last sync: 2024-Jul-16 18:17:33 UTC

Container App environments should use network injection

Azure BuiltIn Policy definition

Source Azure Portal
Display name Container App environments should use network injection
Id 8b346db6-85af-419b-8557-92cee2c0f9bb
Version 1.0.2
Details on versioning
Category Container Apps
Microsoft Learn
Description Container Apps environments should use virtual network injection to: 1.Isolate Container Apps from the public internet 2.Enable network integration with resources on-premises or in other Azure virtual networks 3.Achieve more granular control over network traffic flowing to and from the environment.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled, Deny
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.App/managedEnvironments/vnetConfiguration.infrastructureSubnetId Microsoft.App managedEnvironments properties.vnetConfiguration.infrastructureSubnetId True False
Rule resource types IF (1)
Microsoft.App/managedEnvironments
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
Enforce recommended guardrails for Container Apps Enforce-Guardrails-ContainerApps Container Apps GA ALZ
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-07-29 16:32:46 change Patch (1.0.1 > 1.0.2)
2022-05-27 20:20:35 change Patch (1.0.0 > 1.0.1)
2022-05-06 16:29:23 add 8b346db6-85af-419b-8557-92cee2c0f9bb
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC