Azure / Enterprise-Scale

The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organizations to define their Azure architecture
https://aka.ms/alz
MIT License
1.72k stars 975 forks source link

Provide an extra allowed value for initiative parameter AppServiceminTlsVersion #1816

Open neok-g opened 2 weeks ago

neok-g commented 2 weeks ago

What happened? Provide a clear and concise description of the bug, including deployment details.

De policy initiative Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit has a parameter AppServiceminTlsVersion which contains the allowed values "1.2", "1.0", "1.1". However "1.3" is missing and the policy AppService append sites with minimum TLS version to enforce. to which this initiative parameter is forwarded does contain the allowed values: "1.3", "1.2", "1.0", "1.1".

The result is a policy with a conflicting compliancy state.

Please provide the correlation id associated with your error or bug.

xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx

What was the expected outcome?

Would like to have an option to set AppServiceminTlsVersion to 1.3

Relevant log output

No response

Check previous GitHub issues

Code of Conduct

Springstone commented 1 week ago

@neok-g transferred upstream to address.

Springstone commented 1 week ago

Tracking in AB#38125

Springstone commented 1 week ago

Resolved in PR https://github.com/Azure/Enterprise-Scale/pull/1827 - which will be published in the next Policy Refresh.