Comments (1)
kmcquade
commented on May 25, 2024
Example:
locals {
policy_ids_noparams = [
# ------------------------------------------------------------------------------------------------------------------
# Azure Security Center
# ------------------------------------------------------------------------------------------------------------------
"17b3de92-f710-4cf4-aa55-0e7859f1ed7b", # [ASC Private Preview] Deploy - Configure system-assigned managed identity to enable Azure Monitor assignments on VMs
# ------------------------------------------------------------------------------------------------------------------
# Cognitive Services
# ------------------------------------------------------------------------------------------------------------------
"0725b4dd-7e76-479c-a735-68e7ee23d5ca", # Cognitive Services accounts should disable public network access
# ------------------------------------------------------------------------------------------------------------------
# Monitoring
# ------------------------------------------------------------------------------------------------------------------
"91cb9edd-cd92-4d2f-b2f2-bdd8d065a3d4", # Deploy Dependency agent to Windows Azure Arc machines
# ------------------------------------------------------------------------------------------------------------------
# Network
# ------------------------------------------------------------------------------------------------------------------
"c251913d-7d24-4958-af87-478ed3b9ba41", # Flow logs should be configured for every network security group
# ------------------------------------------------------------------------------------------------------------------
# SQL
# ------------------------------------------------------------------------------------------------------------------
"89099bee-89e0-4b26-a5f4-165451757743", # SQL Servers should retain audit data for at least 90 days
# ------------------------------------------------------------------------------------------------------------------
# Storage
# ------------------------------------------------------------------------------------------------------------------
"6edd7eda-6dd8-40f7-810d-67160c639cd9", # Storage accounts should use private link
# ------------------------------------------------------------------------------------------------------------------
# Synapse
# ------------------------------------------------------------------------------------------------------------------
"72d11df1-dd8a-41f7-8925-b05b960ebafc", # Azure Synapse workspaces should use private link
]
}from cloud-guardrails.
Related Issues (20)
- Error in function call HOT 1
- Add tests to validate Terraform output
- Feature: Parameters config file should allow you to list by policy ID, not just display name
- Feature: validate-parameters command
- Python: Improve unit tests and coverage
- Automation: Terratest to validate the Terraform output? HOT 2
- Documentation: Improve user documentation before open sourcing
- describe-policy should output GitHub Link
- list-policies should let you output the short policy-ids
- generate-terraform should save output to a file instead of printing to stdout
- Add documentation about creating the provider.tf file to avoid errors
- Output should tell you how many policies are in enforcement mode or audit mode
- CSV and markdown summary files should be saved to the --output directory, not to the current directory
- Add GitHub action that updates Azure Policy data monthly
- Add GitHub action for publish automation
- Automatically create provider file if it doesn't exist
- Enforcement issues
- Auto populate reference_id in Terraform HOT 1
- Add Terraform version check
- Number of policies count should be included in the parameters optional template
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cloud-guardrails.