{"id":"policy-effect-evaluation-order","text":"Azure Policy effect evaluation order: `disabled` → `append`/`modify` → `deny` → `audit` → `manual` → `auditIfNotExists` → `denyAction`; `append`/`modify` run before `deny` because they may alter the request and prevent a deny.","truth_value":"IN","source":"entries/2026/03/11/policy-effects.md","source_url":"","source_hash":"c0891933480973a9","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"policy-effect-evaluation-order","truth_value":"IN","reason":"premise"}]}}