The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organizations to define their Azure architecture
This pull request includes updates to various policy definitions to enforce minimum TLS versions and ensure secure connections across different Azure services. The most important changes include updating the TLS version policies, correcting logical operators, and fixing minor typos.
Overview/Summary
This pull request includes updates to various policy definitions to enforce minimum TLS versions and ensure secure connections across different Azure services. The most important changes include updating the TLS version policies, correcting logical operators, and fixing minor typos.
TLS Version Updates:
src/resources/Microsoft.Authorization/policyDefinitions/Append-AppService-latestTLS.json
: Added support for TLS 1.3 and updated the policy to use the "less" operator for comparison. [1] [2] [3]src/resources/Microsoft.Authorization/policyDefinitions/Append-Redis-sslEnforcement.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deny-EH-MINTLS.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deny-MySql-http.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deny-Redis-http.json
: Updated the policy to use the "less" operator for comparison and fixed a typo in the display name. [1] [2] [3]Minor Fixes:
docs/wiki/Whats-new.md
: Updated the description to reflect changes in custom policies enforcing minimum TLS versions.src/resources/Microsoft.Authorization/policyDefinitions/Deny-Sql-minTLS.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deny-SqlMi-minTLS.json
: Corrected typos in the description and updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deploy-MySQL-sslEnforcement.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deploy-PostgreSQL-sslEnforcement.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deploy-SQL-minTLS.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deploy-SqlMi-minTLS.json
: Updated the policy to use the "less" operator for comparison. [1] [2]src/resources/Microsoft.Authorization/policyDefinitions/Deploy-Storage-sslEnforcement.json
: Updated the policy to use the "less" operator for comparison. [1] [2]Azure Public