search

Azure / Enterprise-Scale

The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organizations to define their Azure architecture
https://aka.ms/alz
MIT License
1.69k stars 963 forks source link

Feature Request - Update Deny-PublicPaaSEndpoints to include Eventhub #1573

Closed steph409 closed 5 months ago

steph409 commented 7 months ago

Hi everyone,

currently, it is possible to deploy eventhub with public access. it does not seem to be included in this initiative. There has already been an issue which asked eventhub to be included in this initiative. The issue got closed with a PR, but from the changes, it seems the policy has not been updated to include eventhub. It would be great if eventhub would be included in the policy.

Describe the solution you'd like

There is a built-in policy that should be added to the Deny-PublicPaaSEndpoints initiative: Event Hub Namespaces should disable public network access

Best regards, Stephanie

Springstone commented 7 months ago

Hi @steph409, many thanks for raising this. EventHub is indeed missing from the initiative, and we've created a backlog item to get this added.

AB33158

Springstone commented 5 months ago

@steph409 Closing, as this is now included in the upcoming Policy refresh.