Azure ARC Server onboarding, Private Link vs Public

2023-10-18T12:09:44.18+00:00

Hi,

We are currently in the process of onboarding legacy 2012R2 VM's to azure Arc for the ESU benefits initially.

Would you be able to provide some detail around exactly what data is sent from the Azure ARC agent, to azure, when going over a public internet endpoint (outbound 443) vs private link / private endpoint over express-route.

Have a security review soon, and am trying to find more information about this, so we can make an informed decision about whether private or public is more appropriate.

Is it all telemetry data, or is there some identifiable data sent over the link as well?

Many thanks.

Azure Arc
Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
454 questions
Azure Private Link
Azure Private Link
An Azure service that provides private connectivity from a virtual network to Azure platform as a service, customer-owned, or Microsoft partner services.
524 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Ryan Hill 29,291 Reputation points Microsoft Employee
    2023-10-18T21:42:20.43+00:00

    Hi @Paul Malham (NWIS - Core Services)

    Regarding

    Is it all telemetry data, or is there some identifiable data sent over the link as well?

    The data sent by Arc is generally telemetry information and authentication. But this information is transmitted over the communication channel of the agent. Information like computer name and network config can be transmitted over the internet, which is used for heartbeat and other related monitoring.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.