Policy-usedHide
Records: 10 25 100 200 Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
< ,
<= ,
> ,
>= ,
= ,
* ,
! ,
{ ,
} ,
|| ,
&& ,
[empty] ,
[nonempty] ,
rgx: Learn more ? Page 1 of 1
Clear Security Center Synapse Clear GA Clear BuiltIn
Policy DisplayName
Policy Id
Category
Effect
Roles#
Roles
State
Type
policy in AzUSGov
Azure Synapse workspaces should allow outbound data traffic only to approved targets
3484ce98-c0c5-4c83-994b-c5ac24785218
Synapse
Default AuditAllowed Audit, Disabled, Deny
0
GA
BuiltIn
unknown
Configure Azure Synapse Workspace Dedicated SQL minimum TLS version
8b5c654c-fb07-471b-aa8f-15fea733f140
Synapse
Default ModifyAllowed Modify, Disabled
1
Contributor
GA
BuiltIn
unknown
Configure Azure Synapse workspaces to disable public network access
5c8cad01-ef30-4891-b230-652dadb4876a
Synapse
Default ModifyAllowed Modify, Disabled
1
Contributor
GA
BuiltIn
unknown
Configure Microsoft Defender for SQL to be enabled on Synapse workspaces
951c1558-50a5-4ca3-abb6-a93e3e2367a6
Security Center
Default DeployIfNotExistsAllowed DeployIfNotExists, Disabled
1
SQL Security Manager
GA
BuiltIn
unknown
Configure Synapse Workspaces to use only Microsoft Entra identities for authentication during workspace creation
c3624673-d2ff-48e0-b28c-5de1c6767c3c
Synapse
Default ModifyAllowed Modify, Disabled
1
Contributor
GA
BuiltIn
unknown
IP firewall rules on Azure Synapse workspaces should be removed
56fd377d-098c-4f02-8406-81eb055902b8
Synapse
Default AuditAllowed Audit, Disabled
0
GA
BuiltIn
unknown
Managed workspace virtual network on Azure Synapse workspaces should be enabled
2d9dbfa3-927b-4cf0-9d0f-08747f971650
Synapse
Default AuditAllowed Audit, Deny, Disabled
0
GA
BuiltIn
unknown
Synapse managed private endpoints should only connect to resources in approved Azure Active Directory tenants
3a003702-13d2-4679-941b-937e58c443f0
Synapse
Default AuditAllowed Audit, Disabled, Deny
0
GA
BuiltIn
true
Synapse Workspaces should use only Microsoft Entra identities for authentication during workspace creation
2158ddbe-fefa-408e-b43f-d4faef8ff3b8
Synapse
Default AuditAllowed Audit, Deny, Disabled
0
GA
BuiltIn
true
No results
JSON
Copy definition Copy definition 4 EPAC EPAC
{ 7 items policyType: "Custom" , displayName: "Enforce recommended guardrails for Synapse workspaces" , description: "This policy initiative is a group of policies that ensures Synapse workspaces is compliant per regulated Landing Zones." , metadata: { 4 items version: "1.2.0" , category: "Synapse" , source: "https://github.com/Azure/Enterprise-Scale/" , alzCloudEnvironments: [ 3 items "AzureCloud" , "AzureChinaCloud" , "AzureUSGovernment" ] } , parameters: { 10 items } , policyDefinitions: [ 9 items ] , policyDefinitionGroups: null }