Skip to content

Commit

Permalink
Fix private dns zone list in policy assignment
Browse files Browse the repository at this point in the history
  • Loading branch information
@oZakari
oZakari committed Nov 13, 2024
1 parent 1618d0f commit 60c25be
Showing 1 changed file with 143 additions and 92 deletions.
235 changes: 143 additions & 92 deletions ...ssignments/lib/policy_assignments/policy_assignment_es_deploy_private_dns_zones.tmpl.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,164 +13,215 @@
"effect1": {
"value": "deployIfNotExists"
},
"azureFilePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureFilePrivateDnsZoneId]"
"azureAcrPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAcrPrivateDnsZoneId"
},
"azureAutomationWebhookPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationWebhookPrivateDnsZoneId]"
"azureAcrDataPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAcrDataPrivateDnsZoneId"
},
"azureAppPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAppPrivateDnsZoneId"
},
"azureAppServicesPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAppServicesPrivateDnsZoneId"
},
"azureArcGuestconfigurationPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureArcGuestconfigurationPrivateDnsZoneId"
},
"azureArcHybridResourceProviderPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureArcHybridResourceProviderPrivateDnsZoneId"
},
"azureArcKubernetesConfigurationPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureArcKubernetesConfigurationPrivateDnsZoneId"
},
"azureAsrPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAsrPrivateDnsZoneId"
},
"azureAutomationDSCHybridPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationDSCHybridPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationDSCHybridPrivateDnsZoneId"
},
"azureCosmosSQLPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosSQLPrivateDnsZoneId]"
"azureAutomationWebhookPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationWebhookPrivateDnsZoneId"
},
"azureCosmosMongoPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosMongoPrivateDnsZoneId]"
"azureBatchPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureBatchPrivateDnsZoneId"
},
"azureBotServicePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureBotServicePrivateDnsZoneId"
},
"azureCognitiveSearchPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveSearchPrivateDnsZoneId"
},
"azureCognitiveServicesPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveServicesPrivateDnsZoneId"
},
"azureCosmosCassandraPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosCassandraPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosCassandraPrivateDnsZoneId"
},
"azureCosmosGremlinPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosGremlinPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosGremlinPrivateDnsZoneId"
},
"azureCosmosMongoPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosMongoPrivateDnsZoneId"
},
"azureCosmosSQLPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosSQLPrivateDnsZoneId"
},
"azureCosmosTablePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosTablePrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosTablePrivateDnsZoneId"
},
"azureDataFactoryPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPrivateDnsZoneId]"
"azureDataExplorerPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDataExplorerPrivateDnsZoneId"
},
"azureDataFactoryPortalPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPortalPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPortalPrivateDnsZoneId"
},
"azureDataFactoryPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPrivateDnsZoneId"
},
"azureDatabricksPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDatabricksPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDatabricksPrivateDnsZoneId"
},
"azureHDInsightPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureHDInsightPrivateDnsZoneId]"
"azureDiskAccessPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDiskAccessPrivateDnsZoneId"
},
"azureMigratePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMigratePrivateDnsZoneId]"
"azureEventGridDomainsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridDomainsPrivateDnsZoneId"
},
"azureStorageBlobPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobPrivateDnsZoneId]"
"azureEventGridTopicsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridTopicsPrivateDnsZoneId"
},
"azureStorageBlobSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobSecPrivateDnsZoneId]"
"azureEventHubNamespacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventHubNamespacePrivateDnsZoneId"
},
"azureStorageQueuePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueuePrivateDnsZoneId]"
"azureFilePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureFilePrivateDnsZoneId"
},
"azureStorageQueueSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueueSecPrivateDnsZoneId]"
"azureHDInsightPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureHDInsightPrivateDnsZoneId"
},
"azureStorageFilePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageFilePrivateDnsZoneId]"
"azureIotCentralPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotCentralPrivateDnsZoneId"
},
"azureStorageStaticWebPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebPrivateDnsZoneId]"
"azureIotDeviceupdatePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotDeviceupdatePrivateDnsZoneId"
},
"azureStorageStaticWebSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebSecPrivateDnsZoneId]"
"azureIotHubsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotHubsPrivateDnsZoneId"
},
"azureStorageDFSPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSPrivateDnsZoneId]"
"azureIotPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotPrivateDnsZoneId"
},
"azureStorageDFSSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSSecPrivateDnsZoneId]"
"azureKeyVaultPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureKeyVaultPrivateDnsZoneId"
},
"azureSynapseSQLPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLPrivateDnsZoneId]"
"azureKubernetesManagementPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureKubernetesManagementPrivateDnsZoneId"
},
"azureSynapseSQLODPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLODPrivateDnsZoneId]"
"azureMachineLearningWorkspacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspacePrivateDnsZoneId"
},
"azureSynapseDevPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseDevPrivateDnsZoneId]"
"azureMachineLearningWorkspaceSecondPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspaceSecondPrivateDnsZoneId"
},
"azureManagedGrafanaWorkspacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureManagedGrafanaWorkspacePrivateDnsZoneId"
},
"azureMediaServicesKeyPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesKeyPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesKeyPrivateDnsZoneId"
},
"azureMediaServicesLivePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesLivePrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesLivePrivateDnsZoneId"
},
"azureMediaServicesStreamPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesStreamPrivateDnsZoneId]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesStreamPrivateDnsZoneId"
},
"azureMigratePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMigratePrivateDnsZoneId"
},
"azureMonitorPrivateDnsZoneId1": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId1]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId1"
},
"azureMonitorPrivateDnsZoneId2": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId2]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId2"
},
"azureMonitorPrivateDnsZoneId3": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId3]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId3"
},
"azureMonitorPrivateDnsZoneId4": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId4]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId4"
},
"azureMonitorPrivateDnsZoneId5": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId5]"
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId5"
},
"azureWebPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureWebPrivateDnsZoneId]"
"azureRedisCachePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureRedisCachePrivateDnsZoneId"
},
"azureBatchPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureBatchPrivateDnsZoneId]"
"azureServiceBusNamespacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureServiceBusNamespacePrivateDnsZoneId"
},
"azureAppPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAppPrivateDnsZoneId]"
"azureSignalRPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSignalRPrivateDnsZoneId"
},
"azureAsrPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAsrPrivateDnsZoneId]"
"azureSiteRecoveryBackupPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryBackupPrivateDnsZoneId"
},
"azureIotPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotPrivateDnsZoneId]"
"azureSiteRecoveryBlobPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryBlobPrivateDnsZoneId"
},
"azureKeyVaultPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureKeyVaultPrivateDnsZoneId]"
"azureSiteRecoveryQueuePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryQueuePrivateDnsZoneId"
},
"azureSignalRPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSignalRPrivateDnsZoneId]"
"azureStorageBlobPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobPrivateDnsZoneId"
},
"azureAppServicesPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAppServicesPrivateDnsZoneId]"
"azureStorageBlobSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobSecPrivateDnsZoneId"
},
"azureEventGridTopicsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridTopicsPrivateDnsZoneId]"
"azureStorageDFSPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSPrivateDnsZoneId"
},
"azureDiskAccessPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureDiskAccessPrivateDnsZoneId]"
"azureStorageDFSSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSSecPrivateDnsZoneId"
},
"azureCognitiveServicesPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveServicesPrivateDnsZoneId]"
"azureStorageFilePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageFilePrivateDnsZoneId"
},
"azureIotHubsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureIotHubsPrivateDnsZoneId]"
"azureStorageQueuePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueuePrivateDnsZoneId"
},
"azureEventGridDomainsPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridDomainsPrivateDnsZoneId]"
"azureStorageQueueSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueueSecPrivateDnsZoneId"
},
"azureRedisCachePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureRedisCachePrivateDnsZoneId]"
"azureStorageStaticWebPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebPrivateDnsZoneId"
},
"azureAcrPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureAcrPrivateDnsZoneId]"
"azureStorageStaticWebSecPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebSecPrivateDnsZoneId"
},
"azureEventHubNamespacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureEventHubNamespacePrivateDnsZoneId]"
"azureStorageTablePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageTablePrivateDnsZoneId"
},
"azureMachineLearningWorkspacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspacePrivateDnsZoneId]"
"azureStorageTableSecondaryPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageTableSecondaryPrivateDnsZoneId"
},
"azureMachineLearningWorkspaceSecondPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspaceSecondPrivateDnsZoneId]"
"azureSynapseDevPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseDevPrivateDnsZoneId"
},
"azureServiceBusNamespacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureServiceBusNamespacePrivateDnsZoneId]"
"azureSynapseSQLPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLPrivateDnsZoneId"
},
"azureCognitiveSearchPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveSearchPrivateDnsZoneId]"
"azureSynapseSQLODPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLODPrivateDnsZoneId"
},
"azureVirtualDesktopHostpoolPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureVirtualDesktopHostpoolPrivateDnsZoneId"
},
"azureVirtualDesktopWorkspacePrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureVirtualDesktopWorkspacePrivateDnsZoneId"
},
"azureWebPrivateDnsZoneId": {
"value": "${varPrivateDnsZonesFinalResourceIds}.azureWebPrivateDnsZoneId"
}
},
"policyDefinitionId": "${varTopLevelManagementGroupResourceId}/providers/Microsoft.Authorization/policySetDefinitions/Deploy-Private-DNS-Zones",
Expand Down

0 comments on commit 60c25be

Please sign in to comment.