last sync: 2025-May-16 17:48:43 UTC

Configure private endpoints for Data factories

Azure BuiltIn Policy definition

Source Azure Portal
Display name Configure private endpoints for Data factories
Id 496ca26b-f669-4322-a1ad-06b7b5e41882
Version 1.1.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]
Category Data Factory
Microsoft Learn
Description Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Network Contributor 4d97b98b-1d4f-4787-a291-c67834d212e7
Data Factory Contributor 673868aa-7521-48a0-acc6-0f60742d39f5
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status Microsoft.DataFactory factories/privateEndpointConnections properties.privateLinkServiceConnectionState.status True False
Rule resource types IF (1)
THEN-Deployment (2)
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-05-12 17:41:51 change Minor (1.0.0 > 1.1.0)
2021-04-07 13:27:17 add 496ca26b-f669-4322-a1ad-06b7b5e41882
JSON compare
compare mode: version left: version right:
1.0.0 → 1.1.0 RENAMED
@@ -3,9 +3,9 @@
3
  "policyType": "BuiltIn",
4
  "mode": "Indexed",
5
  "description": "Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.",
6
  "metadata": {
7
- "version": "1.0.0",
8
  "category": "Data Factory"
9
  },
10
  "parameters": {
11
  "privateEndpointSubnetId": {
@@ -54,8 +54,9 @@
54
  "field": "Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status",
55
  "equals": "Approved"
56
  },
57
  "roleDefinitionIds": [
 
58
  "/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5"
59
  ],
60
  "deployment": {
61
  "properties": {
@@ -139,9 +140,9 @@
139
  {
140
  "name": "[variables('privateEndpointName')]",
141
  "properties": {
142
  "privateLinkServiceId": "[parameters('serviceId')]",
143
- "groupId": [
144
  "[parameters('groupId')]"
145
  ],
146
  "requestMessage": "autoapprove"
147
  }
 
3
  "policyType": "BuiltIn",
4
  "mode": "Indexed",
5
  "description": "Private endpoints connect your virtual network to Azure services without a public IP address at the source or destination. By mapping private endpoints to your Azure Data Factory, you can reduce data leakage risks. Learn more at: https://docs.microsoft.com/azure/data-factory/data-factory-private-link.",
6
  "metadata": {
7
+ "version": "1.1.0",
8
  "category": "Data Factory"
9
  },
10
  "parameters": {
11
  "privateEndpointSubnetId": {
 
54
  "field": "Microsoft.DataFactory/factories/privateEndpointConnections/privateLinkServiceConnectionState.status",
55
  "equals": "Approved"
56
  },
57
  "roleDefinitionIds": [
58
+ "/providers/Microsoft.Authorization/roleDefinitions/4d97b98b-1d4f-4787-a291-c67834d212e7",
59
  "/providers/Microsoft.Authorization/roleDefinitions/673868aa-7521-48a0-acc6-0f60742d39f5"
60
  ],
61
  "deployment": {
62
  "properties": {
 
140
  {
141
  "name": "[variables('privateEndpointName')]",
142
  "properties": {
143
  "privateLinkServiceId": "[parameters('serviceId')]",
144
+ "groupIds": [
145
  "[parameters('groupId')]"
146
  ],
147
  "requestMessage": "autoapprove"
148
  }
JSON
api-version=2021-06-01
EPAC
{7 items}