policy definition Deploy-Diagnostics-Website is incompliant because of new log category in App Service resource

Azure / Enterprise-Scale

The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organizations to define their Azure architecture

https://aka.ms/alz

MIT License

1.69k stars 963 forks source link

policy definition Deploy-Diagnostics-Website is incompliant because of new log category in App Service resource #1620

Closed NucLabs closed 3 months ago

NucLabs commented 5 months ago

Describe the bug A new log category was added to WebApps (see picture) rendering all WebApp resources incompliant for the policy Deploy-Diagnostics-Website

Steps to reproduce

Assign the policy Deploy-Diagnostics-Website to a scope
Deploy a web app in the scope. Diagnostic settings will be configured, but not for the App Service Authentication logs category

Screenshots

Springstone commented 5 months ago

@NucLabs many thanks for your submissions as always! Please note, that a LOT of change is coming to ALZ including fundamentally changing how we implement Diagnostic Settings logging in ALZ. Stay tuned.

NucLabs commented 5 months ago

@Springstone Are you saying that bugs in the current policies will not be fixed, making it not worth the effort of reporting? When will the new collection of policies/initiatives be released?

Springstone commented 3 months ago

Closing this as we've deprecated all our diagnostic settings policies and shifted to the PG owned initiative to do the same. Please review https://aka.ms/alz/whatsnew for details.

If you find gaps in diagnostic settings coverage, please add the missing services to this discussion: #1644 as this is where we will track this going forward.