All Collections
Integrations
Exclusion tags within Azure
Exclusion tags within Azure

Implementing exclusion tags for specific resources

Ashley Hyman avatar
Written by Ashley Hyman
Updated over a week ago

HERE'S WHY

You may have resources within Azure that should always be ignored by Drata's compliance automation tests. Sometimes these are new resource that spin up each day. The exclusion tag functionality will allow you to exclude these resources with a tag within Azure.

HERE'S HOW

We support tag-based exclusion of Azure resources from Drata's monitors. In Azure, these tags should have a Name field of DrataExclude. This is case-sensitive; drataexclude will not pass.

Container instances

1. You can add a tag during the initial configuration of a resource.

User-uploaded Image

2. You can also add tags to existing resources. From the Container Instances dashboard, choose the offending resource, then navigate to its Tags menu.

3. Add a tag with the name DrataExclude, then click Apply or Review + create to save your changes.

User-uploaded Image

Storage accounts

1. You can add a tag during the initial configuration of a storage account.

User-uploaded Image
User-uploaded Image

2. When choosing the resource type, ensure at least "Storage account" is checked.

3. You can also add tags to existing resources. From the Storage Accounts dashboard, choose the offending resource, then navigate to its Tags menu.

User-uploaded Image
User-uploaded Image

4. Add a tag with the name DrataExclude, then click Apply or Review + create to save your changes.

Kubernetes Clusters

  1. You can add a tag during the initial configuration of a Kubernetes cluster.

  2. In Azure, go to Kubernetes services.

  3. Click + Create, then navigate to the Tags tab.

  4. You can also add tags to existing resources. From the Kubernetes services dashboard, choose the offending resource, then navigate to its Tags menu.

  5. Add a tag with the name DrataExclude, then click Apply or Review + create to save your changes.

Virtual Machines

  1. You can add a tag during the initial configuration of a virtual machine.

  2. In Azure, go to Virtual machines.

  3. Click + Create, then navigate to the Tags tab.

  4. You can also add tags to existing resources. From the Virtual machines dashboard, choose the offending resource, then navigate to its Tags menu.

  5. Add a tag with the name DrataExclude, then click Apply or Review + create to save your changes.

Did this answer your question?