diff --git a/eslzArm/eslzArm.terraform-sync.param.json b/eslzArm/eslzArm.terraform-sync.param.json index 4ee4086c5..e25606572 100644 --- a/eslzArm/eslzArm.terraform-sync.param.json +++ b/eslzArm/eslzArm.terraform-sync.param.json @@ -2,247 +2,331 @@ "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", "contentVersion": "1.0.0.0", "parameters": { - "managementSubscriptionId": { - "value": "00000000-0000-0000-0000-000000000000" + "addressPrefix": { + "value": "10.100.0.0/16" }, - "identitySubscriptionId": { - "value": "00000000-0000-0000-0000-000000000000" + "addressPrefixSecondary": { + "value": "10.200.0.0/16" + }, + "auditAppGwWaf": { + "value": "Yes" + }, + "auditPeDnsZones": { + "value": "Yes" }, "connectivitySubscriptionId": { "value": "00000000-0000-0000-0000-000000000000" }, - "enableDdoS": { + "delayCount": { + "value": 45 + }, + "denyAksPrivileged": { "value": "Yes" }, - "auditAppGwWaf": { + "denyAksPrivilegedEscalation": { "value": "Yes" }, - "enterpriseScaleCompanyPrefix": { - "value": "defaults" + "denyClassicResources": { + "value": "Yes" }, - "telemetryOptOut": { + "denyHttpIngressForAks": { "value": "Yes" }, - "enableLogAnalytics": { + "denyHybridNetworking": { "value": "Yes" }, - "retentionInDays": { - "value": "30" + "denyIpForwarding": { + "value": "Yes" }, - "enableAgentHealth": { + "denyMgmtPorts": { "value": "Yes" }, - "enableChangeTracking": { + "denyMgmtPortsForIdentity": { "value": "Yes" }, - "enableUpdateMgmt": { + "denyPipForIdentity": { "value": "Yes" }, - "enableVmInsights": { + "denyPipOnNicForCorp": { "value": "Yes" }, - "enableSqlAssessment": { + "denyPublicEndpoints": { "value": "Yes" }, - "enableSqlVulnerabilityAssessment": { + "denySubnetWithoutNsg": { "value": "Yes" }, - "enableSqlAdvancedThreatProtection": { + "denySubnetWithoutNsgForIdentity": { "value": "Yes" }, - "enableAsc": { + "denyVMUnmanagedDisk": { "value": "Yes" }, "emailContactAsc": { "value": "test.user@replace.me" }, - "enableAscForServers": { - "value": "DeployIfNotExists" + "enableAgentHealth": { + "value": "Yes" }, - "enableAscForServersVulnerabilityAssessments": { - "value": "DeployIfNotExists" + "enableAksPolicy": { + "value": "Yes" }, - "vulnerabilityAssessmentProvider": { - "value": "mdeTvm" + "enableAsc": { + "value": "Yes" }, - "enableAscForOssDb": { + "enableAscForApis": { "value": "DeployIfNotExists" }, - "enableAscForCosmosDbs": { + "enableAscForAppServices": { "value": "DeployIfNotExists" }, - "enableAscForAppServices": { + "enableAscForArm": { "value": "DeployIfNotExists" }, - "enableAscForStorage": { + "enableAscForContainers": { "value": "DeployIfNotExists" }, - "enableAscForSql": { + "enableAscForCosmosDbs": { "value": "DeployIfNotExists" }, - "enableAscForSqlOnVm": { + "enableAscForCspm": { "value": "DeployIfNotExists" }, - "enableAscForKeyVault": { + "enableAscForDns": { "value": "DeployIfNotExists" }, - "enableAscForArm": { + "enableAscForKeyVault": { "value": "DeployIfNotExists" }, - "enableAscForApis": { + "enableAscForOssDb": { "value": "DeployIfNotExists" }, - "enableAscForCspm": { + "enableAscForServers": { "value": "DeployIfNotExists" }, - "enableAscForDns": { + "enableAscForServersVulnerabilityAssessments": { "value": "DeployIfNotExists" }, - "enableAscForContainers": { + "enableAscForSql": { "value": "DeployIfNotExists" }, - "enableMDEndpoints": { + "enableAscForSqlOnVm": { "value": "DeployIfNotExists" }, - "enableSecuritySolution": { - "value": "Yes" + "enableAscForStorage": { + "value": "DeployIfNotExists" }, - "addressPrefix": { - "value": "10.100.0.0/16" + "enableAzFw": { + "value": "No" }, - "enablePrivateDnsZones": { - "value": "Yes" + "enableAzFwDnsProxy": { + "value": "No" }, - "enableVpnGw": { + "enableAzFwDnsProxySecondary": { "value": "No" }, - "gwRegionalOrAz": { - "value": "" + "enableAzFwSecondary": { + "value": "No" }, - "gwRegionalSku": { - "value": "" + "enableChangeTracking": { + "value": "Yes" }, - "gwAzSku": { - "value": "" + "enableDdoS": { + "value": "Yes" }, - "vpnGateWayScaleUnit": { - "value": "1" + "enableDecommissioned": { + "value": "Yes" }, - "subnetMaskForGw": { - "value": "" + "enableEncryptionInTransit": { + "value": "Yes" }, "enableErGw": { "value": "No" }, - "erAzSku": { - "value": "" - }, - "erRegionalSku": { - "value": "" - }, - "erRegionalOrAz": { - "value": "" - }, - "expressRouteScaleUnit": { - "value": "1" + "enableErGwSecondary": { + "value": "No" }, "enableHub": { "value": "vhub" }, - "enableAzFw": { - "value": "No" - }, - "enableAzFwDnsProxy": { - "value": "No" + "enableHubSecondary": { + "value": "vhub" }, - "firewallSku": { - "value": "Standard" + "enableLogAnalytics": { + "value": "Yes" }, - "firewallZones": { - "value": [] + "enableLzDdoS": { + "value": "Yes" }, - "subnetMaskForAzFw": { - "value": "" + "enableMDEndpoints": { + "value": "DeployIfNotExists" }, - "denyMgmtPortsForIdentity": { - "value": "Yes" + "enableMonitorBaselines": { + "value": "No" }, - "denySubnetWithoutNsgForIdentity": { + "enablePrivateDnsZones": { "value": "Yes" }, - "denyPipForIdentity": { - "value": "Yes" + "enablePrivateDnsZonesSecondary": { + "value": "No" }, - "denyPipOnNicForCorp": { + "enablePrivateDnsZonesForLzs": { "value": "Yes" }, - "enableVmBackupForIdentity": { + "enableSandbox": { "value": "Yes" }, - "identityAddressPrefix": { - "value": "10.110.0.0/24" - }, - "enableLzDdoS": { + "enableSecondaryRegion": { "value": "Yes" }, - "denyPublicEndpoints": { + "enableSecuritySolution": { "value": "Yes" }, - "enablePrivateDnsZonesForLzs": { + "enableSqlAdvancedThreatProtection": { "value": "Yes" }, - "enableEncryptionInTransit": { + "enableSqlAssessment": { "value": "Yes" }, - "enableVmMonitoring": { + "enableSqlAudit": { "value": "Yes" }, - "enableVmssMonitoring": { + "enableSqlEncryption": { "value": "Yes" }, - "enableAksPolicy": { + "enableSqlThreat": { "value": "Yes" }, - "denyAksPrivileged": { + "enableSqlVulnerabilityAssessment": { "value": "Yes" }, - "denyAksPrivilegedEscalation": { + "enableStorageHttps": { "value": "Yes" }, - "denyHttpIngressForAks": { + "enableUpdateMgmt": { "value": "Yes" }, "enableVmBackup": { "value": "Yes" }, - "denyMgmtPorts": { + "enableVmBackupForIdentity": { "value": "Yes" }, - "denySubnetWithoutNsg": { + "enableVmHybridMonitoring": { "value": "Yes" }, - "denyIpForwarding": { + "enableVmInsights": { "value": "Yes" }, - "denyClassicResources": { + "enableVmMonitoring": { "value": "Yes" }, - "denyVMUnmanagedDisk": { + "enableVmssMonitoring": { "value": "Yes" }, - "enableSqlEncryption": { - "value": "Yes" + "enableVpnActiveActive": { + "value": "No" }, - "enableSqlAudit": { - "value": "Yes" + "enableVpnActiveActiveSecondary": { + "value": "No" }, - "enableDecommissioned": { + "enableVpnGw": { + "value": "No" + }, + "enableVpnGwSecondary": { + "value": "No" + }, + "enablevWANRoutingIntent": { + "value": "No" + }, + "enablevWANRoutingIntentSecondary": { + "value": "No" + }, + "enableWsAPIMInitiatives": { + "value": "No" + }, + "enableWsAppServicesInitiatives": { + "value": "No" + }, + "enableWsAutomationInitiatives": { + "value": "No" + }, + "enableWsCMKInitiatives": { + "value": "No" + }, + "enableWsCognitiveServicesInitiatives": { + "value": "No" + }, + "enableWsComputeInitiatives": { + "value": "No" + }, + "enableWsContainerAppsInitiatives": { + "value": "No" + }, + "enableWsContainerInstanceInitiatives": { + "value": "No" + }, + "enableWsContainerRegistryInitiatives": { + "value": "No" + }, + "enableWsCosmosDbInitiatives": { + "value": "No" + }, + "enableWsDataExplorerInitiatives": { + "value": "No" + }, + "enableWsDataFactoryInitiatives": { + "value": "No" + }, + "enableWsEventGridInitiatives": { + "value": "No" + }, + "enableWsEventHubInitiatives": { + "value": "No" + }, + "enableWsKeyVaultSupInitiatives": { + "value": "No" + }, + "enableWsKubernetesInitiatives": { + "value": "No" + }, + "enableWsMachineLearningInitiatives": { + "value": "No" + }, + "enableWsMySQLInitiatives": { + "value": "No" + }, + "enableWsNetworkInitiatives": { + "value": "No" + }, + "enableWsOpenAIInitiatives": { + "value": "No" + }, + "enableWsPostgreSQLInitiatives": { + "value": "No" + }, + "enableWsServiceBusInitiatives": { + "value": "No" + }, + "enableWsSQLInitiatives": { + "value": "No" + }, + "enableWsStorageInitiatives": { + "value": "No" + }, + "enableWsSynapseInitiatives": { + "value": "No" + }, + "enableWsVirtualDesktopInitiatives": { + "value": "No" + }, + "enforceAcsb": { "value": "Yes" }, - "enableSandbox": { + "enforceBackup": { "value": "Yes" }, - "enableStorageHttps": { + "enforceBackupPlat": { "value": "Yes" }, "enforceKvGuardrails": { @@ -251,20 +335,130 @@ "enforceKvGuardrailsPlat": { "value": "Yes" }, - "denyHybridNetworking": { - "value": "Yes" + "enterpriseScaleCompanyPrefix": { + "value": "defaults" }, - "auditPeDnsZones": { - "value": "Yes" + "erAzSku": { + "value": "" }, - "enforceAcsb": { - "value": "Yes" + "erAzSkuSecondary": { + "value": "" }, - "delayCount": { - "value": 35 + "erRegionalOrAz": { + "value": "" }, - "enableSqlThreat": { + "erRegionalOrAzSecondary": { + "value": "" + }, + "erRegionalSku": { + "value": "" + }, + "erRegionalSkuSecondary": { + "value": "" + }, + "expressRouteScaleUnit": { + "value": "1" + }, + "expressRouteScaleUnitSecondary": { + "value": "1" + }, + "firewallSku": { + "value": "Standard" + }, + "firewallSkuSecondary": { + "value": "Standard" + }, + "firewallZones": { + "value": [] + }, + "firewallZonesSecondary": { + "value": [] + }, + "gwAzSku": { + "value": "" + }, + "gwAzSkuSecondary": { + "value": "" + }, + "gwRegionalOrAz": { + "value": "" + }, + "gwRegionalOrAzSecondary": { + "value": "" + }, + "gwRegionalSku": { + "value": "" + }, + "gwRegionalSkuSecondary": { + "value": "" + }, + "identityAddressPrefix": { + "value": "10.110.0.0/24" + }, + "identityAddressPrefixSecondary": { + "value": "10.210.0.0/24" + }, + "identitySubscriptionId": { + "value": "00000000-0000-0000-0000-000000000000" + }, + "internetTrafficRoutingPolicy": { + "value": false + }, + "internetTrafficRoutingPolicySecondary": { + "value": false + }, + "listOfResourceTypesDisallowedForDeletion": { + "value": [ + "microsoft.managedidentity/userassignedidentities" + ] + }, + "managementSubscriptionId": { + "value": "00000000-0000-0000-0000-000000000000" + }, + "monitorAlertsResourceGroup": { + "value": "" + }, + "retentionInDays": { + "value": "30" + }, + "subnetMaskForAzFw": { + "value": "" + }, + "subnetMaskForAzFwMgmt": { + "value": "" + }, + "subnetMaskForAzFwMgmtSecondary": { + "value": "" + }, + "subnetMaskForAzFwSecondary": { + "value": "" + }, + "subnetMaskForGw": { + "value": "" + }, + "subnetMaskForGwSecondary": { + "value": "" + }, + "telemetryOptOut": { "value": "Yes" + }, + "vpnGateWayScaleUnit": { + "value": "1" + }, + "vpnGateWayScaleUnitSecondary": { + "value": "1" + }, + "vWANHubCapacity": { + "value": "2" + }, + "vWANHubCapacitySecondary": { + "value": "2" + }, + "vWANHubRoutingPreference": { + "value": "ExpressRoute" + }, + "vWANHubRoutingPreferenceSecondary": { + "value": "ExpressRoute" } } -} +} \ No newline at end of file diff --git a/eslzArm/managementGroupTemplates/policyDefinitions/initiatives.json b/eslzArm/managementGroupTemplates/policyDefinitions/initiatives.json index 40dbc1294..b82c80aee 100644 --- a/eslzArm/managementGroupTemplates/policyDefinitions/initiatives.json +++ b/eslzArm/managementGroupTemplates/policyDefinitions/initiatives.json @@ -4,8 +4,8 @@ "metadata": { "_generator": { "name": "bicep", - "version": "0.27.1.19265", - "templateHash": "8949624129556050524" + "version": "0.28.1.47646", + "templateHash": "10303493817097178140" } }, "parameters": { diff --git a/eslzArm/managementGroupTemplates/policyDefinitions/policies.json b/eslzArm/managementGroupTemplates/policyDefinitions/policies.json index 6ee2ad1c9..2edbae4ca 100644 --- a/eslzArm/managementGroupTemplates/policyDefinitions/policies.json +++ b/eslzArm/managementGroupTemplates/policyDefinitions/policies.json @@ -4,8 +4,8 @@ "metadata": { "_generator": { "name": "bicep", - "version": "0.27.1.19265", - "templateHash": "17581192929525467861" + "version": "0.28.1.47646", + "templateHash": "1159734146410583397" } }, "parameters": { diff --git a/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json b/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json index 5c20fb7d8..385dcbebd 100644 --- a/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json +++ b/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json @@ -4,8 +4,8 @@ "metadata": { "_generator": { "name": "bicep", - "version": "0.27.1.19265", - "templateHash": "17304419402677227150" + "version": "0.28.1.47646", + "templateHash": "7289710698265093596" } }, "variables": {