New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[CoE Starter Kit - QUESTION] Apps get quarantined if maker fills out compliance information but admin not yet approved #3729
Comments
For the compliance technique, if the app was requested for compliance X days ago (7 by default, configurable by env var) and if the Risk Assessment state is not Complete. You are correct this means if the person filled it out and the admin just didnt approve / reject yet. I think we should change that. |
Thank you so much for raising and helping make the starter kit great! |
Thank you for your answering! So, are the following scenarios correct when isolating apps using this feature? ①Notify users to submit compliance information from the Developer Compliance Center under the conditions in the image above (Admin | Quarantine non-compliant apps). Is the above scenario correct? |
There is no reject in the compliance world so there seems to be something not quite right above. You can manually quarantine, or (starting in Oct) if the app is in "requested" state for too long (configurable per above) then it will be auto-quaratined. |
@sudadakkota This has been fixed in the latest release. Please install the latest version of the toolkit following the instructions for installing updates. Note that if you do not remove the unmanaged layers as described there you will not receive updates from us. |
What is your question?
Please teach me about quarantining apps with the Governance component.
Based on the following public information, we are investigating the specification of the governance component.
https://learn.microsoft.com/en-us/power-platform/guidance/coe/governance-components#app-quarantine-process
https://learn.microsoft.com/en-us/power-platform/guidance/coe/setup-quarantine-components
According to the public information, "Admin | Quarantine non-compliant apps" included in the governance component is executed weekly and updates "Quarantine App" of apps that meet some conditions.
It looks like the conditions include "Admin Risk Assessment status is not complete.", but I don't understand what this means.
Does this mean that the user submitted the app compliance information from the "Developer Compliance Center", but the administrator did not operate the "Power Platform Admin View" app and left it as it was?
What solution are you experiencing the issue with?
Governance
What solution version are you using?
September 2022
What app or flow are you having the issue with?
Admin | Quarantine non-compliant apps
The text was updated successfully, but these errors were encountered: