AzPolicyAdvertizer

last sync: 2023-Jun-09 17:46:13 UTC

Azure Policy definition

[Preview]: Configure Azure Key Vault Managed HSM to disable public network access

Name

[Preview]: Configure Azure Key Vault Managed HSM to disable public network access
Azure Portal

84d327c3-164a-4685-b453-900478614456

Version

2.0.0-preview
details on versioning

Category

Key Vault
Microsoft docs

Description

Disable public network access for your Azure Key Vault Managed HSM so that it's not accessible over the public internet. This can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link#allow-trusted-services-to-access-managed-hsm.

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

FALSE

Effect

Default
Modify
Allowed
Modify, Disabled

RBAC
Role(s)

Role Name	Role Id
Managed HSM contributor	18500a29-7fe2-46b2-a342-b16a415e101d

Rule
Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/managedHSMs/networkAcls.defaultAction	Microsoft.KeyVault	managedHSMs	properties.networkAcls.defaultAction	true

THEN-Operations (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/managedHSMs/networkAcls.defaultAction	Microsoft.KeyVault	managedHSMs	properties.networkAcls.defaultAction	true

Rule
ResourceTypes

IF (1)
Microsoft.KeyVault/managedHSMs

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-09-27 15:52:17	change	Major, suffix remains equal (1.0.0-preview > 2.0.0-preview)
2021-09-13 16:35:32	add	84d327c3-164a-4685-b453-900478614456

Initiatives
usage

none

JSON