last sync: 2020-Jul-10 14:05:01 UTC

Azure Policy

API Management services should use a virtual network

Policy DisplayName API Management services should use a virtual network
Policy Id ef619a2c-cc4d-4d03-b2ba-8c94a834d85b
Policy Category API Management
Policy Description Virtual network on API Management services of the specified SKU should be enabled.
Policy Mode Indexed
Policy Type BuiltIn
Policy in Preview FALSE
Policy Deprecated FALSE
Policy Effect Default: Audit
Allowed: (Audit,Disabled)
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2020-05-29 15:39:09 add: Policy ef619a2c-cc4d-4d03-b2ba-8c94a834d85b
Used in Policy Initiative(s) none
Policy Rule
{
  "properties": {
    "displayName": "API Management services should use a virtual network",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Virtual network on API Management services of the specified SKU should be enabled.",
    "metadata": {
      "version": "1.0.0",
      "category": "API Management"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "Enable or disable the execution of the policy"
        },
        "allowedValues": [
          "Audit",
          "Disabled"
        ],
        "defaultValue": "Audit"
      },
      "evaluatedSkuNames": {
        "type": "Array",
        "metadata": {
          "displayName": "API Management SKU Names",
          "description": "List of API Management SKUs against which this policy will be evaluated."
        },
        "allowedValues": [
          "Developer",
          "Basic",
          "Standard",
          "Premium",
          "Consumption"
        ],
        "defaultValue": [
          "Developer",
          "Premium"
        ]
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.ApiManagement/service"
          },
          {
            "field": "Microsoft.ApiManagement/service/sku.name",
          "in": "[parameters('evaluatedSkuNames')]"
          },
          {
            "anyOf": [
              {
                "field": "Microsoft.ApiManagement/service/virtualNetworkType",
                "exists": "false"
              },
              {
                "field": "Microsoft.ApiManagement/service/virtualNetworkType",
                "equals": "None"
              }
            ]
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/ef619a2c-cc4d-4d03-b2ba-8c94a834d85b",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "ef619a2c-cc4d-4d03-b2ba-8c94a834d85b"
}