From 962e289a0aee780c35664d108bb2d4e722e577a5 Mon Sep 17 00:00:00 2001
From: Seif Bassem <38246040+sebassem@users.noreply.github.com>
Date: Mon, 2 Sep 2024 05:19:50 +0300
Subject: [PATCH] Adding a link to RBAC constrained delegation limitations
 (#847)

* Add availability zones support and configure default parameters

* Remove availability zone support check and configuration

* Add support for various Azure regions and their zones

* chore: Add note about limitations when delegating role assignment management with conditions
---
 infra-as-code/bicep/modules/roleAssignments/README.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/infra-as-code/bicep/modules/roleAssignments/README.md b/infra-as-code/bicep/modules/roleAssignments/README.md
index d49577b9f..a0f7fcc8a 100644
--- a/infra-as-code/bicep/modules/roleAssignments/README.md
+++ b/infra-as-code/bicep/modules/roleAssignments/README.md
@@ -193,6 +193,9 @@ For each module, you can add a role assignment condition to securely delegate ro
 - Remove all newlines from the condition code.
 - Escape any single quote using a backslash (only in Bicep, no need in JSON parameters file).
 
+> **NOTE:**
+> Make sure to review the [limitations](https://learn.microsoft.com/azure/role-based-access-control/delegate-role-assignments-overview?tabs=template#known-issues) related to delegating role assignment management with conditions.
+
 Example:
 
 ```json