Stephanie Lanius
Stephanie Lanius
### Community Note - Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the community and maintainers prioritize this request - Please do...
## Overview/Summary Replace this with a brief description of what this Pull Request fixes, changes, etc. ## This PR fixes/adds/changes/removes Add policy exemptions to the CAF using the `archetype_config_overrides` as...
**Describe the feature** Grafana is missing in the following initiatives: 1. [Deny-public-paas](https://github.com/Azure/Enterprise-Scale/blob/main/src/resources/Microsoft.Authorization/policySetDefinitions/Deny-PublicPaaSEndpoints.json) - there is a [built-in policy which should be added](https://www.azadvertizer.net/azpolicyadvertizer/e8775d5a-73b7-4977-a39b-833ef0114628.html) 2. The policy is also missing in the...
Eventhub has a property for the minimum TLS version. This property should be included in the Initiative "Enforce-TLS-SSL". There is a built-in Policy that can be used: [Event Hub namespaces...
Hi everyone, currently, it is possible to deploy eventhub with public access. it does not seem to be included in [this initiative](https://github.com/Azure/Enterprise-Scale/blob/9ead68e2c05f1ca534489379c03be54b8cc32cba/src/resources/Microsoft.Authorization/policySetDefinitions/Deny-PublicPaaSEndpoints.json). There has already been [an issue which asked...
**The initiative Deploy-Private-DNS-Zones is missing the DNS entry for privatelink.notebooks.azure.net** The machine learning workspace, [as per documentation](https://learn.microsoft.com/de-de/azure/machine-learning/how-to-troubleshoot-secure-connection-workspace?view=azureml-api-2#azure-dns-troubleshooting), needs entries in two private DNS zones, privatelink.api.azureml.ms and privatelink.notebooks.azure.net. Currently, the initiative...
Hi, I added a sample how to use velero with workload identity + open ID connect instead of service principal (secret). this has been supported for a while now, and...
## Description small proposed change: some policy sets, e.g. [this one ](https://github.com/Azure/terraform-azurerm-caf-enterprise-scale/blob/e6cb2142e51637abf17630b87c7023daca21e5d0/modules/archetypes/lib/policy_set_definitions/policy_set_definition_es_enforce_acsb.tmpl.json#L9) have a description. It would be great if this description is picked up, when rolled out by the...
**Describe the solution you'd like** Hi! The old log analytics agent will be turned off in august 2024 and moving to AMA quickly is critical. Unfortunately, the change tracking built-in...
**Describe the bug** The initiative Deploy-MDFC-Config_20240319 has one policy migrateToMdeTvm. This policy takes two input parameters: 1) Effect 2) Slected Vulnerability Assessment provider When assigning the initiative, it is not...