AzInitiativeAdvertizer

last sync: 2025-Apr-29 17:15:47 UTC

[Preview]: Control the use of Service Bus in a Virtual Enclave

Azure BuiltIn Policy Initiative (PolicySet)

Source

Azure Portal

Display name

[Preview]: Control the use of Service Bus in a Virtual Enclave

8fcdb3f1-1369-426d-9917-81edfee903ab

Version

1.0.0-preview
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0-preview
Built-in Versioning [Preview]

Category

VirtualEnclaves
Microsoft Learn

Description

This initiative deploys Azure policies for Service Bus ensuring boundary protection of this resource while it operates within the logically separated structure of Azure Virtual Enclaves. https://aka.ms/VirtualEnclaves

Cloud environments

AzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = true

Available in AzUSGov

The PolicySet is available in AzureUSGovernment cloud. Version: '1.0.0-preview'
Repository: Azure-Policy 8fcdb3f1-1369-426d-9917-81edfee903ab

Type

BuiltIn

Deprecated

False

Preview

True

Policy-used summary

Policy types	Policy states	Policy categories
Total Policies: 7 Builtin Policies: 7 Static Policies: 0	GA: 7	1 categories: Service Bus: 7

Policy-used

Policy DisplayName	Policy Id	Category	Version	Versioning	Effect	Roles#	Roles	State	policy in AzUSGov
Azure Service Bus namespaces should have local authentication methods disabled	cfb11c26-f069-4c14-8e36-56c394dae5af	Service Bus	1.0.1	1x 1.0.1	Default Audit Allowed Audit, Deny, Disabled	0		GA	true
Azure Service Bus namespaces should use private link	1c06e275-d63d-4540-b761-71f364c2111d	Service Bus	1.0.0	1x 1.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	0		GA	true
Configure Azure Service Bus namespaces to disable local authentication	910711a6-8aa2-4f15-ae62-1e5b2ed3ef9e	Service Bus	1.0.1	1x 1.0.1	Default Modify Allowed Modify, Disabled	1	Azure Service Bus Data Owner	GA	true
Resource logs in Service Bus should be enabled	f8d36e2f-389b-4ee4-898d-21aeb69a0f45	Service Bus	5.0.0	1x 5.0.0	Default AuditIfNotExists Allowed AuditIfNotExists, Disabled	0		GA	true
Service Bus Namespaces should disable public network access	cbd11fd3-3002-4907-b6c8-579f0e700e13	Service Bus	1.1.0	1x 1.1.0	Default Audit Allowed Audit, Deny, Disabled	0		GA	true
Service Bus namespaces should have double encryption enabled	ebaf4f25-a4e8-415f-86a8-42d9155bef0b	Service Bus	1.0.0	1x 1.0.0	Default Audit Allowed Audit, Deny, Disabled	0		GA	true
Service Bus Premium namespaces should use a customer-managed key for encryption	295fc8b1-dc9f-4f53-9c61-3f313ceab40a	Service Bus	1.0.0	1x 1.0.0	Default Audit Allowed Audit, Disabled	0		GA	true

Roles used

Total Roles usage: 1
Total Roles unique usage: 1

Role	Role Id	#Policies	Policies
Azure Service Bus Data Owner	090c5cfd-751d-490a-894a-3ce6f1109419	1	Configure Azure Service Bus namespaces to disable local authentication

History

Date/Time (UTC ymd) (i)	Changes
2024-01-17 19:06:27	add Initiative 8fcdb3f1-1369-426d-9917-81edfee903ab

JSON compare

n/a

JSON

api-version=2023-04-01
EPAC