IN PREVIEW

New Azure policies to manage certificates across your organisation, currently in preview

Updated: 14 November, 2019

Large organisations have thousands of certificates in key vaults distributed across thousands of applications and subscriptions. If you are responsible for security and compliance across the organisation, you need a simple way to set rules across all these certificates, prove that those rules were followed and flag violations. Azure policy helps with this. We have added new policies in preview for certificates in Azure Key Vault.

  • Issuer Policy: Flag certificates that are (or are not) issued by a particular issuer.
  • Key Type Policy: Flag certificates that are (or are not) protected by a RSA or ECC key pairs.
  • Key Size Policy: Flag certificates that are (or are not protected) by a key of a certain size.
  • Expiry Policy: Flag certificates that are (or are not) renewed within “X” number of days of their expiry date.
  • Validity Lifespan Policy: Flag certificates that have (or do not have) Validity Lifespan that is less than, or more than or equal to "X" number of years.

Learn More

  • Key Vault
  • Security

Related Products