last sync: 2022-Dec-02 17:43:06 UTC

Azure Policy definition

[Preview]: Configure Azure Key Vault Managed HSM with private endpoints

Name [Preview]: Configure Azure Key Vault Managed HSM with private endpoints
Azure Portal
Id d1d6d8bb-cc7c-420f-8c7d-6f6f5279a844
Version 1.0.0-preview
details on versioning
Category Key Vault
Microsoft docs
Description Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Azure Key Vault Managed HSM, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link.
Mode Indexed
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Network Contributor 4d97b98b-1d4f-4787-a291-c67834d212e7
Managed HSM contributor 18500a29-7fe2-46b2-a342-b16a415e101d
Rule
Aliases
THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.KeyVault/managedHSMs/privateEndpointConnections/privateLinkServiceConnectionState.status Microsoft.KeyVault managedHSMs/privateEndpointConnections properties.privateLinkServiceConnectionState.status false
Rule
ResourceTypes
IF (1)
Microsoft.KeyVault/managedHSMs
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments
Compliance Not a Compliance control
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-08-23 14:26:16 add d1d6d8bb-cc7c-420f-8c7d-6f6f5279a844
Initiatives
usage
none
JSON