AzPolicyAdvertizer

last sync: 2025-Apr-29 17:16:02 UTC

Audit OpenAI instances public access enabled

Community Policy definition

Source Repository Community-Policy GitHub
JSON Community-Policy GitHub
Deploy policy 5e68f029-0f81-4ee3-b578-705b0fdb237c (1.0.0) to Azure
Display name Audit OpenAI instances public access enabled
Id 5e68f029-0f81-4ee3-b578-705b0fdb237c
Version 1.0.0
Details on versioning
Category Cognitive Services
Microsoft Learn
Description Azure OpenAI instances should not have public access enabled. Open AI instances should only be accessible via select networks or a private endpoint.
Mode Indexed
Type Custom Community
Effect Default
Audit
Allowed
Audit, Deny, Disabled
RBAC role(s) none
Rule aliases IF (3)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.CognitiveServices/accounts/networkAcls Microsoft.CognitiveServices accounts properties.networkAcls True False
Microsoft.CognitiveServices/accounts/networkAcls.defaultAction Microsoft.CognitiveServices accounts properties.networkAcls.defaultAction True True
Microsoft.CognitiveServices/accounts/publicNetworkAccess Microsoft.CognitiveServices accounts properties.publicNetworkAccess True True
Rule resource types IF (1)
Microsoft.CognitiveServices/accounts
JSON
EPAC
Deploy policy 5e68f029-0f81-4ee3-b578-705b0fdb237c (1.0.0) to Azure