AzPolicyAdvertizer

last sync: 2022-Nov-25 17:41:58 UTC

Azure Policy definition

[Preview]: Azure Key Vault Managed HSM should use private link

Name

[Preview]: Azure Key Vault Managed HSM should use private link
Azure Portal

59fee2f4-d439-4f1b-9b9a-982e1474bfd8

Version

1.0.0-preview
details on versioning

Category

Key Vault
Microsoft docs

Description

Private link provides a way to connect Azure Key Vault Managed HSM to your Azure resources without sending traffic over the public internet. Private link provides defense in depth protection against data exfiltration. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

FALSE

Effect

Default
Audit
Allowed
Audit, Disabled

RBAC
Role(s)

none

Rule
Aliases

IF (3)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/managedHSMs/privateEndpointConnections	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections	false
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*]	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections[*]	false
Microsoft.KeyVault/managedHSMs/privateEndpointConnections[*].privateLinkServiceConnectionState.status	Microsoft.KeyVault	managedHSMs	properties.privateEndpointConnections[*].properties.privateLinkServiceConnectionState.status	false

Rule
ResourceTypes

IF (1)
Microsoft.KeyVault/managedHSMs

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-23 14:26:16	add	59fee2f4-d439-4f1b-9b9a-982e1474bfd8

Initiatives
usage

none

JSON