AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

[Preview]: Configure Recovery Services vaults to use private endpoints for backup

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Preview]: Configure Recovery Services vaults to use private endpoints for backup
Id 8015d6ed-3641-4534-8d0b-5c67b67ff7de
Version 1.0.0-preview
Details on versioning
Category Backup
Microsoft Learn
Description Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Recovery Services vaults, you can reduce data leakage risks. Note that your vaults need to meet certain pre-requisites to be eligible for private endpoint configuration. Learn more at : https://go.microsoft.com/fwlink/?linkid=2187162.
Mode Indexed
Type BuiltIn
Preview True
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Network Contributor 4d97b98b-1d4f-4787-a291-c67834d212e7
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.RecoveryServices/vaults/backupStorageVersion Microsoft.RecoveryServices vaults properties.backupStorageVersion True False
THEN-Details (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.RecoveryServices/vaults/privateEndpointStateForBackup Microsoft.RecoveryServices vaults properties.privateEndpointStateForBackup True False
THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.RecoveryServices/vaults/privateEndpointStateForBackup Microsoft.RecoveryServices vaults properties.privateEndpointStateForBackup True False
Rule resource types IF (1)
Microsoft.RecoveryServices/vaults
THEN-Deployment (1)
Microsoft.Network/privateEndpoints
Compliance
The following 2 compliance controls are associated with this Policy definition '[Preview]: Configure Recovery Services vaults to use private endpoints for backup' (8015d6ed-3641-4534-8d0b-5c67b67ff7de)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.cont.3 Periodic tests op.cont.3 Periodic tests 404 not found n/a n/a 91
op.cont.4 Alternative means op.cont.4 Alternative means 404 not found n/a n/a 95
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-03-11 18:16:48 add 8015d6ed-3641-4534-8d0b-5c67b67ff7de
JSON compare n/a
JSON
api-version=2021-06-01
EPAC