AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

[Preview]: Azure Key Vaults should use private link

Name

[Preview]: Azure Key Vaults should use private link
Azure Portal

a6abeaec-4d90-4a02-805f-6b26c4d3fbe9

Version

1.0.0-preview
details on versioning

Category

Key Vault
Microsoft docs

Description

Azure Private Link lets you connect your virtual networks to Azure services without a public IP address at the source or destination. The Private Link platform handles the connectivity between the consumer and services over the Azure backbone network. By mapping private endpoints to key vault, you can reduce data leakage risks. Learn more about private links at: https://aka.ms/akvprivatelink.

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

FALSE

Effect

Default: Audit
Allowed: (Audit, Deny, Disabled)

Used RBAC Role

none

Rule Aliases

IF (2)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/vaults/privateEndpointConnections[*]	Microsoft.KeyVault	vaults	properties.privateEndpointConnections[*]	false
Microsoft.KeyVault/vaults/privateEndpointConnections[*].privateLinkServiceConnectionState.status	Microsoft.KeyVault	vaults	properties.privateEndpointConnections[*].properties.privateLinkServiceConnectionState.status	false

Rule ResourceTypes

IF (1)
Microsoft.KeyVault/vaults

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-04-21 13:28:46	add	a6abeaec-4d90-4a02-805f-6b26c4d3fbe9

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Evaluate Private Link Usage Across All Supported Azure Resources	7379ef4c-89b0-48b6-a5cc-fd3a75eaef93	SDN	GA	BuiltIn

JSON