AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

Container registries should have SKUs that support Private Links

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Container registries should have SKUs that support Private Links

bd560fc0-3c69-498a-ae9f-aa8eb7de0e13

Version

1.0.0
Details on versioning

Category

Container Registry
Microsoft Learn

Description

Azure Private Link lets you connect your virtual network to Azure services without a public IP address at the source or destination. The private link platform handles the connectivity between the consumer and services over the Azure backbone network. By mapping private endpoints to your container registries instead of the entire service, data leakage risks are reduced. Learn more at: https://aka.ms/acr/private-link.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Audit
Allowed
Audit, Deny, Disabled

RBAC role(s)

none

Rule aliases

IF (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.ContainerRegistry/registries/sku.name	Microsoft.ContainerRegistry	registries	sku.name	True		False

Rule resource types

IF (1)
Microsoft.ContainerRegistry/registries

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Preview]: Control the use of Container Registry in a Virtual Enclave	b3fe25eb-cdc6-475f-96a5-04ac270f630d	VirtualEnclaves	Preview	BuiltIn
Enforce recommended guardrails for Container Registry	Enforce-Guardrails-ContainerRegistry	Container Registry	GA	ALZ

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-03-16 16:49:20	add	bd560fc0-3c69-498a-ae9f-aa8eb7de0e13

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC