azure_policy_assignment

definition_version

Type: STRING
Provider name: properties.definitionVersion
Description: The version of the policy definition to use.

description

Type: STRING
Provider name: properties.description
Description: This message will be part of response in case of policy violation.

display_name

Type: STRING
Provider name: properties.displayName
Description: The display name of the policy assignment.

effective_definition_version

Type: STRING
Provider name: properties.effectiveDefinitionVersion
Description: The effective version of the policy definition in use. This is only present if requested via the $expand query parameter.

enforcement_mode

Type: STRING
Provider name: properties.enforcementMode
Description: The policy assignment enforcement mode. Possible values are Default and DoNotEnforce.

id

Type: STRING
Provider name: id
Description: The ID of the policy assignment.

identity

Type: STRUCT
Provider name: identity
Description: The managed identity associated with the policy assignment.

  • principal_id
    Type: STRING
    Provider name: principalId
    Description: The principal ID of the resource identity. This property will only be provided for a system assigned identity
  • tenant_id
    Type: STRING
    Provider name: tenantId
    Description: The tenant ID of the resource identity. This property will only be provided for a system assigned identity
  • type
    Type: STRING
    Provider name: type
    Description: The identity type. This is the only required field when adding a system or user assigned identity to a resource.

latest_definition_version

Type: STRING
Provider name: properties.latestDefinitionVersion
Description: The latest version of the policy definition available. This is only present if requested via the $expand query parameter.

location

Type: STRING
Provider name: location
Description: The location of the policy assignment. Only required when utilizing managed identity.

name

Type: STRING
Provider name: name
Description: The name of the policy assignment.

not_scopes

Type: UNORDERED_LIST_STRING
Provider name: properties.notScopes
Description: The policy’s excluded scopes.

overrides

Type: UNORDERED_LIST_STRUCT
Provider name: properties.overrides
Description: The policy property value override.

  • kind
    Type: STRING
    Provider name: kind
    Description: The override kind.
  • selectors
    Type: UNORDERED_LIST_STRUCT
    Provider name: selectors
    Description: The list of the selector expressions.
    • in
      Type: UNORDERED_LIST_STRING
      Provider name: in
      Description: The list of values to filter in.
    • kind
      Type: STRING
      Provider name: kind
      Description: The selector kind.
    • not_in
      Type: UNORDERED_LIST_STRING
      Provider name: notIn
      Description: The list of values to filter out.
  • value
    Type: STRING
    Provider name: value
    Description: The value to override the policy property.

parameters

Type: MAP_STRING_STRING
Provider name: properties.parameters
Description: The parameter values for the assigned policy rule. The keys are the parameter names.

policy_definition_id

Type: STRING
Provider name: properties.policyDefinitionId
Description: The ID of the policy definition or policy set definition being assigned.

resource_group

Type: STRING

resource_selectors

Type: UNORDERED_LIST_STRUCT
Provider name: properties.resourceSelectors
Description: The resource selector list to filter policies by resource properties.

  • name
    Type: STRING
    Provider name: name
    Description: The name of the resource selector.
  • selectors
    Type: UNORDERED_LIST_STRUCT
    Provider name: selectors
    Description: The list of the selector expressions.
    • in
      Type: UNORDERED_LIST_STRING
      Provider name: in
      Description: The list of values to filter in.
    • kind
      Type: STRING
      Provider name: kind
      Description: The selector kind.
    • not_in
      Type: UNORDERED_LIST_STRING
      Provider name: notIn
      Description: The list of values to filter out.

scope

Type: STRING
Provider name: properties.scope
Description: The scope for the policy assignment.

subscription_id

Type: STRING

subscription_name

Type: STRING

system_data

Type: STRUCT
Provider name: systemData
Description: The system metadata relating to this resource.

  • created_at
    Type: STRING
    Provider name: createdAt
    Description: The timestamp of resource creation (UTC).
  • created_by
    Type: STRING
    Provider name: createdBy
    Description: The identity that created the resource.
  • created_by_type
    Type: STRING
    Provider name: createdByType
    Description: The type of identity that created the resource.
  • last_modified_at
    Type: STRING
    Provider name: lastModifiedAt
    Description: The timestamp of resource last modification (UTC)
  • last_modified_by
    Type: STRING
    Provider name: lastModifiedBy
    Description: The identity that last modified the resource.
  • last_modified_by_type
    Type: STRING
    Provider name: lastModifiedByType
    Description: The type of identity that last modified the resource.

tags

Type: UNORDERED_LIST_STRING

type

Type: STRING
Provider name: type
Description: The type of the policy assignment.