 What is Azure Policy? Azure Policy is a declarative way for us to define policy or rules on how our subscription and the resources within behave. There's a couple of components to Azure Policy and this trip me up when I first started getting into it. There's definitions, which is a JSON document that describes the rules that we're going to follow and we can apply those rules to resource types, resource groups. We can apply them to naming and all sorts of things that we can do to define how we want and how we want to constrain behavior. Now, just defining that policy doesn't actually do anything. We need to apply that definition and we do that with an assignment. So we can in a subscription, create a policy definition, assign that policy definition, and then it's going to start either enforcing or auditing. There's a couple of different actions that it can take based on how we want to, how prescriptive we want to be or if we just want to report. Then, we can take those policies if we have a lot of them and we don't want to just manage them individually, we can assign them to what's called initiative. An initiative allows me to group a bunch of policies for a grander purpose and apply that initiative rather than applying a bunch of individual policies. Then, I can see the results of those all within my subscription. So ultimately, Azure Policy gives us a way that we can create a versionable artifact, something that's a text document, I can stick it in a source control, I can deploy it through a CI, CD pipeline, a continuous integration, continuous delivery pipeline, and have effective management of my resources and resource groups in my subscription.