AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

Azure SignalR Service should disable public network access

Name

Azure SignalR Service should disable public network access
Azure Portal

21a9766a-82a5-4747-abb5-650b6dbba6d0

Version

1.0.0
details on versioning

Category

SignalR
Microsoft docs

Description

To improve the security of Azure SignalR Service resource, ensure that it isn't exposed to the public internet and can only be accessed from a private endpoint. Disable the public network access property as described in https://aka.ms/asrs/networkacls. This option disables access from any public address space outside the Azure IP range, and denies all logins that match IP or virtual network-based firewall rules. This reduces data leakage risks.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Deny, Disabled)

Used RBAC Role

none

Rule Aliases

IF (2)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.SignalRService/SignalR/networkACLs.defaultAction	Microsoft.SignalRService	SignalR	properties.networkACLs.defaultAction	true
Microsoft.SignalRService/SignalR/networkACLs.publicNetwork.allow	Microsoft.SignalRService	SignalR	properties.networkACLs.publicNetwork.allow	true

Rule ResourceTypes

IF (1)
Microsoft.SignalRService/SignalR

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-03-09 14:37:41	add	21a9766a-82a5-4747-abb5-650b6dbba6d0

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Audit Public Network Access	f1535064-3294-48fa-94e2-6e83095a5c08	SDN	GA	BuiltIn

JSON