The actions that can be performed on a policy will be shown when you hover your mouse on a policy. The list of actions depends on the scope of the policy (Marketplace, Shared) and the RBAC access for the user.

Actions ActionName Action Description Marketplace Polices Shared Polices
View Schedules Will redirect to Schedules page and filters the schedules by selected Policy Yes Yes
View Executions Will redirect to Job history page and filters the Jobs by selected Policy Yes Yes
Execute Executes the policy immediately and redirects to “Job history” where you can see the execution result Yes Yes
Edit Modifies the properties, content, metadata and remediation details of the Policy (same as Policy Create workflow) No Yes
Schedule Similar to Execute but schedules the execution to be run later once/multiple times Yes Yes
Delete Deletes the Policy No Yes

View Schedules

Lists all policy execution schedules of the current tenant. The tabs at the top right represents the schedule status. You can see 2 tabs: Upcoming and Past.

Upcoming” will list the schedules which are active and are to be executed in future. “Past” will list the schedules which were already executed. A sample screenshot is shown below:

Policy Schedules page has search and filter functions to help quickly look for the schedules. The Search bar is available just above the schedules list. To Filter Jobs, you can click on the “Filter” icon placed to the right end above the Schedule detail tab.

Policy Schedules list show the following columns in the list.

    • Schedule Name – Name of the schedule
    • Policy – Name of the Policy Scheduled
    • Recurrence – Recurrence of the Schedule (Once/ Daily / Weekly / Monthly / Yearly)
    • Next Run Time – Date and Time of the Next execution
    • Requested By – CoreStack username who created the schedule.

The details of the schedule will be shown on the right panel for the selected schedule from the list. This will show the execution history of the schedule which will redirect to Job history page and filter by this schedule. It also supports the following actions on schedule.

  • Edit (All Occurrences) – Modifies the Schedule and impacts all occurrences
  • Delete (All Occurrences) – Deletes the Schedule and removes all future occurrences
  • Edit Next Occurrence – Modify the execution time for next immediate occurrence alone
  • Delete Next Occurrence – Delete the next immediate occurrence alone

View Executions (Job History)

Lists all policy executions of the current tenant. A sample screenshot is shown below. The tabs at the top right represents the archive status of jobs. You can see 2 tabs: Active Jobs and Archived Jobs.

Policy Job History page offers search and filter functions to help quickly look for the executions. The Search bar is available just above the jobs list. To Filter Jobs, you can click on the “Filter” icon placed to the right end above the Job detail tab.

Policy Job History page also has Archive, Un-Archive and Delete Actions. These actions can be used to have limited number of executions in Job history page.

Policy Jobs list show the following columns in the list.

  • Policy Name – Name of the policy executed
  • Job Name – Name of the Job which is generated by the CoreStack with Policy Name and some random characters.
  • Cloud Accounts – Name of the Cloud Account selected when executing
  • Run Date – Date & Time of the Job execution
  • Type – Execution Type (On-Demand, Scheduled or System)
  • Status – Status of the Job execution.

Policy Job Detail will be shown on clicking Job from the list. This will show two tabs. Inputs and Execution Logs.

Inputs – Cloud Account details and input parameters passed for the execution

Execution Logs – Short list of non-compliant resources from the Cloud Account for the executed Policy. You can click on “VIEW FULL LOG” button to view all the resources.

Execute Policy

Executes the policy against Cloud Accounts and returns the non-compliant resources in ‘Job History’ execution results. Execute requires following inputs:

  • Cloud Account – Cloud Account in which the Policy check is to be done.
  • Cloud Account Additional Info – Scope on Cloud Account (Eg. Resource Group, Location, Region). These details will be prompted based on the policy content. For example, Policies which can configured at subscription level will not require Resource Group.
  • Execution Parameters – Additional parameters from the Policy. Eg. “Azure Allowed Locations” policy will prompt for array of Allowed locations.

Schedule Policy

Schedules the policy execution to be run later once or multiple times. Schedule requires the following details:

  • Name – Name of the schedule
  • Description – Detailed description about the schedule
  • Run – Execution option. Once or Repeat.
  • Schedule Time – Allowed for only Repeat schedules. Policy can be scheduled to execute Daily, Weekly, Monthly and yearly.
  • Cloud Account – Cloud Account need to be used for executions.
  • Cloud Account Additional Info – Scope on Cloud Account (Eg. Resource Group, Location, Region). These details will be prompted based on the policy content. For example, Policies which can configured at subscription level will not require Resource Group.
  • Execution Parameters – Additional parameters from the Policy. Eg. “Azure Allowed Locations” policy will prompt for array of Allowed locations.