Create and Manage Azure Initiative in Azure Portal

00:01

in this video,

00:02

we will create the initiative assignment using Azure portal.

00:07

I will assign this initiative on my subscription level. In the initiative that I chose to assign is the CSCE benchmark for Azure.

00:14

Let's switch to Azure Portal and do that.

00:17

Here I am again in Azure Portal. And in order to assign the initiative, I need to go to the Policy service.

00:26

Let's find the definition for the initiative.

00:29

Click on definitions and

00:31

here I will search for CS.

00:35

This is the C s initiative that is a built in initiative in Azure.

00:40

You can look at all the policies that are included and they all match the C s version 1 10 of the benchmark.

00:53

Now

00:54

let's go on to sign the initiative.

00:57

I'll choose the scope.

00:59

The scope of this assignment will be the subscription.

01:02

I will leave the resource group open or not filled in because I would like the initiative to be evaluating everything which is within the subscription.

01:15

We can do some exclusions, but

01:18

we will do that in our next lecture.

01:23

We will enable enforcement of this initiative.

01:26

This initiative requires two parameters.

01:30

One is the region where the network watchers should be enabled.

01:33

The other one is a list of virtual machine extensions that are approved for use.

01:38

Those are the default ones.

01:42

I will change the location of the Watcher to West us, too.

01:52

I'll go next.

01:55

We'll leave that as a default. To manage the identity.

02:00

We will review the policy initiative and we will click Create.

02:05

What this will do is it will go on a sign on my subscription.

02:15

If we go back to this policy

02:17

and you can see now that the policy initiative is assigned on a subscription level

02:29

in our next video,