AzPolicyAdvertizer

last sync: 2024-Jul-26 18:17:39 UTC

Configure Azure Arc Private Link Scopes with private endpoints

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Configure Azure Arc Private Link Scopes with private endpoints

d6eeba80-df61-4de5-8772-bc1b7852ba6b

Version

2.0.0
Details on versioning

Category

Azure Arc
Microsoft Learn

Description

Private endpoints connect your virtual networks to Azure services without a public IP address at the source or destination. By mapping private endpoints to Azure Arc Private Link Scopes, you can reduce data leakage risks. Learn more about private links at: https://aka.ms/arc/privatelink.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Network Contributor	4d97b98b-1d4f-4787-a291-c67834d212e7
Azure Connected Machine Resource Administrator	cd570a14-e51a-42ad-bac8-bafd67325302
Kubernetes Cluster - Azure Arc Onboarding	34e09817-6cbe-4d01-b1a2-e0eac5743d41

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.HybridCompute/privateLinkScopes/privateEndpointConnections/privateLinkServiceConnectionState.status	Microsoft.HybridCompute	privateLinkScopes/privateEndpointConnections	properties.privateLinkServiceConnectionState.status	True		False

Rule resource types

IF (1)
Microsoft.HybridCompute/privateLinkScopes
THEN-Deployment (2)
Microsoft.Network/privateEndpoints
Microsoft.Resources/deployments

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-10-07 16:34:28	change	Major (1.0.0 > 2.0.0)
2021-10-08 15:47:40	add	d6eeba80-df61-4de5-8772-bc1b7852ba6b

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC