AzPolicyAdvertizer

last sync: 2025-Jul-15 17:24:34 UTC

Function apps must have private endpoints enabled

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy 2255c71d-9f5e-43c6-b0e8-5b4f1ddc6c40 (1.0.0) to Azure
Display name Function apps must have private endpoints enabled
Id 2255c71d-9f5e-43c6-b0e8-5b4f1ddc6c40
Version 1.0.0
Details on versioning
Category App Service
Microsoft Learn
Description A private endpoint connection enables private connectivity to your function app via a private IP address inside a virtual network. This configuration improves your security posture and supports Azure networking tools and scenarios.
Mode Indexed
Type Custom Community
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, AuditIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Network Contributor 4d97b98b-1d4f-4787-a291-c67834d212e7
Website Contributor de139f84-1756-47ae-9be6-808fbbe84772
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Web/sites/privateEndpointConnections/privateLinkServiceConnectionState.status Microsoft.Web sites/privateEndpointConnections properties.privateLinkServiceConnectionState.status True False
Rule resource types IF (1)
Microsoft.Web/sites
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments
JSON
EPAC
Deploy policy 2255c71d-9f5e-43c6-b0e8-5b4f1ddc6c40 (1.0.0) to Azure