AzPolicyAdvertizer

last sync: 2024-Nov-25 18:54:24 UTC

Bot Service endpoint should be a valid HTTPS URI

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Bot Service endpoint should be a valid HTTPS URI

6164527b-e1ee-4882-8673-572f425f5e0a

Version

1.1.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]

Category

Bot Service
Microsoft Learn

Description

Data can be tampered with during transmission. Protocols exist that provide encryption to address problems of misuse and tampering. To ensure your bots are communicating only over encrypted channels, set the endpoint to a valid HTTPS URI. This ensures the HTTPS protocol is used to encrypt your data in transit and is also often a requirement for compliance with regulatory or industry standards. Please visit: https://docs.microsoft.com/azure/bot-service/bot-builder-security-guidelines.

Mode

Indexed

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Audit
Allowed
audit, Audit, deny, Deny, disabled, Disabled

RBAC role(s)

none

Rule aliases

IF (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.BotService/botServices/endpoint	Microsoft.BotService	botServices	properties.endpoint	True		False

Rule resource types

IF (1)
Microsoft.BotService/botServices

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Enforce recommended guardrails for Bot Service	Enforce-Guardrails-BotService	Bot Service	GA	ALZ

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-04-01 20:29:14	change	Minor (1.0.1 > 1.1.0)
2021-01-27 16:54:46	change	Patch (1.0.0 > 1.0.1)
2021-01-05 16:06:49	add	6164527b-e1ee-4882-8673-572f425f5e0a

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC