AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

[Preview]: Azure Key Vault Managed HSM should use private link

Name

[Preview]: Azure Key Vault Managed HSM should use private link
Azure Portal

59fee2f4-d439-4f1b-9b9a-982e1474bfd8

Version

1.0.0-preview
details on versioning

Category

Key Vault
Microsoft docs

Description

Private link provides a way to connect Azure Key Vault Managed HSM to your Azure resources without sending traffic over the public internet. Private link provides defense in depth protection against data exfiltration. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Disabled)

Used RBAC Role

none

Rule Aliases

IF (3)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/managedHSMs/privateEndpointConnections	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections	false
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*]	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections[*]	false
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*].privateLinkServiceConnectionState.status	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections[*].properties.privateLinkServiceConnectionState.status	false

Rule ResourceTypes

IF (1)
Microsoft.KeyVault/managedHSMs

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-23 14:26:16	add	59fee2f4-d439-4f1b-9b9a-982e1474bfd8

Used in Initiatives

none

JSON