last sync: 2025-Mar-26 20:41:27 UTC

Configure Private Link for Azure AD with private endpoints

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure Private Link for Azure AD with private endpoints
Id b923afcf-4c3a-4ed6-8386-1ff64b68de47
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category Azure Active Directory
Microsoft Learn
Description Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Azure AD, you can reduce data leakage risks. Learn more at: https://aka.ms/privateLinkforAzureADDocs. It should be only used from isolated VNETs to Azure services, with no access to the Internet or other services (M365).
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
Rule aliases none
Rule resource types IF (1)
Microsoft.aadiam/privateLinkForAzureAD
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-07-22 16:34:49 add b923afcf-4c3a-4ed6-8386-1ff64b68de47
JSON compare n/a
JSON
api-version=2021-06-01
EPAC