last sync: 2024-Jul-17 18:20:29 UTC

Configure Private Link for Azure AD with private endpoints

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure Private Link for Azure AD with private endpoints
Id b923afcf-4c3a-4ed6-8386-1ff64b68de47
Version 1.0.0
Details on versioning
Category Azure Active Directory
Microsoft Learn
Description Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Azure AD, you can reduce data leakage risks. Learn more at: https://aka.ms/privateLinkforAzureADDocs. It should be only used from isolated VNETs to Azure services, with no access to the Internet or other services (M365).
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
microsoft.aadiam/privateLinkForAzureAD/privateEndpointConnections/privateLinkServiceConnectionState.status microsoft.aadiam privateLinkForAzureAD/privateEndpointConnections properties.privateLinkServiceConnectionState.status True False
Rule resource types IF (1)
Microsoft.aadiam/privateLinkForAzureAD
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-07-22 16:34:49 add b923afcf-4c3a-4ed6-8386-1ff64b68de47
JSON compare n/a
JSON
api-version=2021-06-01
EPAC