AzPolicyAdvertizer

last sync: 2023-Jun-01 17:45:04 UTC

Azure Policy definition

Configure Azure Arc-enabled Kubernetes clusters to use an Azure Arc Private Link Scope

Name

Configure Azure Arc-enabled Kubernetes clusters to use an Azure Arc Private Link Scope
Azure Portal

4002015b-1272-4dfb-8943-fed4aeec39b6

Version

1.0.0
details on versioning

Category

Azure Arc
Microsoft docs

Description

Azure Private Link lets you connect your virtual networks to Azure services without a public IP address at the source or destination. The Private Link platform handles the connectivity between the consumer and services over the Azure backbone network. By mapping Azure Arc-enabled servers to an Azure Arc Private Link Scope that is configured with a private endpoint, data leakage risks are reduced. Learn more about private links at: https://aka.ms/arc/privatelink.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default
Modify
Allowed
Modify, Disabled

RBAC
Role(s)

Role Name	Role Id
Kubernetes Cluster - Azure Arc Onboarding	34e09817-6cbe-4d01-b1a2-e0eac5743d41

Rule
Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Kubernetes/connectedClusters/privateLinkScopeResourceId	Microsoft.Kubernetes	connectedClusters	properties.privateLinkScopeResourceId	true

THEN-Operations (2)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Kubernetes/connectedClusters/privateLinkScopeResourceId	Microsoft.Kubernetes	connectedClusters	properties.privateLinkScopeResourceId	true
Microsoft.Kubernetes/connectedClusters/privateLinkState	Microsoft.Kubernetes	connectedClusters	properties.privateLinkState	true

Rule
ResourceTypes

IF (1)
Microsoft.Kubernetes/connectedClusters

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-10-07 16:34:28	add	4002015b-1272-4dfb-8943-fed4aeec39b6

Initiatives
usage

none

JSON