Comments (4)
If you don't want them to be parameterized you can change the policy to this:
{
"not": {
"field": "Microsoft.Network/networkInterfaces/ipconfigurations[*].subnet.id",
"in": ["id1", "id2"]
}
}
If you want it to still be parameterized but have all the "allowedValues" checked by default you can use the below "defaultValue" specification. This won't be reflected in the UX yet but will do the right thing if someone is assigning the policy programatically (PS/CLI/etc...). The UX will start being defaultValue aware "soon".
"parameters": {
"subnetIds": {
"type": "array",
"allowedValues": ["id1", "id2"],
"defaultValue": ["id1", "id2"]
}
}
from azure-policy.
Sorry, I don't fully understand the question. Do you want to provide a list of "acceptable values" for the "subnetIds" parameter to make it easier for users to assign the policy in the UX?
If so, you can accomplish that with the following:
"parameters": {
"subnetIds": {
"type": "array",
"allowedValues": ["id1", "id2"]
}
}
from azure-policy.
@pilor this does the work partially. The one you suggest is wonderful, but it only creates a choice. What I need is something like
"parameters": {
"subnetIds": {
"type": "array",
"values": ["id1", "id2"]
}
}
After deploying the template, all id1 and id2 are selected so I don't have to go to Azure Portal to check their boxes.
Thank you!
from azure-policy.
@pilor Thank you very much for the new property called defaultValue introduced. Hopefully it goes to Azure Portal so testing would be faster.
from azure-policy.
Related Issues (20)
- Kubernetes cluster pods should only use approved host network and port range
- Azure Cognitive Search services should use customer-managed keys to encrypt data at rest: Does not function with Deny Effect
- Built-In DeployIfNotExists policies for diagnostic settings on Table and Queue Storage is reporting faulty non-compliance
- Require a tag on resource groups: modify policyRule to exclude resourcegroup name auto-created from azure portal to avoid errors on deployment HOT 2
- ExcludeUsageCosts_Deny: Misspelling on Policy Description
- There was an error processing your request. Try again in a few moments.
- Creating a complex policy to cross-reference two array fields
- CMMC 2.0 Level 2 (4e50fd13-098b-3206-61d6-d1d78205cb45) PolicySet - incorrect additionalMetadataId value
- Enabling AKS Azure Policy Addon when workload identity is enabled. Pods start showing error "Multiple user assigned identities exist, please specify the clientId / resourceId of the identity in the token request"
- NetworkSecurityGroup_FlowLog_Deploy.json - errors in Az Gov - resourceNotfound
- Broken link in AKS Safeguards policy
- Alias request: Microsoft.Compute/virtualMachines/osProfile.windowsConfiguration.patchSettings.patchMode and Microsoft.Compute/virtualMachines/osProfile.linuxConfiguration.patchSettings.patchMode HOT 3
- Policy "Deploy Azure Policy Add-on to Azure Kubernetes Service clusters" refers to a role definitions which does not exists HOT 1
- Azure Policy does not support Red Hat 9.*
- VM Backup policies are missing Hotpatch image SKUs HOT 1
- Configure Windows Machines to be associated with a Data Collection Rule or a Data Collection Endpoint: Missing Image Offer HOT 1
- Configure Windows Machines to be associated with a Data Collection Rule or a Data Collection Endpoint: Add multiple dcrResourceIds
- Over-priviledged managed identity - role definition ID should be changed
- Over-priviledged managed identity - role definition ID should be changed
- "[Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines" for a UAMI in another subscription
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azure-policy.