AzPolicyAdvertizer

last sync: 2025-Oct-24 17:23:08 UTC

Azure Synapse workspaces should allow outbound data traffic only to approved targets

Azure BuiltIn Policy definition

Source Azure Portal
Display name Azure Synapse workspaces should allow outbound data traffic only to approved targets
Id 3484ce98-c0c5-4c83-994b-c5ac24785218
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category Synapse
Microsoft Learn
Description Increase security of your Synapse workspace by allowing outbound data traffic only to approved targets. This helps prevention against data exfiltration by validating the target before sending data.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled, Deny
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Synapse/workspaces/managedVirtualNetworkSettings.preventDataExfiltration Microsoft.Synapse workspaces properties.managedVirtualNetworkSettings.preventDataExfiltration True False
Rule resource types IF (1)
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
Enforce recommended guardrails for Synapse workspaces Enforce-Guardrails-Synapse Synapse GA ALZ
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-03-02 15:11:40 add 3484ce98-c0c5-4c83-994b-c5ac24785218
JSON compare n/a
JSON
api-version=2021-06-01
EPAC