IN PREVIEW

New Azure policies to manage certificates across your organization, currently in preview

Updated: November 14, 2019

Large organizations have thousands of certificates in key vaults distributed across thousands of applications and subscriptions. If you are responsible for security and compliance across the organization, you need a simple way to set rules across all these certificates, prove that those rules were followed, and flag violations. Azure policy helps with this. We have added new policies in preview for certificates in Azure Key Vault.

  • Issuer Policy: Flag certificates that are (or are not) issued by a particular issuer.
  • Key Type Policy: Flag certificates that are (or are not) protected by a RSA or ECC key pairs.
  • Key Size Policy: Flag certificates that are (or are not protected) by a key of a certain size.
  • Expiry Policy: Flag certificates that are (or are not) renewed within “X” number of days of their expiry date.
  • Validity Lifespan Policy: Flag certificates that have (or do not have) Validity Lifespan that is less than, or more than, or equal to "X" number of years.

Learn more

  • Key Vault
  • Security

Related Products