AzPolicyAdvertizer

last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

[Preview]: Configure Azure Key Vault Managed HSM with private endpoints

Name

[Preview]: Configure Azure Key Vault Managed HSM with private endpoints
Azure Portal

d1d6d8bb-cc7c-420f-8c7d-6f6f5279a844

Version

1.0.0-preview
details on versioning

Category

Key Vault
Microsoft docs

Description

Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Azure Key Vault Managed HSM, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/key-vault/managed-hsm/private-link.

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

FALSE

Effect

Default: DeployIfNotExists
Allowed: (DeployIfNotExists, Disabled)

Used RBAC Role

Role Name	Role Id
Network Contributor	4d97b98b-1d4f-4787-a291-c67834d212e7
Managed HSM contributor	18500a29-7fe2-46b2-a342-b16a415e101d

Rule Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.KeyVault/managedHSMs/privateEndpointConnections/privateLinkServiceConnectionState.status	Microsoft.KeyVault	managedHSMs/privateEndpointConnections	properties.privateLinkServiceConnectionState.status	false

Rule ResourceTypes

IF (1)
Microsoft.KeyVault/managedHSMs
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-08-23 14:26:16	add	d1d6d8bb-cc7c-420f-8c7d-6f6f5279a844

Used in Initiatives

none

JSON