AzPolicyAdvertizer

last sync: 2025-Jul-03 17:22:55 UTC

[Preview]: Azure Key Vault Managed HSM should use private link

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Preview]: Azure Key Vault Managed HSM should use private link
Id 59fee2f4-d439-4f1b-9b9a-982e1474bfd8
Version 1.0.0-preview
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]
Category Key Vault
Microsoft Learn
Description Private link provides a way to connect Azure Key Vault Managed HSM to your Azure resources without sending traffic over the public internet. Private link provides defense in depth protection against data exfiltration. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview True
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (3)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.KeyVault/managedHSMs/privateEndpointConnections Microsoft.KeyVault managedHSMs properties.privateEndpointConnections True False
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*] Microsoft.KeyVault managedHSMs properties.privateEndpointConnections[*] True False
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*].privateLinkServiceConnectionState.status Microsoft.KeyVault managedHSMs properties.privateEndpointConnections[*].properties.privateLinkServiceConnectionState.status True False
Rule resource types IF (2)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-08-23 14:26:16 add 59fee2f4-d439-4f1b-9b9a-982e1474bfd8
JSON compare n/a
JSON
api-version=2021-06-01
EPAC