Links
Comment on page

Microsoft DevicesProvisioning

Best practices and references below are based on published guidance from the cloud service provider and may reference native capabilities the cloud service provider offers. If you are not using the native security capabilities, the same security requirement can be met using other security capabilities your organization utilizes

Asset Inventory

Microsoft.Devices/provisioningServices


Access Policy Enforcement

Microsoft.Devices/provisioningServices

Authorization Policies
Terraform
Authorization Policies-Key Name
Terraform
Authorization Policies-Primary Key
Terraform
Authorization Policies-Rights
Terraform

Subnet Isolation

Microsoft.Devices/provisioningServices

Ip Filter Rules
Terraform
Ip Filter Rules-Action
Terraform
Ip Filter Rules-Filter Name
Terraform
Ip Filter Rules-Ip Mask
Terraform
Ip Filter Rules-Target
Terraform

Device Lifecycle Management

Microsoft.Devices/provisioningServices

Provisioning State
Terraform
State
Terraform

Network Isolation and Segregation

Microsoft.Devices/provisioningServices

Public Network Access
Terraform

Destination Authentication

Microsoft.Devices/provisioningServices

Certificate
Terraform

Microsoft.Devices/provisioningServices/certificates

Certificate

Network Access Points Enforcing Network Access

Microsoft.Devices/provisioningServices/privateEndpointConnections

Name
Private Link Service Connection State-Actions Required
Private Link Service Connection State-Description
Private Link Service Connection State-Status
Description-Description