Asset and Configuration Governance

Tagging is an essential way to accurately group assets in their appropriate business groups. Set notifications to identify assets that do not conform with the internal tagging standards defined by your organization.

Examples:

• If any asset is missing the tag Environment, send notification.
• If any asset is untagged, send notification.

Sample Best Practice Policy: This Policy sends an email alert reporting any new Azure assets that are provisioned without being tagged.

Instead of identifying assets that are untagged or otherwise don't comply with your organization's tagging standards, identify specific resource types. Identifying by resource type allows you to take a wider range of actions in addition to sending notifications.

Examples:

• If a virtual machine is missing the tag Environment, stop and deallocate the virtual machine.
• If a virtual machine is untagged, send a notification.

Sample Best Practice Policy: This Policy stops and deallocates any untagged virtual machine and sends sends an email alert.