Source
Azure Portal
Display name
Configure private endpoints for Data factories
Id
496ca26b-f669-4322-a1ad-06b7b5e41882 Copy Id Copy resourceId
Version
1.1.0 Details on versioning
Versioning
Versions supported for Versioning: 1 1.1.0 Built-in Versioning [Preview]
Category
Data Factory Microsoft Learn
Description
Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.
Cloud environments
AzureCloud = true AzureUSGovernment = unknown AzureChinaCloud = unknown
Available in AzUSGov
Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode
Indexed
Type
BuiltIn
Preview
False
Deprecated
False
Effect
Default DeployIfNotExists
Allowed DeployIfNotExists, Disabled
RBAC role(s)
Rule aliases
THEN-ExistenceCondition (1)
Rule resource types
IF (1)
THEN-Deployment (2)
Compliance
Not a Compliance control
Initiatives usage
none
History
Date/Time (UTC ymd) (i)
Change type
Change detail
2023-05-12 17:41:51
change
Minor (1.0.0 > 1.1.0)
2021-04-07 13:27:17
add
496ca26b-f669-4322-a1ad-06b7b5e41882
JSON compareHide
compare mode:
side-by-side
line-by-line
version left: 1.0.0
version right: 1.1.0 1.0.0
@@ -3,9 +3,9 @@
3
"policyType": "BuiltIn",
4
"mode": "Indexed",
5
"description": "Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.",
6
"metadata": {
7
-
"version": "1.0.0",
8
"category": "Data Factory"
9
},
10
"parameters": {
11
"privateEndpointSubnetId": {
@@ -54,8 +54,9 @@
54
"field": "Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status",
55
"equals": "Approved"
56
},
57
"roleDefinitionIds": [
58
"/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5"
59
],
60
"deployment": {
61
"properties": {
@@ -139,9 +140,9 @@
139
{
140
"name": "[variables('privateEndpointName')]",
141
"properties": {
142
"privateLinkServiceId": "[parameters('serviceId')]",
143
-
"groupId": [
144
"[parameters('groupId')]"
145
],
146
"requestMessage": "autoapprove"
147
}
3
"policyType": "BuiltIn",
4
"mode": "Indexed",
5
"description": "Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.",
6
"metadata": {
7
+
"version": "1.1 .0",
8
"category": "Data Factory"
9
},
10
"parameters": {
11
"privateEndpointSubnetId": {
54
"field": "Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status",
55
"equals": "Approved"
56
},
57
"roleDefinitionIds": [
58
+
"/providers/Microsoft.Authorization/roleDefinitions/4d97b98b-1d4f-4787-a291-c67834d212e7",
59
"/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5"
60
],
61
"deployment": {
62
"properties": {
140
{
141
"name": "[variables('privateEndpointName')]",
142
"properties": {
143
"privateLinkServiceId": "[parameters('serviceId')]",
144
+
"groupIds ": [
145
"[parameters('groupId')]"
146
],
147
"requestMessage": "autoapprove"
148
}
JSON
api-version=2021-06-01
Copy definition Copy definition 4 EPAC EPAC
{ 7 items displayName: "Configure private endpoints for Data factories" , policyType: "BuiltIn" , mode: "Indexed" , description: "Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link." , metadata: { 2 items version: "1.1.0" , category: "Data Factory" } , parameters: { 3 items privateEndpointSubnetId: { 2 items type: "String" , metadata: { 3 items displayName: "Private endpoint subnet ID" , description: "A subnet with private endpoint network policies disabled." , strongType: "Microsoft.Network/virtualNetworks/subnets" } } , effect: { 4 items type: "String" , metadata: { 2 items displayName: "Effect" , description: "Enable or disable the execution of the policy" } , allowedValues: [ 2 items "DeployIfNotExists" , "Disabled" ] , defaultValue: "DeployIfNotExists" } , groupId: { 4 items } } , policyRule: { 2 items if: { 2 items field: "type" , equals: "Microsoft.DataFactory/factories" } , then: { 2 items effect: "[parameters('effect')]" , details: { 4 items type: "Microsoft.DataFactory/factories/privateEndpointConnections" , existenceCondition: { 2 items field: "Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status" , equals: "Approved" } , roleDefinitionIds: [ 2 items "/providers/Microsoft.Authorization/roleDefinitions/4d97b98b-1d4f-4787-a291-c67834d212e7" Network Contributor , "/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5" Data Factory Contributor ] , deployment: { 1 item properties: { 3 items mode: "incremental" , parameters: { 4 items } , template: { 5 items $schema: "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#" , contentVersion: "1.0.0.0" , parameters: { 4 items } , variables: { 1 item privateEndpointName: 🔍 "[
concat(
'pe-',
substring(
parameters('name'),
0,
min(
length(
parameters('name')
),
50
)
),
'-',
uniquestring(
deployment().name
)
)
]" } , resources: [ 1 item ] } } } } } } }