💼 8.3.8 Ensure Private Endpoints are used to access Azure Key Vault (Automated)

• ID: /frameworks/cis-azure-v5.0.0/08/03/08

Description

Use private endpoints to allow clients and services to securely access data located over a network via an encrypted Private Link. To do this, the private endpoint uses an IP address from the VNet for each service. Network traffic between disparate services securely traverses encrypted over the VNet. This VNet can also link addressing space, extending your network and accessing resources on it. Similarly, it can be a tunnel through public networks to connect remote infrastructures together. This creates further security through segmenting network traffic and preventing outside sources from accessing it.

Private endpoints will secure network traffic from Azure Key Vault to the resources requesting secrets and keys.

Similar

• Sections
  • /frameworks/cis-azure-v3.0.0/03/03/07
  • /frameworks/cis-azure-v4.0.0/09/03/08
  • /frameworks/cis-azure-v6.0.0/08/03/08

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v3.0.0 → 💼 3.3.7 Ensure that Private Endpoints are Used for Azure Key Vault (Automated)			1		no data
💼 CIS Azure v4.0.0 → 💼 9.3.8 Ensure that Private Endpoints are Used for Azure Key Vault (Automated)			1		no data
💼 CIS Azure v6.0.0 → 💼 8.3.8 Ensure Private Endpoints are Used to Access Azure Key Vault (Automated)			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS Azure v6.0.0 → 💼 8.3.8 Ensure Private Endpoints are Used to Access Azure Key Vault (Automated)			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ Azure Key Vault Private Endpoints are not used🟢	1	🟢 x6	no data