Enterprise-Scale icon indicating copy to clipboard operation
Enterprise-Scale copied to clipboard
verified publisher icon Azure

Guardrail for Key Vault assignment parameter issue

Open jasperpostcn opened this issue 1 year ago • 2 comments

Community Note

  • Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Versions

terraform: 1.9.*

azure provider: v3.114.0

module: CAF version 6.0.0

Description

Describe the bug

After deploying the CAF Enterprise one if the policy assignments that is present by default is the Enforce recommended guardrails for Azure Key Vault. While it is for mostly large initiatives quite hard to map the Policy Texts to the parameter names, in case of the keyvault one it shows multiple parameter with the name Effect. See screenshot for the example.

One improvement I would say is that the Parameter ID can be what it currently is, but the Parameter Name should reflect the names in the assignment so it is easier to map it in code.

Steps to Reproduce

  1. Deploy CAF 6
  2. Go to Policy > Assignments >Enforce recommended guardrails for Azure Key Vault (can be multiple)
  3. Click Edit Assignment and go to Parameters

Screenshots

Edit Mode view: keyvault-guardrails

Assignment view: image

jasperpostcn avatar Aug 09 '24 08:08 jasperpostcn

Hi thanks for reporting - passing back to upstream repo for triage by @Springstone

matt-FFFFFF avatar Sep 07 '24 08:09 matt-FFFFFF

Tracking in AB#37721

Springstone avatar Oct 11 '24 08:10 Springstone

PR that addresses this is https://github.com/Azure/Enterprise-Scale/pull/1824

Springstone avatar Nov 04 '24 12:11 Springstone