AzPolicyAdvertizer

last sync: 2024-Nov-25 18:54:24 UTC

FHIR Service should use a customer-managed key to encrypt data at rest

Azure BuiltIn Policy definition

Source Azure Portal
Display name FHIR Service should use a customer-managed key to encrypt data at rest
Id c42dee8c-0202-4a12-bd8e-3e171cbf64dd
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category Healthcare APIs
Microsoft Learn
Description Use a customer-managed key to control the encryption at rest of the data stored in Azure Health Data Services FHIR Service when this is a regulatory or compliance requirement. Customer-managed keys also deliver double encryption by adding a second layer of encryption on top of the default one done with service-managed keys.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
Audit
Allowed
Audit, Disabled
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.HealthcareApis/workspaces/fhirservices/encryption.customerManagedKeyEncryption.keyEncryptionKeyUrl Microsoft.HealthcareApis workspaces/fhirservices properties.encryption.customerManagedKeyEncryption.keyEncryptionKeyUrl True False
Rule resource types IF (1)
Microsoft.HealthcareApis/workspaces/fhirservices
Compliance Not a Compliance control
Initiatives usage none
History
Date/Time (UTC ymd) (i) Change type Change detail
2024-02-27 19:10:20 add c42dee8c-0202-4a12-bd8e-3e171cbf64dd
JSON compare n/a
JSON
api-version=2021-06-01
EPAC