last sync: 2024-May-24 18:03:04 UTC

[Preview]: Recovery Services vaults should use private link

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Preview]: Recovery Services vaults should use private link
Id 11e3da8c-1d68-4392-badd-0ff3c43ab5b0
Version 1.0.0-preview
Details on versioning
Category Site Recovery
Microsoft Learn
Description Azure Private Link lets you connect your virtual network to Azure services without a public IP address at the source or destination. The Private Link platform handles the connectivity between the consumer and services over the Azure backbone network. By mapping private endpoints to Azure Recovery Services vaults, data leakage risks are reduced. Learn more about private links for Azure Site Recovery at: https://aka.ms/HybridScenarios-PrivateLink and https://aka.ms/AzureToAzure-PrivateLink.
Mode Indexed
Type BuiltIn
Preview True
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (4)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.RecoveryServices/vaults/privateEndpointConnections[*] Microsoft.RecoveryServices vaults properties.privateEndpointConnections[*] false
Microsoft.RecoveryServices/vaults/privateEndpointConnections[*].id Microsoft.RecoveryServices vaults properties.privateEndpointConnections[*].id false
Microsoft.RecoveryServices/vaults/privateEndpointConnections[*].privateLinkServiceConnectionState.status Microsoft.RecoveryServices vaults properties.privateEndpointConnections[*].properties.privateLinkServiceConnectionState.status false
Microsoft.RecoveryServices/vaults/privateEndpointConnections[*].provisioningState Microsoft.RecoveryServices vaults properties.privateEndpointConnections[*].properties.provisioningState false
Rule resource types IF (1)
Microsoft.RecoveryServices/vaults
Compliance
The following 2 compliance controls are associated with this Policy definition '[Preview]: Recovery Services vaults should use private link' (11e3da8c-1d68-4392-badd-0ff3c43ab5b0)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
RBI_ITF_NBFC_v2017 6 RBI_ITF_NBFC_v2017_6 RBI IT Framework 6 Business Continuity Planning Business Continuity Planning (BCP) and Disaster Recovery-6 n/a BCP forms a significant part of an organisation's overall Business Continuity Management plan, which includes policies, standards and procedures to ensure continuity, resumption and recovery of critical business processes. BCP shall be designed to minimise the operational, financial, legal, reputational and other material consequences arising from a disaster. NBFC should adopt a Board approved BCP Policy. The functioning of BCP shall be monitored by the Board by way of periodic reports. The CIO shall be responsible for formulation, review and monitoring of BCP to ensure continued effectiveness. The BCP may have the following salient features link 9
RBI_ITF_NBFC_v2017 6.4 RBI_ITF_NBFC_v2017_6.4 RBI IT Framework 6.4 Business Continuity Planning Recovery strategy / Contingency Plan-6.4 n/a NBFCs shall test the BCP either annually or when significant IT or business changes take place to determine if the entity could be recovered to an acceptable level of business within the timeframe stated in the contingency plan. The test should be based on ???worst case scenarios???. The results along with the gap analysis may be placed before the CIO and the Board. The GAP Analysis along with Board???s insight should form the basis for construction of the updated BCP. link 4
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Reserve Bank of India - IT Framework for NBFC 7f89f09c-48c1-f28d-1bd5-84f3fb22f86c Regulatory Compliance Preview BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-05-26 13:43:16 add 11e3da8c-1d68-4392-badd-0ff3c43ab5b0
JSON compare n/a
JSON
api-version=2021-06-01
EPAC