AzPolicyAdvertizer

last sync: 2024-Apr-19 17:43:58 UTC

Configure API Management services to disable access to API Management public service configuration endpoints

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Configure API Management services to disable access to API Management public service configuration endpoints

7ca8c8ac-3a6e-493d-99ba-c5fa35347ff2

Version

1.1.0
Details on versioning

Category

API Management
Microsoft Learn

Description

To improve the security of API Management services, restrict connectivity to service configuration endpoints, like direct access management API, Git configuration management endpoint, or self-hosted gateways configuration endpoint.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
API Management Service Contributor	312a565d-c81f-4fd8-895a-4e21e48d571c

Rule aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.ApiManagement/service/sku.name	Microsoft.ApiManagement	service	sku.name	false

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.ApiManagement/service/tenant/enabled	Microsoft.ApiManagement	service/tenant	properties.enabled	false

Rule resource types

IF (1)
Microsoft.ApiManagement/service
THEN-Deployment (1)
Microsoft.ApiManagement/service/tenant

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2023-03-31 17:44:15	change	Minor (1.0.0 > 1.1.0)
2021-08-30 14:27:30	add	7ca8c8ac-3a6e-493d-99ba-c5fa35347ff2

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC