AzInitiativeAdvertizer

last sync: 2024-Sep-18 17:50:42 UTC

Enforce recommended guardrails for Cognitive Services

Azure Landing Zones (ALZ) Policy Initiative (PolicySet)

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Enforce-Guardrails-CognitiveServices
Display nameEnforce recommended guardrails for Cognitive Services
IdEnforce-Guardrails-CognitiveServices
Version1.0.0
Details on versioning
CategoryCognitive Services
DescriptionThis policy initiative is a group of policies that ensures Cognitive Services is compliant per regulated Landing Zones.
TypeCustom Azure Landing Zones (ALZ)
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 5
Builtin Policies: 5
Static Policies: 0
ALZ Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State Type
Azure Cognitive Search service should use a SKU that supports private link a049bf77-880b-470f-ba6d-9f21c530cf83 Search Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn
Azure Cognitive Search services should have local authentication methods disabled 6300012e-e9a4-4649-b41f-a85f5c43be91 Search Default
Audit
Allowed
Audit, Deny, Disabled		 0 GA BuiltIn
Configure Azure Cognitive Search services to disable local authentication 4eb216f2-9dba-4979-86e6-5d7e63ce3b75 Search Default
Modify
Allowed
Modify, Disabled		 1 Search Service Contributor GA BuiltIn
Configure Azure Cognitive Search services to disable public network access 9cee519f-d9c1-4fd9-9f79-24ec3449ed30 Search Default
Modify
Allowed
Modify, Disabled		 2 Network Contributor, Search Service Contributor GA BuiltIn
Configure Cognitive Services accounts to disable public network access 47ba1dd7-28d9-4b07-a8d5-9813bed64e0c Cognitive Services Default
Modify
Allowed
Disabled, Modify		 1 Contributor GA BuiltIn
Roles used
History none
JSON compare n/a
JSON
EPAC