AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

Azure Data Factory linked services should use Key Vault for storing secrets

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Data Factory linked services should use Key Vault for storing secrets
Id 127ef6d7-242f-43b3-9eef-947faf1725d0
Version 1.0.0
Details on versioning
Category Data Factory
Microsoft Learn
Description To ensure secrets (such as connection strings) are managed securely, require users to provide secrets using an Azure Key Vault instead of specifying them inline in linked services.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases IF (30)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.DataFactory/factories/linkedservices/AmazonMWS.typeProperties.mwsAuthToken.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.mwsAuthToken.type True False
Microsoft.DataFactory/factories/linkedservices/AmazonMWS.typeProperties.secretKey.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.secretKey.type True False
Microsoft.DataFactory/factories/linkedservices/AmazonS3.typeProperties.secretAccessKey.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.secretAccessKey.type True False
Microsoft.DataFactory/factories/linkedservices/AzureBlobStorage.typeProperties.servicePrincipalKey Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalKey True False
Microsoft.DataFactory/factories/linkedservices/AzureBlobStorage.typeProperties.servicePrincipalKey.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalKey.type True False
Microsoft.DataFactory/factories/linkedservices/AzureSearch.typeProperties.key.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.key.type True False
Microsoft.DataFactory/factories/linkedservices/AzureSqlDW.typeProperties.servicePrincipalKey.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalKey.type True False
Microsoft.DataFactory/factories/linkedservices/AzureStorage.typeProperties.accountKey Microsoft.DataFactory factories/linkedservices properties.typeProperties.accountKey True False
Microsoft.DataFactory/factories/linkedservices/AzureStorage.typeProperties.sasUri Microsoft.DataFactory factories/linkedservices properties.typeProperties.sasUri True False
Microsoft.DataFactory/factories/linkedservices/AzureStorage.typeProperties.sasUri.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.sasUri.type True False
Microsoft.DataFactory/factories/linkedservices/CosmosDb.typeProperties.accountKey.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.accountKey.type True False
Microsoft.DataFactory/factories/linkedservices/Dynamics.typeProperties.servicePrincipalCredential Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalCredential True False
Microsoft.DataFactory/factories/linkedservices/Dynamics.typeProperties.servicePrincipalCredential.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalCredential.type True False
Microsoft.DataFactory/factories/linkedservices/GoogleAdWords.typeProperties.developerToken.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.developerToken.type True False
Microsoft.DataFactory/factories/linkedservices/GoogleBigQuery.typeProperties.clientSecret.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.clientSecret.type True False
Microsoft.DataFactory/factories/linkedservices/GoogleBigQuery.typeProperties.refreshToken.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.refreshToken.type True False
Microsoft.DataFactory/factories/linkedservices/Hubspot.typeProperties.accessToken Microsoft.DataFactory factories/linkedservices properties.typeProperties.accessToken True False
Microsoft.DataFactory/factories/linkedservices/Hubspot.typeProperties.accessToken.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.accessToken.type True False
Microsoft.DataFactory/factories/linkedservices/OData.typeProperties.servicePrincipalEmbeddedCert.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalEmbeddedCert.type True False
Microsoft.DataFactory/factories/linkedservices/OData.typeProperties.servicePrincipalEmbeddedCertPassword.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.servicePrincipalEmbeddedCertPassword.type True False
Microsoft.DataFactory/factories/linkedservices/Odbc.typeProperties.credential.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.credential.type True False
Microsoft.DataFactory/factories/linkedservices/Salesforce.typeProperties.securityToken.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.securityToken.type True False
Microsoft.DataFactory/factories/linkedservices/Sftp.typeProperties.passPhrase.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.passPhrase.type True False
Microsoft.DataFactory/factories/linkedservices/Sftp.typeProperties.privateKeyContent.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.privateKeyContent.type True False
Microsoft.DataFactory/factories/linkedservices/SqlServer.typeProperties.password Microsoft.DataFactory factories/linkedservices properties.typeProperties.password True False
Microsoft.DataFactory/factories/linkedservices/SqlServer.typeProperties.password.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.password.type True False
Microsoft.DataFactory/factories/linkedservices/type Microsoft.DataFactory factories/linkedservices properties.type True False
Microsoft.DataFactory/factories/linkedservices/typeProperties.connectionString Microsoft.DataFactory factories/linkedservices properties.typeProperties.connectionString True False
Microsoft.DataFactory/factories/linkedservices/typeProperties.connectionString.type Microsoft.DataFactory factories/linkedservices properties.typeProperties.connectionString.type True False
Microsoft.DataFactory/factories/linkedservices/typeProperties.encryptedCredential Microsoft.DataFactory factories/linkedservices properties.typeProperties.encryptedCredential True False
Rule resource types IF (1)
Microsoft.DataFactory/factories/linkedservices
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Enforce recommended guardrails for Data Factory Enforce-Guardrails-DataFactory Data Factory GA ALZ
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-01-13 18:06:06 change Version remains equal, old suffix: preview (1.0.0-preview > 1.0.0)
2021-02-10 14:43:58 add 127ef6d7-242f-43b3-9eef-947faf1725d0
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC