last sync: 2020-Oct-20 13:29:33 UTC

Azure Policy

Private endpoint connections on Azure SQL Database should be enabled

Name Private endpoint connections on Azure SQL Database should be enabled
Id 7698e800-9299-47a6-b3b6-5a0fee576eed
Version 1.0.0
details on versioning
Category SQL
Description Private endpoint connections enforce secure communication by enabling private connectivity to Azure SQL Database.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Fixed: audit
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-07-08 14:28:08 change Previous DisplayName: Azure SQL Databases should have private endpoint connections
2020-07-01 14:50:07 add 7698e800-9299-47a6-b3b6-5a0fee576eed
Used in Initiatives none
Json
{
  "properties": {
    "displayName": "Private endpoint connections on Azure SQL Database should be enabled",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Private endpoint connections enforce secure communication by enabling private connectivity to Azure SQL Database.",
    "metadata": {
      "version": "1.0.0",
      "category": "SQL"
    },
    "parameters": {
      
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Sql/servers"
          },
          {
            "count": {
            "field": "Microsoft.Sql/servers/privateEndpointConnections[*]",
              "where": {
              "field": "Microsoft.Sql/servers/privateEndpointConnections[*].privateLinkServiceConnectionState.status",
                "equals": "Approved"
              }
            },
            "less": 1
          }
        ]
      },
      "then": {
        "effect": "audit"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/7698e800-9299-47a6-b3b6-5a0fee576eed",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "7698e800-9299-47a6-b3b6-5a0fee576eed"
}