Policy: Azure > Network Watcher > Flow Log > Approved
Determine the action to take when an Azure Network Watcher flow log is not approved based on Azure > Network Watcher > Flow Log > Approved > *
policies.
The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.
For any enforcement actions that specify if new
, e.g., Enforce: Delete unapproved if new
, this control will only take the enforcement actions for resources created within the last 60 minutes.
See Approved for more information.
Resource Types
This policy targets the following resource types:
Related Policies
Controls
Policy Packs
This policy setting is used by the following policy packs:
Policy Specification
Schema Type |
|
---|---|
Default |
|
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/resourceApproved
- tmod:@turbot/azure-networkwatcher#/policy/types/flowLogApproved
- turbot graphql policy-type --id "tmod:@turbot/azure-networkwatcher#/policy/types/flowLogApproved"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-networkwatcher#/policy/types/flowLogApproved"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI