The policies resource type is an extension resource, which means you can apply it to another resource.
Use the scope
property on this resource to set the scope for this resource. See Set scope on extension resources in ARM templates.
The policies resource type can be deployed with operations that target:
For a list of changed properties in each API version, see change log.
To create a Microsoft.Subscription/policies resource, add the following JSON to your template.
{
"type": "Microsoft.Subscription/policies",
"apiVersion": "2021-10-01",
"name": "default",
"scope": "/",
"blockSubscriptionsIntoTenant": "bool",
"blockSubscriptionsLeavingTenant": "bool",
"exemptedPrincipals": [ "string" ]
}
Name | Description | Value |
---|---|---|
type | The resource type | 'Microsoft.Subscription/policies' |
apiVersion | The resource api version | '2021-10-01' |
name | The resource name | 'default' |
scope | Use when creating an extension resource at a scope that is different than the deployment scope. | For JSON: / . |
blockSubscriptionsIntoTenant | Blocks the entering of subscriptions into user's tenant. | bool |
blockSubscriptionsLeavingTenant | Blocks the leaving of subscriptions from user's tenant. | bool |
exemptedPrincipals | List of user objectIds that are exempted from the set subscription tenant policies for the user's tenant. | string[] |