Azure Policy - Indexed mode policies pick up resources that don't support tags
For example, I created a custom policy definition that audits if a tag exists. It is set mode=indexed, so only taggable and location based resources should be evaluated.
Here are some things that are coming back as non-compliant:
UK Hoverboards commented
New out of the plastic new Latest Model Genuine UK Certified Hoverboards open . Astonishing Christmas present . Tints: Chrome Gold red Chrome Blue Chrome, Budget hoverboards, unfeeling scene hoverboards and Segways – all at wheely shocking costs.
McAleer, Josh commented
Azure Monitor - Create Alert - Unable to create alerts due to tagging policy. Unable to apply tags to an alert so fails to create alert
Sander van Beek commented
We have the same compliance issues with these resource types using policies with Indexed mode.
If this is so, this is a bug, not a feature request. Have you tried filing an issue with MS Support or on github?
/microsoft.streamanalytics/streamingjobs (Must stop job to add tag)
It also pick up classic resources:
One extra problem we have with these types is the inability to use Remediation task with Policy. Supporting PUT for tags is a nice addition but they also need to support PATCH verb that is used by Policy Remediation tasks.
Chris Sauquillo commented
these are non-compliant in our environment:
Jose Moreno commented
Some more additional tracked resources that are matched by indexed policies:
I also have problems with: