last sync: 2023-Jun-02 17:44:47 UTC

Azure Policy definition

Configure CosmosDB accounts with private endpoints

Name Configure CosmosDB accounts with private endpoints
Azure Portal
Id b609e813-3156-4079-91fa-a8494c1471c4
Version 1.0.0
details on versioning
Category Cosmos DB
Microsoft docs
Description Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your CosmosDB account, you can reduce data leakage risks. Learn more about private links at: https://docs.microsoft.com/azure/cosmos-db/how-to-configure-private-endpoints.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
DocumentDB Account Contributor 5bd9cd88-fe45-4216-938b-f97437e15450
Rule
Aliases
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnections/privateLinkServiceConnectionState.status Microsoft.DocumentDB databaseAccounts/privateEndpointConnections properties.privateLinkServiceConnectionState.status false
Rule
ResourceTypes
IF (1)
Microsoft.DocumentDB/databaseAccounts
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments
Compliance Not a Compliance control
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-03-09 14:37:41 add b609e813-3156-4079-91fa-a8494c1471c4
Initiatives
usage
none
JSON