Provide an extra allowed value for initiative parameter AppServiceminTlsVersion - Githubissues

Azure / Enterprise-Scale

The Azure Landing Zones (Enterprise-Scale) architecture provides prescriptive guidance coupled with Azure best practices, and it follows design principles across the critical design areas for organizations to define their Azure architecture

https://aka.ms/alz

MIT License

1.72k stars 980 forks source link

Provide an extra allowed value for initiative parameter AppServiceminTlsVersion #1816

Open neok-g opened 3 weeks ago

neok-g commented 3 weeks ago

What happened? Provide a clear and concise description of the bug, including deployment details.

De policy initiative Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit has a parameter AppServiceminTlsVersion which contains the allowed values "1.2", "1.0", "1.1". However "1.3" is missing and the policy AppService append sites with minimum TLS version to enforce. to which this initiative parameter is forwarded does contain the allowed values: "1.3", "1.2", "1.0", "1.1".

The result is a policy with a conflicting compliancy state.

Please provide the correlation id associated with your error or bug.

xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx

What was the expected outcome?

Would like to have an option to set AppServiceminTlsVersion to 1.3

Relevant log output

No response

Check previous GitHub issues

[x] I have searched the issues for this item and found no duplicate

Code of Conduct

[x] I agree to follow this project's Code of Conduct

Springstone commented 3 weeks ago

@neok-g transferred upstream to address.

Springstone commented 2 weeks ago

Tracking in AB#38125

Springstone commented 2 weeks ago

Resolved in PR https://github.com/Azure/Enterprise-Scale/pull/1827 - which will be published in the next Policy Refresh.