Network application security group into the CMDB.

The CMDB control is responsible for populating and updating all the attributes for that resource type in the Guardrails CMDB. All policies and controls in Guardrails are based around the resource, so usually the CMDB policy is set to "Enforce: Enabled".

If set to Skip then all changes to the CMDB are paused - no new resources will be discovered, no updates will be made and deleted resources will not be removed.

To cleanup resources and stop tracking changes, set this policy to "Enforce: Disabled".

CMDB controls also use the Regions policy associated with the resource. If region is not in Azure > Network > Application Security Group > Regions policy, the CMDB control will delete the resource from the CMDB.

(Note: Setting CMDB to "Skip" will also pause these changes.)

Resource Types

This policy targets the following resource types:

Controls

Policy Specification

Schema Type
string
Default
Enforce: Enabled if Network provider is Registered
Valid Values [YAML]
  • Skip
    
  • Enforce: Enabled
    
  • Enforce: Enabled if Network provider is Registered
    
  • Enforce: Disabled
    
Examples [YAML]
  • Skip
    

Category

In Your Workspace

Developers