Configure Azure PaaS services to use private DNS zones: Policies missing from initiative to configure Private Link and DNS integration at scale

[juanandmsft]

Details of the scenario you tried and the problem that is occurring

There are 49 DINE built-in policies

There are 49 built-in policy definitions that deal with PrivateDNSZoneGroup deployment, but only 37 are used in the initiative. The missing 12 are the following:

028bbd88-e9b5-461f-9424-a1b63a7bee1a      StoragePrivateDnsZoneGroup_Table.json 34804460-d88b-4922-a7ca-537165e060ed      DVWorkspace_PrivateDNSZone_DINE.json 4c8537f8-cd1b-49ec-b704-18e82a42fd58      AMG_PrivateDNSZone_DeployIfNotExists.json 55c4db33-97b0-437b-8469-c4f4498f5df9      Arc_PrivateEndpoint_DNS_Deploy.json 6a4e6f44-f2af-4082-9702-033c9e88b9f8      BotService_PrivateDNSZone_DeployIfNotExists.json 7e4301f9-5f32-4738-ad9f-7ec2d15563ad      PrivateLinkForAzureAD_PrivateLinkDns_DeployIfNotExists.json 9427df23-0f42-4e1e-bf99-a6133d841c4a      DVHostpool_PrivateDNSZone_DINE.json a222b93a-e6c2-4c01-817f-21e092455b2a      DeviceUpdate_DeployPrivateDnsZoneForPrivateEndpoint_Deploy.json af783da1-4ad1-42be-800d-d19c70038820      AzBackupRSVault_PeDnsConfigDeploy.json c1d634a5-f73d-4cdd-889f-2cc7006eb47f      StoragePrivateDnsZoneGroup_TableSecondary.json d627d7c6-ded5-481a-8f2e-7e16b1e6faf6      IoTCentral_DeployPrivateDnsZoneForPrivateEndpoint_Deploy.json

Verbose logs showing the problem

Suggested solution to the issue

Review initiative to include missing built-in policy definitions that handle private endpoints.

If policy is Guest Configuration - details about target node

[juanandmsft]

Moved to the appropriate ELZ repo.