1. Create Initiative Definitions
An Initiative Definition is a collection of one or more Azure Policy definitions that can be managed and assigned as a single unit.
Key points:
-
Each Initiative can include up to 100 policies.
-
Planning is needed to organize policies logically (e.g., by compliance standard or resource type).
Steps to create an Initiative Definition:
-
Go to the Azure portal → Policy.
-
Under Authoring, select Definitions.
-
Click + Initiative Definition.
-
Provide:
-
Name
-
Description
-
Category (create a new one if needed)
-
-
From the right panel, add policies:
-
Example: Allowed locations policy
-
Add additional policies as needed
-
-
Save your Initiative Definition.
-
Assign the initiative to a subscription or optionally a resource group.
2. Scope the Initiative
-
Scope determines which resources are evaluated by your policy assignment.
-
Can be set at:
-
Subscription level
-
Resource Group level
-
-
Optionally, you can exclude specific resources within the scope.
3. Assign a Policy
Steps to assign a policy:
-
Go to the Azure portal → Policy → Assignments.
-
Click Assign Policy.
-
Set the Scope (Subscription or Resource Group).
-
Select the Policy Definition (e.g., Allowed locations).
-
Configure Parameters (e.g., select allowed locations).
-
Review and Create.
Note: Policy evaluation happens about once per hour.
4. Check Compliance
-
Use the Compliance blade in Azure Policy.
-
Shows:
-
Non-compliant initiatives
-
Non-compliant policies
-
Non-compliant resources
-
-
Compliance state is either Compliant or Non-compliant.
5. Remediation Tasks
-
Use the Remediation blade to:
-
See resources that need remediation.
-
Apply corrective actions if your policy supports it.
-
6. Remove Policies or Initiatives
Steps to remove a policy assignment:
-
Go to Assignments.
-
Select the policy → Delete assignment.
Steps to remove an initiative:
-
Go to Initiatives.
-
Select your initiative → Delete initiative.
