Similar to the available custom resource rules for VM Size, OS Disk Type and Image Drop Down selection rules, we would also like the ability to set custom resource rules on host pools to allow them only to select certain VNets or certain Resource Groups. This would prevent admins from building resources in improper regions with misaligned configurations.
Resource Rules for "Network" and "Resource Group"
5
Thanks Brian Kraemer, we will capture this request.
I agree completely with this.
With Azure Policy, you can prevent admins in Nerdio from creating VMs outside of certain subnets by making deny rules based on Resource Groups (e.g. only allowing Marketing Dept. VMs into the Marketing Dept. subnet, only if it’s in the Marketing Dept. Resource Group – and not in the Security guard’s subnet and Resource Group), but it does not prevent the admin from choosing the wrong Resource Group to begin with.
Subnets and Resource Groups should have the option to be restricted to certain Workspaces.
Please sign in to leave a comment.
Comments (2 comments)