This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi
azure-native.security.getGovernanceRule
Explore with Pulumi AI
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi
Get a specific governance rule for the requested scope by ruleId
Uses Azure REST API version 2022-01-01-preview.
Using getGovernanceRule
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getGovernanceRule(args: GetGovernanceRuleArgs, opts?: InvokeOptions): Promise<GetGovernanceRuleResult>
function getGovernanceRuleOutput(args: GetGovernanceRuleOutputArgs, opts?: InvokeOptions): Output<GetGovernanceRuleResult>def get_governance_rule(rule_id: Optional[str] = None,
                        scope: Optional[str] = None,
                        opts: Optional[InvokeOptions] = None) -> GetGovernanceRuleResult
def get_governance_rule_output(rule_id: Optional[pulumi.Input[str]] = None,
                        scope: Optional[pulumi.Input[str]] = None,
                        opts: Optional[InvokeOptions] = None) -> Output[GetGovernanceRuleResult]func LookupGovernanceRule(ctx *Context, args *LookupGovernanceRuleArgs, opts ...InvokeOption) (*LookupGovernanceRuleResult, error)
func LookupGovernanceRuleOutput(ctx *Context, args *LookupGovernanceRuleOutputArgs, opts ...InvokeOption) LookupGovernanceRuleResultOutput> Note: This function is named LookupGovernanceRule in the Go SDK.
public static class GetGovernanceRule 
{
    public static Task<GetGovernanceRuleResult> InvokeAsync(GetGovernanceRuleArgs args, InvokeOptions? opts = null)
    public static Output<GetGovernanceRuleResult> Invoke(GetGovernanceRuleInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetGovernanceRuleResult> getGovernanceRule(GetGovernanceRuleArgs args, InvokeOptions options)
public static Output<GetGovernanceRuleResult> getGovernanceRule(GetGovernanceRuleArgs args, InvokeOptions options)
fn::invoke:
  function: azure-native:security:getGovernanceRule
  arguments:
    # arguments dictionaryThe following arguments are supported:
- RuleId string
- The governance rule key - unique key for the standard governance rule (GUID)
- Scope string
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
- RuleId string
- The governance rule key - unique key for the standard governance rule (GUID)
- Scope string
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
- ruleId String
- The governance rule key - unique key for the standard governance rule (GUID)
- scope String
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
- ruleId string
- The governance rule key - unique key for the standard governance rule (GUID)
- scope string
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
- rule_id str
- The governance rule key - unique key for the standard governance rule (GUID)
- scope str
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
- ruleId String
- The governance rule key - unique key for the standard governance rule (GUID)
- scope String
- The scope of the Governance rules. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'
getGovernanceRule Result
The following output properties are available:
- AzureApi stringVersion 
- The Azure API version of the resource.
- DisplayName string
- Display name of the governance rule
- Id string
- Resource Id
- Name string
- Resource name
- OwnerSource Pulumi.Azure Native. Security. Outputs. Governance Rule Owner Source Response 
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- RulePriority int
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- RuleType string
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- SourceResource stringType 
- The governance rule source, what the rule affects, e.g. Assessments
- TenantId string
- The tenantId (GUID)
- Type string
- Resource type
- Description string
- Description of the governance rule
- ExcludedScopes List<string>
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- GovernanceEmail Pulumi.Notification Azure Native. Security. Outputs. Governance Rule Email Notification Response 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- IncludeMember boolScopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- IsDisabled bool
- Defines whether the rule is active/inactive
- IsGrace boolPeriod 
- Defines whether there is a grace period on the governance rule
- Metadata
Pulumi.Azure Native. Security. Outputs. Governance Rule Metadata Response 
- The governance rule metadata
- RemediationTimeframe string
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
- AzureApi stringVersion 
- The Azure API version of the resource.
- DisplayName string
- Display name of the governance rule
- Id string
- Resource Id
- Name string
- Resource name
- OwnerSource GovernanceRule Owner Source Response 
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- RulePriority int
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- RuleType string
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- SourceResource stringType 
- The governance rule source, what the rule affects, e.g. Assessments
- TenantId string
- The tenantId (GUID)
- Type string
- Resource type
- Description string
- Description of the governance rule
- ExcludedScopes []string
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- GovernanceEmail GovernanceNotification Rule Email Notification Response 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- IncludeMember boolScopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- IsDisabled bool
- Defines whether the rule is active/inactive
- IsGrace boolPeriod 
- Defines whether there is a grace period on the governance rule
- Metadata
GovernanceRule Metadata Response 
- The governance rule metadata
- RemediationTimeframe string
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
- azureApi StringVersion 
- The Azure API version of the resource.
- displayName String
- Display name of the governance rule
- id String
- Resource Id
- name String
- Resource name
- ownerSource GovernanceRule Owner Source Response 
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- rulePriority Integer
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- ruleType String
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- sourceResource StringType 
- The governance rule source, what the rule affects, e.g. Assessments
- tenantId String
- The tenantId (GUID)
- type String
- Resource type
- description String
- Description of the governance rule
- excludedScopes List<String>
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- governanceEmail GovernanceNotification Rule Email Notification Response 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- includeMember BooleanScopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- isDisabled Boolean
- Defines whether the rule is active/inactive
- isGrace BooleanPeriod 
- Defines whether there is a grace period on the governance rule
- metadata
GovernanceRule Metadata Response 
- The governance rule metadata
- remediationTimeframe String
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
- azureApi stringVersion 
- The Azure API version of the resource.
- displayName string
- Display name of the governance rule
- id string
- Resource Id
- name string
- Resource name
- ownerSource GovernanceRule Owner Source Response 
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- rulePriority number
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- ruleType string
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- sourceResource stringType 
- The governance rule source, what the rule affects, e.g. Assessments
- tenantId string
- The tenantId (GUID)
- type string
- Resource type
- description string
- Description of the governance rule
- excludedScopes string[]
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- governanceEmail GovernanceNotification Rule Email Notification Response 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- includeMember booleanScopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- isDisabled boolean
- Defines whether the rule is active/inactive
- isGrace booleanPeriod 
- Defines whether there is a grace period on the governance rule
- metadata
GovernanceRule Metadata Response 
- The governance rule metadata
- remediationTimeframe string
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
- azure_api_ strversion 
- The Azure API version of the resource.
- display_name str
- Display name of the governance rule
- id str
- Resource Id
- name str
- Resource name
- owner_source GovernanceRule Owner Source Response 
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- rule_priority int
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- rule_type str
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- source_resource_ strtype 
- The governance rule source, what the rule affects, e.g. Assessments
- tenant_id str
- The tenantId (GUID)
- type str
- Resource type
- description str
- Description of the governance rule
- excluded_scopes Sequence[str]
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- governance_email_ Governancenotification Rule Email Notification Response 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- include_member_ boolscopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- is_disabled bool
- Defines whether the rule is active/inactive
- is_grace_ boolperiod 
- Defines whether there is a grace period on the governance rule
- metadata
GovernanceRule Metadata Response 
- The governance rule metadata
- remediation_timeframe str
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
- azureApi StringVersion 
- The Azure API version of the resource.
- displayName String
- Display name of the governance rule
- id String
- Resource Id
- name String
- Resource name
- ownerSource Property Map
- The owner source for the governance rule - e.g. Manually by user@contoso.com - see example
- rulePriority Number
- The governance rule priority, priority to the lower number. Rules with the same priority on the same scope will not be allowed
- ruleType String
- The rule type of the governance rule, defines the source of the rule e.g. Integrated
- sourceResource StringType 
- The governance rule source, what the rule affects, e.g. Assessments
- tenantId String
- The tenantId (GUID)
- type String
- Resource type
- description String
- Description of the governance rule
- excludedScopes List<String>
- Excluded scopes, filter out the descendants of the scope (on management scopes)
- governanceEmail Property MapNotification 
- The email notifications settings for the governance rule, states whether to disable notifications for mangers and owners
- includeMember BooleanScopes 
- Defines whether the rule is management scope rule (master connector as a single scope or management scope)
- isDisabled Boolean
- Defines whether the rule is active/inactive
- isGrace BooleanPeriod 
- Defines whether there is a grace period on the governance rule
- metadata Property Map
- The governance rule metadata
- remediationTimeframe String
- Governance rule remediation timeframe - this is the time that will affect on the grace-period duration e.g. 7.00:00:00 - means 7 days
Supporting Types
GovernanceRuleEmailNotificationResponse    
- DisableManager boolEmail Notification 
- Defines whether manager email notifications are disabled
- DisableOwner boolEmail Notification 
- Defines whether owner email notifications are disabled
- DisableManager boolEmail Notification 
- Defines whether manager email notifications are disabled
- DisableOwner boolEmail Notification 
- Defines whether owner email notifications are disabled
- disableManager BooleanEmail Notification 
- Defines whether manager email notifications are disabled
- disableOwner BooleanEmail Notification 
- Defines whether owner email notifications are disabled
- disableManager booleanEmail Notification 
- Defines whether manager email notifications are disabled
- disableOwner booleanEmail Notification 
- Defines whether owner email notifications are disabled
- disable_manager_ boolemail_ notification 
- Defines whether manager email notifications are disabled
- disable_owner_ boolemail_ notification 
- Defines whether owner email notifications are disabled
- disableManager BooleanEmail Notification 
- Defines whether manager email notifications are disabled
- disableOwner BooleanEmail Notification 
- Defines whether owner email notifications are disabled
GovernanceRuleMetadataResponse   
- created_by str
- Governance rule Created by object id (GUID)
- created_on str
- Governance rule creation date
- updated_by str
- Governance rule last updated by object id (GUID)
- updated_on str
- Governance rule last update date
GovernanceRuleOwnerSourceResponse    
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi