/
PrivateLink_AINE.json
48 lines (48 loc) · 1.69 KB
/
PrivateLink_AINE.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
{
"properties": {
"displayName": "Azure Media Services should use private link",
"policyType": "BuiltIn",
"mode": "Indexed",
"description": "Azure Private Link lets you connect your virtual networks to Azure services without a public IP address at the source or destination. The Private Link platform handles the connectivity between the consumer and services over the Azure backbone network. By mapping private endpoints to Media Services, you can reduce data leakage risks. Learn more about private links at: https://aka.ms/mediaservicesprivatelinkdocs.",
"metadata": {
"version": "1.0.0",
"category": "Media Services"
},
"version": "1.0.0",
"parameters": {
"effect": {
"type": "String",
"allowedValues": [
"AuditIfNotExists",
"Disabled"
],
"defaultValue": "AuditIfNotExists",
"metadata": {
"displayName": "Effect",
"description": "Enable or disable the execution of the policy"
}
}
},
"policyRule": {
"if": {
"field": "type",
"equals": "Microsoft.Media/mediaservices"
},
"then": {
"effect": "[parameters('effect')]",
"details": {
"type": "Microsoft.Media/mediaservices/privateEndpointConnections",
"existenceCondition": {
"field": "Microsoft.Media/mediaservices/privateEndpointConnections/privateLinkServiceConnectionState.status",
"equals": "Approved"
}
}
}
},
"versions": [
"1.0.0"
]
},
"id": "/providers/Microsoft.Authorization/policyDefinitions/4a591bf5-918e-4a5f-8dad-841863140d61",
"name": "4a591bf5-918e-4a5f-8dad-841863140d61"
}