AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

Configure Azure File Sync to use private DNS zones

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Configure Azure File Sync to use private DNS zones

06695360-db88-47f6-b976-7500d4297475

Version

1.1.0
Details on versioning

Category

Storage
Microsoft Learn

Description

To access the private endpoint(s) for Storage Sync Service resource interfaces from a registered server, you need to configure your DNS to resolve the correct names to your private endpoint's private IP addresses. This policy creates the requisite Azure Private DNS Zone and A records for the interfaces of your Storage Sync Service private endpoint(s).

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Private DNS Zone Contributor	b12aa53e-6015-4669-85d0-8515ebb3ae7f
Network Contributor	4d97b98b-1d4f-4787-a291-c67834d212e7

Rule aliases

IF (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Network/privateEndpoints/privateLinkServiceConnections[].groupIds[]	Microsoft.Network	privateEndpoints	properties.privateLinkServiceConnections[].properties.groupIds[]	True		False

Rule resource types

IF (1)
Microsoft.Network/privateEndpoints
THEN-Deployment (1)
Microsoft.Network/privateEndpoints/privateDnsZoneGroups

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Configure Azure PaaS services to use private DNS zones	Deploy-Private-DNS-Zones	Network	GA	ALZ

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-03-18 17:53:47	change	Minor (1.0.0 > 1.1.0)
2021-03-02 15:11:40	add	06695360-db88-47f6-b976-7500d4297475

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC