AzPolicyAdvertizer

last sync: 2020-Aug-05 13:05:29 UTC

Azure Policy

Private endpoint connections on Azure SQL Database should be enabled

Policy DisplayName Private endpoint connections on Azure SQL Database should be enabled
Policy Id 7698e800-9299-47a6-b3b6-5a0fee576eed
Policy Category SQL
Policy Description Private endpoint connections enforce secure communication by enabling private connectivity to Azure SQL Database.
Policy Mode Indexed
Policy Type BuiltIn
Policy in Preview FALSE
Policy Deprecated FALSE
Policy Effect Fixed: audit
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2020-07-08 14:28:08 change: DisplayName previous DisplayName: Azure SQL Databases should have private endpoint connections
2020-07-01 14:50:07 add: Policy 7698e800-9299-47a6-b3b6-5a0fee576eed
Used in Policy Initiative(s) none
Policy Rule 
{
  "properties": {
    "displayName": "Private endpoint connections on Azure SQL Database should be enabled",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Private endpoint connections enforce secure communication by enabling private connectivity to Azure SQL Database.",
    "metadata": {
      "version": "1.0.0",
      "category": "SQL"
    },
    "parameters": {
      
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.Sql/servers"
          },
          {
            "count": {
            "field": "Microsoft.Sql/servers/privateEndpointConnections[*]",
              "where": {
              "field": "Microsoft.Sql/servers/privateEndpointConnections[*].privateLinkServiceConnectionState.status",
                "equals": "Approved"
              }
            },
            "less": 1
          }
        ]
      },
      "then": {
        "effect": "audit"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/7698e800-9299-47a6-b3b6-5a0fee576eed",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "7698e800-9299-47a6-b3b6-5a0fee576eed"
}