-
Hi all,
Would it make sense to show VNET peering to Identity in the CAF ESLZ diagrams? As there are DC1 and DC2 examples, I think it would be clearer for people to understand how they connect to th…
-
The security concept around `AzOps` is questionable. It basically breaks with all of Microsoft's recommendations around `least privileges`. You have a single pipeline with permissions to manage more o…
-
**Describe the bug**
Background: We want to disable Metrics logging to Log Analytics because of cost
Side Note: Seems like this is overlooked in the [Terraform CAF Module Diagnostics Initi…
-
**Describe the bug**
We have this policy assigned in our ESLZ for more then a year. Since a week or two, all our (30+) subscriptions dropped to non-compliant on this policy.
I have tested and …
-
**Describe the bug**
The "Azure Landing Zone" template of the Azure portal does not work correctly. I follow the wizard steps and when I get to the validation point, it fails. These are the err…
-
- Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the community and maintai…
-
## Question/Feedback
is IaaC code for subscription-vending here based on the new AVM ?
in that link : https://learn.microsoft.com/en-us/azure/architecture/landing-zones/subscription-vending
…
-
Hi,
The docs for the .gdnconfig show only a handful of variables for the TemplateAnalyzer: https://github.com/microsoft/security-devops-action/wiki#templateanalyzer-options
Of which, there doesn…
-
**Describe the bug**
When opting to use a single subscription for platform, one of the policies which are assigned to the "platform" mg is "deny the creation of public ip". Due to the effect of…
-
[AB#29959](https://dev.azure.com/CSUSolEng/2a9d5a5a-8998-4ad0-81c8-ef3045e4da97/_workitems/edit/29959)
### Contact Details
ztrocinski@outlook.com
### Let us know the feedback or general quest…