Azure Policy Recommended Practices
Azure Policy has multiple uses including general governance, monitoring setup, security, and compliance. It should not be used to deal with items better handled with role-based access control (RBAC). The following rules codify this: Prohibit anybody and any service from doing something: Azure Policy. Prohibit specific users and service principals from doing something: RBAC. Note: …