Skip to content

Management landing zone support
Compare
Choose a tag to compare
@krowlandson krowlandson released this 28 Apr 21:14
· 443 commits to main since this release
v0.2.0
e5d7b67
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This release adds the following features:

  • New feature: Management landing zone support, providing the ability to now deploy the following additional resources:
    • Log Analytics workspace
    • Automation Account (integrated with Log Analytics workspace)
    • Recommended Log Analytics solutions
    • Automated integration of Log Analytics workspace config into Policy Assignments
    • "Feature switches" to control additional Policy Assignment settings relating to the Management capabilities
  • New feature: Define archetype definition templates to add or remove assets from the OOTB archetype definitions
  • New feature: Configure manual overrides for Role Definitions associated with Policy Assignments using Managed Identity
  • Remove Deploy-Diagnostics-PublicIP Policy Definition (now built-in)
  • Add multiple Policy Definitions for ASC Defender configuration
  • Replace Deploy-ASC-Standard Policy Definition with Deploy-ASC-Config Policy Set Definition
  • Update Log Analytics workspace configuration settings in Deploy-Log-Analytics Policy Definition
  • Fix incorrect logic for handling enforcement_mode setting for Policy Assignments
  • Remove deprecated skip_service_principal_aad_check setting from Role Assignments
  • Add support for Terraform v0.15.0
  • Update minimum supported AzureRM provider version to v2.41.0
Assets 2