Skip to content

Enhancement: Policy Refresh H2 FY24 and Changes for AMA#785

Merged
jtracey93 merged 55 commits intomainfrom
patch-policy-library
Jun 20, 2024
Merged

Enhancement: Policy Refresh H2 FY24 and Changes for AMA#785
jtracey93 merged 55 commits intomainfrom
patch-policy-library

Conversation

@cae-pr-creator
Copy link
Contributor

@cae-pr-creator cae-pr-creator bot commented Jun 3, 2024
edited by oZakari
Loading

Overview/Summary

This will be in our next major release and includes the policy refresh for H2 2024 and the necessary changes to move away from Microsoft Monitoring Agent to Azure Monitoring Agent.

Linked Work Items:

AB#34921
AB#22581

This PR fixes/adds/changes/removes

  1. Policy Refresh for H2 FY24
  2. AMA Changes/Updates
  3. Update Policy Assignments resource provider api version to 2024-04-01

Breaking Changes

  1. None

Testing Evidence

Validated deployment over the top of current release.

As part of this Pull Request I have

@oZakari oZakari self-assigned this Jun 5, 2024
@oZakari oZakari added the Area: Policy 📝 Issues / PR's related to Policy label Jun 5, 2024
actions-user and others added 12 commits June 6, 2024 08:01
@oZakari
Copy link
Contributor

oZakari commented Jun 17, 2024

/azp run validateazcloud

@azure-pipelines
Copy link

azure-pipelines bot commented Jun 17, 2024

Azure Pipelines successfully started running 1 pipeline(s).

@oZakari oZakari requested a review from jtracey93 June 17, 2024 04:38
@oZakari oZakari marked this pull request as ready for review June 17, 2024 04:39
@oZakari oZakari changed the title Update Policy Library (automated) Enhancement: Policy Refresh H2 FY24 Jun 17, 2024
@oZakari oZakari force-pushed the patch-policy-library branch from 4b6176c to 979fb1b Compare June 18, 2024 03:31
oZakari and others added 8 commits June 19, 2024 12:37
@oZakari
Change UAMI API to GA version
9ea826b
@github-actions
Generate Parameter Markdowns [oZakari/56e2292c]
960ca75
@oZakari @jtracey93
Update infra-as-code/bicep/modules/logging/logging.bicep
20291d8 
Co-authored-by: Jack Tracey <41163455+jtracey93@users.noreply.github.com>
@oZakari @jtracey93
Update infra-as-code/bicep/modules/logging/logging.bicep
3795283 
Co-authored-by: Jack Tracey <41163455+jtracey93@users.noreply.github.com>
@oZakari @jtracey93
Update infra-as-code/bicep/modules/logging/logging.bicep
a0f7a90 
Co-authored-by: Jack Tracey <41163455+jtracey93@users.noreply.github.com>
@oZakari
Merge branches 'patch-policy-library' and 'patch-policy-library' of h…
94c7cf0 
…ttps://github.com/Azure/ALZ-Bicep into patch-policy-library
@oZakari
Update VM, VMSS, and ArcVM monitoring assignments to align to enterpr…
e659e87 
…ise-scale
@oZakari
Add new AMA related resource IDs to accelerator config
a174cfc
@oZakari
Copy link
Contributor

oZakari commented Jun 20, 2024

@oZakari This is amazing work, must have taken some serious effort!

I added a few comments and these more general questions:

Are we missing a policy assignment for blocking deletion of the UAMI? https://github.com/Azure/terraform-azurerm-caf-enterprise-scale/blob/main/modules/archetypes/lib/policy_assignments/policy_assignment_es_denyaction_deleteuamiama.tmpl.json

I'm also looking at the other new policy assignments we synced to Terraform and not seeing them all here. You can look at this diff to see them: Azure/terraform-azurerm-caf-enterprise-scale@5.2.1-fixes...main

Thanks, I was missing the Delete-UAMI one.

@oZakari
Copy link
Contributor

oZakari commented Jun 20, 2024

/azp run validateazcloud

@azure-pipelines
Copy link

azure-pipelines bot commented Jun 20, 2024

Azure Pipelines successfully started running 1 pipeline(s).

@jtracey93
Copy link
Collaborator

jtracey93 commented Jun 20, 2024

/azp run validateazcloud

@azure-pipelines
Copy link

azure-pipelines bot commented Jun 20, 2024

Azure Pipelines successfully started running 1 pipeline(s).

jtracey93
jtracey93 approved these changes Jun 20, 2024
View reviewed changes
Copy link
Collaborator

@jtracey93 jtracey93 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🚀

@jtracey93 jtracey93 merged commit 925a4ef into main Jun 20, 2024
@jtracey93 jtracey93 deleted the patch-policy-library branch June 20, 2024 15:39
@oZakari oZakari changed the title Enhancement: Policy Refresh H2 FY24 Enhancement: Policy Refresh H2 FY24 and Changes for AMA Jun 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jaredfholgate jaredfholgate jaredfholgate left review comments

@arjenhuitema arjenhuitema arjenhuitema left review comments

@oZakari oZakari oZakari left review comments

@jtracey93 jtracey93 jtracey93 approved these changes

Assignees

@oZakari oZakari

Labels

Area: Policy 📝 Issues / PR's related to Policy

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@oZakari @jtracey93 @jaredfholgate @arjenhuitema @actions-user