GR5 | Validation 1 | AllowedLocationInitiativeId config.json field #314
Assignees
Labels
bug
Something isn't working
Client Reported
Client reported the issue (either bugfix needed or enhancement needed in their view)
essential
Enhancement or fix(es) that needs attention and time
Iteration #1
Before V2.0 go-live
PriorityForAssignees -High
question
Further information is requested
Comments
MathesonSho
added
bug
|
Request: Update the regex format to only accept management group/ root tenant level format. For example: /providers/Microsoft.Management/managementGroups/252afaf3-eb71-4f05-8da2-279c8b2466b7/providers/Microsoft.Authorization/policySetDefinitions/64f0399fa4b14227856a4335 in 163gccspm. Question: If the client doesn't need to fill in the config.json allowed location initiative parameter- should it be empty, left as-is or add "N/A"? Current config.json has the following filled in. |
MathesonSho
changed the title
6 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
In the instructions it says we can use "N/A" but that doesn't work.
If we point to the initiative we do have, we have a pattern match fail because the code looks for initiatives with an ID that matches the pattern "/(subscriptions/[a-fA-F0-9]{8}-(?:[a-fA-F0-9]{4}-){3}[a-fA-F0..." basically an initiative defined on a sub.
Our initiative is defined on a management group as high as we can and then assigned at the correct level as per best practices. Its ID looks like:"/providers/Microsoft.Management/managementGroups/OOOOO/providers/Microsoft.Authorization/policySetDefinitions/SSC-ReEEEE_LoCCCC_RRRRRR""
Azure CaC version
v2.1.2
**Additional Context/ Question"
Please book a discussion session with operations. Done.
See request in below comments.
The text was updated successfully, but these errors were encountered: