| Policy DisplayName |
Policy Id |
Category |
Version |
Versioning |
Effect |
Roles# |
Roles |
State |
policy in AzUSGov |
| [Deprecated]: Azure AI Search services should use private link |
0fda3595-9f2b-4592-8675-4231d6fa82fe |
Search |
1.0.2 (1.0.2-deprecated) |
2x
1.0.2, 1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
Deprecated |
true |
| [Deprecated]: Cognitive Services should use private link |
cddd188c-4b82-4c48-a19d-ddf74ee66a01 |
Cognitive Services |
3.0.1 (3.0.1-deprecated) |
2x
3.0.1, 3.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
Deprecated |
true |
| [Preview]: Azure Recovery Services vaults should use private link for backup |
deeddb44-9f94-4903-9fa0-081d524406e3 |
Backup |
2.0.0-preview |
1x
2.0.0-preview |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
Preview |
unknown |
| App Configuration should use private link |
ca610c1d-041c-4332-9d88-7ed3094967c7 |
App Configuration |
1.0.2 |
1x
1.0.2 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| App Service apps should use private link |
687aa49d-0982-40f8-bf6b-66d1da97a04b |
App Service |
1.0.1 |
1x
1.0.1 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
unknown |
| Azure Cache for Redis should use private link |
7803067c-7d34-46e3-8c79-0ca68fc4036d |
Cache |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure Data Factory should use private link |
8b0323be-cc25-4b61-935d-002c3798c6ea |
Data Factory |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure Event Grid domains should use private link |
9830b652-8523-49cc-b1b3-e17dce1127ca |
Event Grid |
1.0.2 |
1x
1.0.2 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure Event Grid topics should use private link |
4b90e17e-8448-49db-875e-bd83fb6f804f |
Event Grid |
1.0.2 |
1x
1.0.2 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure File Sync should use private link |
1d320205-c6a1-4ac6-873d-46224024e8e2 |
Storage |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure HDInsight should use private link |
c8cc2f85-e019-4065-9fa3-5e6a2b2dde56 |
HDInsight |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
unknown |
| Azure Key Vaults should use private link |
a6abeaec-4d90-4a02-805f-6b26c4d3fbe9 |
Key Vault |
1.2.1 |
1x
1.2.1 |
Default
Audit
Allowed
Audit, Deny, Disabled |
0 |
|
GA |
true |
| Azure Machine Learning workspaces should use private link |
45e05259-1eb5-4f70-9574-baf73e9d219b |
Machine Learning |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure Purview accounts should use private link |
9259053b-ddb8-40ab-842a-0aef19d0ade4 |
Azure Purview |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
unknown |
| Azure Service Bus namespaces should use private link |
1c06e275-d63d-4540-b761-71f364c2111d |
Service Bus |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Azure SignalR Service should use private link |
2393d2cf-a342-44cd-a2e2-fe0188fd1234 |
SignalR |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure Synapse workspaces should use private link |
72d11df1-dd8a-41f7-8925-b05b960ebafc |
Synapse |
1.0.1 |
1x
1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Azure Web PubSub Service should use private link |
eb907f70-7514-460d-92b3-a5ae93b4f917 |
Web PubSub |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
unknown |
| Container registries should use private link |
e8eef0a8-67cf-4eb4-9386-14b0e78733d4 |
Container Registry |
1.0.1 |
1x
1.0.1 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| CosmosDB accounts should use private link |
58440f8a-10c5-4151-bdce-dfbaad4a20b7 |
Cosmos DB |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Disk access resources should use private link |
f39f5f49-4abf-44de-8c70-0756997bfb51 |
Compute |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| IoT Hub device provisioning service instances should use private link |
df39c015-56a4-45de-b4a3-efe77bed320d |
Internet of Things |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Private endpoint connections on Automation Accounts should be enabled |
0c2b3618-68a8-4034-a150-ff4abc873462 |
Automation |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
unknown |
| Private endpoint connections on Azure SQL Database should be enabled |
7698e800-9299-47a6-b3b6-5a0fee576eed |
SQL |
1.1.0 |
1x
1.1.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
true |
| Private endpoint connections on Batch accounts should be enabled |
009a0c92-f5b4-4776-9b66-4ed2b4775563 |
Batch |
1.0.0 |
1x
1.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
unknown |
| Private endpoint should be enabled for IoT Hub |
0d40b058-9f95-4a19-93e3-9b0330baa2a3 |
Internet of Things |
1.0.0 |
1x
1.0.0 |
Default
Audit
Allowed
Audit, Disabled |
0 |
|
GA |
unknown |
| Private endpoint should be enabled for MariaDB servers |
0a1302fb-a631-4106-9753-f3d494733990 |
SQL |
1.0.2 |
1x
1.0.2 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Private endpoint should be enabled for MySQL servers |
7595c971-233d-4bcf-bd18-596129188c49 |
SQL |
1.0.2 |
1x
1.0.2 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Private endpoint should be enabled for PostgreSQL servers |
0564d078-92f5-4f97-8398-b9f58a51f70b |
SQL |
1.0.2 |
1x
1.0.2 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |
| Storage accounts should use private link |
6edd7eda-6dd8-40f7-810d-67160c639cd9 |
Storage |
2.0.0 |
1x
2.0.0 |
Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled |
0 |
|
GA |
true |