Align custom role definitions to CAF in Ref-Starter - Githubissues

azurenoops / ref-scca-enclave-landing-zone-starter

A reference implementation of an SCCA-compliant Mission Enclave landing zone that supports running Azure PaaS services using Azure NoOps.

5 stars 7 forks source link

Align custom role definitions to CAF in Ref-Starter #30

Open jrspinella opened 1 year ago

jrspinella commented 1 year ago

Please provide us with the following information:

Align custom role definitions to CAF recommendations posted at https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/design-area/identity-access#prerequisites-for-a-landing-zone---design-recommendations.

This alignment will help consistency with the reference architecture.

Custom roles to include:

Network Operations (NetOps) Security Operations (SecOps) Subscription owner Mission Application Owners (DevOps/AppOps)

These roles are connected to the Shared Responsibility Model as each is defined as a function in the ref-stater.

Roles should be defined in:

Key Vault
Storage Accounts
Network Access
Security Controls

This issue is for a: (mark with an `x`)

- [ ] bug report -> please search issues before submitting
- [X] feature request
- [ ] documentation issue or request
- [ ] regression (a behavior that used to work and stopped in a new release)

Mention any other details that might be useful

Thanks! We'll be in touch soon.

sstjean commented 1 year ago

Should we break this down in to separate issues? For Storage, KV, Network, Security, etc?