Take advantage of expanded Virtual Network support
Important
Some of the functionality described in this release plan has not been released. Delivery timelines may change and projected functionality may not be released (see Microsoft policy). Learn more: What's new and planned
| Enabled for | Public preview | General availability |
|---|---|---|
| Users by admins, makers, or analysts | Mar 2025 | May 2025 |
Business value
Expanded Virtual Network support to more connectors and Power Platform services significantly enhances your data security strategies.
This feature allows Power Platform connectors and services, including environment variables, Microsoft Copilot Studio, and service endpoints, to securely connect to private, endpoint-enabled resources in Azure or within their Virtual Network. This eliminates the need to expose these resources to the public internet, which reduces the risk of data exfiltration and ensures a more secure and compliant environment.
Feature details
Power Platform has expanded its Virtual Network support to include environment variables, service endpoints, Microsoft Copilot Studio, and additional connectors. This enhancement allows you to establish secure, private, outbound connectivity from Power Platform to resources within your Virtual Network. This improves security for connections to external data sources from Power Apps, Power Automate, and Dynamics 365 apps.
This feature provides the following benefits:
- Environment variables for Azure Key Vault secrets on Virtual Networks: With Virtual Network support for environment variables in Power Platform, enterprises can configure a private link on Azure Key Vault and use it for environment variable secrets. This ensures that Azure Key Vault doesn't need to be exposed to the public internet.
- Microsoft Copilot Studio support for Virtual Networks: Virtual Network support for Microsoft Copilot Studio allows enterprises to restrict access to Copilot Studio agents from within their private network only.
- Service endpoints support for Virtual Networks: Service endpoints, such as Service Bus, now support Virtual Networks. Enterprises can configure a private link on the Service Bus and access it securely over a private network.
- Enhanced configuration experience: Enterprises can now view the number of available and used IPs in a subnet. They can also troubleshoot configuration issues if the Virtual Network isn't properly configured on a Power Platform environment.
- Extended connectors support for Virtual Networks: More connectors are now supported, including Open AI, SharePoint On-Premises, Snowflake, Azure Data Factory, Azure Data Lake, Event Hubs, Service Bus, Azure Cosmos DB, Power BI, Azure Monitoring, and Azure AI Document Translator.
Learn more in What is subnet delegation?. Subnet delegation helps you mitigate data exfiltration risks both from insider and external threats and provides security compliance by enforcing traffic to travel through virtual, private networks. It also helps you gain more control of data from subnet-delegated, Power Platform services.