From 317081f683a065aae93aeb65769b497787ee8cff Mon Sep 17 00:00:00 2001
From: Sacha Narinx <Springstone@users.noreply.github.com>
Date: Thu, 21 Dec 2023 19:29:57 +0400
Subject: [PATCH] New Policy/Assignment: Resource Group and Resource locations
 should match (#1507)

Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>
---
 docs/wiki/ALZ-Policies-FAQ.md                 |   4 +-
 docs/wiki/ALZ-Policies.md                     |   3 +-
 docs/wiki/Whats-new.md                        |   3 +
 .../wiki/media/ALZ Policy Assignments v2.xlsx | Bin 37070 -> 37411 bytes
 eslzArm/eslzArm.json                          |  26 +++++++++
 ...IT-ResourceRGLocationPolicyAssignment.json |  54 ++++++++++++++++++
 .../policyDefinitions/policies.json           |   4 +-
 .../customRoleDefinitions.json                |   4 +-
 8 files changed, 92 insertions(+), 6 deletions(-)
 create mode 100644 eslzArm/managementGroupTemplates/policyAssignments/AUDIT-ResourceRGLocationPolicyAssignment.json

diff --git a/docs/wiki/ALZ-Policies-FAQ.md b/docs/wiki/ALZ-Policies-FAQ.md
index 4bb99c45e0..5f3a6f46a7 100644
--- a/docs/wiki/ALZ-Policies-FAQ.md
+++ b/docs/wiki/ALZ-Policies-FAQ.md
@@ -4,7 +4,7 @@
 
 There is a lot of change happening for policies in Azure, and by extension ALZ, and we have a number of common issues being raised by our customers and partners. This page is intended to address those issues.
 
-### Diagnostic Settings v2 (May 2023)
+### Diagnostic Settings v2 (December 2023)
 
 There are several issues raised around Diagnostic Settings, and we acknowledge that this is a complex area that is causing a lot of pain.
 
@@ -14,6 +14,8 @@ Check back here for updates, and be sure to bookmark [What's New](https://aka.ms
 
 To view the current list of GitHub issues related to diagnostic settings, please see [this link](https://github.com/Azure/Enterprise-Scale/labels/Area:%20Diagnostic%20Settings).
 
+> **UPDATE** New built-in Diagnostic Settings policies and initiatives will be landing in early CY2024. As a heads-up we will begin deprecating all our custom diagnostic settings policies, and changing our default assignment to leverage the associated built-in initiative for Log Analytics (as the target) - additional options will include targeting Event Hubs or Storage accounts.
+
 ### Azure Monitor Agent (May 2023)
 
 Similarly, as Microsoft Monitor Agent (MMA) is on a deprecation path, Azure Monitor Agent (AMA) is the recommended replacement and there are a number of requests to support AMA specific policies. AMA is currently in preview, and we are working with the product group to ensure that the policies are updated as soon as possible. Some policies are ready, however, the initiative to activate all components is still being worked on.
diff --git a/docs/wiki/ALZ-Policies.md b/docs/wiki/ALZ-Policies.md
index cef05074be..5be1df643a 100644
--- a/docs/wiki/ALZ-Policies.md
+++ b/docs/wiki/ALZ-Policies.md
@@ -68,7 +68,7 @@ This management group is a parent to all the other management groups created wit
 | **Policy Type**           | **Count** |
 | :---                      |   :---:   |
 | `Policy Definition Sets`  | **11**     |
-| `Policy Definitions`      | **2**     |
+| `Policy Definitions`      | **3**     |
 </td></tr> </table>
 
 The table below provides the specific **Custom** and **Built-in** **policy definitions** and **policy definitions sets** assigned at the **Intermediate Root Management Group**.
@@ -89,6 +89,7 @@ The table below provides the specific **Custom** and **Built-in** **policy defin
 | **Deny Virtual Machines and Virtual Machine Scale Sets from not using OS Managed Disks** | **Deny Virtual Machines and Virtual Machine Scale Sets from not using OS Managed Disks** | `Policy Definition`, **Built-In**     | Deny virtual machines not using managed disk. It checks the managedDisk property on virtual machine OS Disk fields.                                                                                                                                                                                                                         | Deny                   |
 | **Deploy Azure Monitor Baseline Alerts for Service Health** | **Deploy Azure Monitor Baseline Alerts for Service Health** | `Policy Definition Set`, **Custom**     | Deploys service health alerts, action group and alert processing rule. For more detail on policies included please refer to https://aka.ms/amba/alz/wiki under Policy Initiatives/Service Health initiative. | DeployIfNotExists                   |
 | **Resources should be Zone Resilient** | **Resources should be Zone Resilient** | `Policy Definition Set`, **Built-in**     | Some resource types can be deployed Zone Redundant (e.g. SQL Databases); some can be deploy Zone Aligned (e.g. Virtual Machines); and some can be deployed either Zone Aligned or Zone Redundant (e.g. Virtual Machine Scale Sets). Being zone aligned does not guarantee resilience, but it is the foundation on which a resilient solution can be built (e.g. three Virtual Machine Scale Sets zone aligned to three different zones in the same region with a load balancer). See https://aka.ms/AZResilience for more info. | Audit                   |
+| **Resource Group and Resource locations should match** | **Resource Group and Resource locations should match** | `Policy Definition`, **Built-in**     | In order to improve resilience and reliability, you need to be aware of where resources are deployed. To aid this awareness, ensure that the location of the resource group matches the location of the resources it contains. | Audit                   |
 
 ### Platform
 
diff --git a/docs/wiki/Whats-new.md b/docs/wiki/Whats-new.md
index 5c3ab17ad7..558ead6b04 100644
--- a/docs/wiki/Whats-new.md
+++ b/docs/wiki/Whats-new.md
@@ -44,7 +44,10 @@ Here's what's changed in Enterprise Scale/Azure Landing Zones:
 
 #### Policy
 
+> **IMPORTANT** We've updated the ALZ Policy FAQ with important information about the new Diagnostic Settings v2 policies and initiatives that are will be landing soon. Please read the [ALZ Policy FAQ and Tips](./ALZ-Policies-FAQ) for more information.
+
 - Added new initiative default assignment at the Intermediate Root Management Group for [Resources should be Zone Resilient](https://www.azadvertizer.net/azpolicyinitiativesadvertizer/130fb88f-0fc9-4678-bfe1-31022d71c7d5.html) in Audit mode.
+- Added new default assignment at the Intermediate Root Management Group for [Resource Group and Resource locations should match](https://www.azadvertizer.net/azpolicyadvertizer/0a914e76-4921-4c19-b460-a2d36003525a.html), which will help customers better manage and identify regionally deployed resources and ultimately support improved resilience.
 
 #### Docs
 
diff --git a/docs/wiki/media/ALZ Policy Assignments v2.xlsx b/docs/wiki/media/ALZ Policy Assignments v2.xlsx
index 5e8dc4529f7bb780ad9e633ca2ee98c87e4a2476..80fef44bf4249ed7f9da16f981321d326e50d885 100644
GIT binary patch
delta 14555
zcmY*=WmF!)vLJl81b2tv?(Xgm!QI_8Fu41NdvGVX1q<#D!6mp8+`{JGch1}0{xRJ>
zbGoXlx~xx4O@9Lwmw>+e!9kPt%ZfAw!XbeGKav;_O=J9ME5^WuG}LENTf3)9A!PoB
z9Nxeq2Ht^pR&yV^SjTZ}4;63nUK;&2pYC-r?e>!A;Nj|)caFuksqgErRYclT7r`lM
zyipQaYcI*meERnu0|<gtrx^nvoocVg<ip0}6Xl)t*A|s9X2e2=Vo@e>Y+5^^cP<y8
zvy!x<!L+!-yj{WqKeRmuPi!P1vf-%26|F6G^0TrdDU8!a%~I_{agIm}I)m*)k(BtX
zRBd+2ETi?)kXK=1^>TFx>WrY~m)kQUI^z!*i@|8uKaKu(jhpo5GE_9~dSHVkax{U)
z*1NK^#yaM5I;|FL^Jr@wG_Cx??Ji<~CrVN5Hn*ZadF$iaFhlsw4c)Ntdan%$)i6s2
zH$-wfC77@gePwa6sy>!cKy`miZwr2PTGb7!G1!3NRL5}TJH`mdMxi}n@Y%27+4zgW
zGfG$X>r|2@YnC^WY(W2c_tL*g2PbpFKcR`H;(;v-l}wSIpb9bgifuI*7nu=&qwS=V
z|Agx)#t*g4^@G>*2TDw2bOy;N{o~P<LwE3MkJ5Jo@fr1tsul^Zvh}6+y{}E*r(Sc6
zFcZuVMjtM&h<`v`DYzZ(-tA6?4$QPYwpr(Q%UzZyo^(VOuZt1o0m1}{#Vn6wq+JY?
z0P->QuAPIW-KE9+2O$K+#|KnXIFcg>5z?ngc?u5#!ZQr~_K6wr!homfGV|8;^w+xg
zaU_DmkyCVR3aaYyADM<MNu$?6zytGcPm0_MG`*S|!qkfsR%U~CS*3$*+UYHum}e8O
zW{MFI<1CfN=$E2Ed0}FY-lQUvDDuuz((r^3-`HT*bh>h+lXnT#I54a7Y<8yQPqKBN
zs#lU%ZTsavR1E<s%7ms0t41*<)2e#YiY0lso06v<oOnlaJ<Un+cdO6dW#vn61O`)g
zUcH2_T2~MascFqLs8V86<t%5?wyiaykLWaUa5A4rLB?z4H!Ir~Ra7hE6=|P>iCVaN
z(+XsK2cJa!sz2zFl_{8vN(p!HrMA9cD8u3K4IB%Yu0jCr7xN3<j7WEIEc2Pd7Cw>-
zzU=a}(=w=hRK-JPVg)1%sf>p=#vVKjREobU5u0_eZ4$~0G~$Z7vUp}y=ui&Lh;>@u
zsOkG_gDCM}rVA8GTb+I*8N@)^zQIOXY>a=op{+t3C0lxP0;6S+5wIK7y*kWn%^7>B
z#$d01c~AqidM#{uV6ww(vn{}`F)#kcOS|Btv-t3o6xLv7UP7gb1u!eo8<J)CV(ESr
zNcau5#p4L=d?cYZAzf*hJi-0+*KmIBXH(Q|!s=7zuB$0g2&H_8n^_E61Uf3Vp?y7A
z#VHOlFXWVMZ5Y}I=qO^ykt1qDD(IMd_^1H%8%IFOf*8_FM)tb47S9_wsym4g4s@kf
z4`pU7g^@5~o^2qq_`_WE9Dk=^JtAiJ)3zTHPB#t)HG=Zq`A>q`tB+qus3=p%`+}RX
zn5@Vv#I(*=0K|WU?Z1!Q++8O^9-MIFp=&70y-C?dBpy*AMT;qYye)|Lg|euo%?IGZ
zyTtTjm(O?z>3z-VdWx#FSYgY5^k(3!-njSg=!{6dh|t%Mhu)kkk?peeoE4FL0Lc3|
zD{s#Fn3-wYyqKB*jDfGO7ZYt)y+R+n9KHE}tzS*O{cpbz<QoUR%xpiOolUH49|2om
zkDWz?e&mL{yTy2+uztLrz10JOYk=U_x7&q*kqmJ`{$x8dkD}`6b4g>&f;>FCy;#ik
zY+l}m>S!982QF8Sy*lc$@b=zr-`C;!_jkfuSM3v}D%}kEDlqkWfChNM-1^hDv`-?S
zeK8kJ*%<Fg2}Lm<2rJqA4vLEMhmc$h07>o(G0XP;-ILn36>B}(zWKgc0(f808y@17
zDR@8b)+IBPk1(I@Nv=)M5Jx8`W(TWT5}k0G+fY6aqx4m9Vo5JpnMSm5`zz&!+s1If
zbx_+XCmQ06L{pNQLrV%v!Ah1wN`hh0#%`d<s^UK9F+z>N=+Y?BEac&oR8HV{$ZZC=
za|sA}>*CSyKlezBS|pDp0F>CUMK;qAMeE39oih+c_)TPKtl6wc^H^3}d-Zae3+5S~
zu0>$dlV8$}pUaRW)eMPF4$1=|Bm*H-f<{>`+R5w<{hmvekmeUHRS-BbEN-bi8z}z=
ziQlH>nylAgnCl=nKAtQlEE@K|y;c4W(flc^{BOZO3`b0W>7^Ixq33lG^Z$^3>Jf{;
zijQYFPQ+$uL#b<q(sxV^6;-z7YI^v?r#{-VG83naZrVU6hxb)`JeQ=CF&?vWMVPwJ
z!bFomMv;I(4yOo;mHtzB^3Z8JtCnS1>`*hSlI`^7Vdp*a14pSs9$`7)XajL_(8iDP
z`Be=Tuu2Np<6xym8$!=R?W5F++B;6r$h;rtK2F!jY?VAk$)!YW=C(btW0BvNCGhYJ
z<%P8jGN8m$inSq9{K6aL)%mJgn8yb-5w{#`&^8C#ENOS<QOcFHwgo{ZCvt-q%r4gX
z3*DSw%)NKvAVE0Gq91cw?<@?Y#a}7Fj$Kg;VCuq1Y}f3nuQNbUUhHEgqSHd{KSLY-
zIDwv2)^3JEK75u8UYw>2KK+_<|CL@<pT_M|wxxt!4s1|K-i6|9HA5<0ils&$e;<CO
zFT`x#g_1>71)vIAqR*ltXhy^Eg-_nBydck&SfMhpeo%%UhtM^ajI+edgkX^P<FHQx
z&?cQo21{O>BXHubI&*24Tg_?~0*!Q=-PMNA#nFu6%~#ndC(r#8;k;yq&X&-;AVkZk
zeQ}r?nB3$vbdpib7%N9{Ce<|6PCXS%`49M|i!GiGJ=#BbYZFH6rm~CA)pWSQ?4mt<
zFkfMbCgt5w_vz<M*0|E<?9wRN%0b;gWpm?;ecGr?6c+lHA1Zs~h$QikP7iciOp8}c
zUqnA;xJm79egX%3OFpT_OWWY(Pfl&gyJhSf>p$C0AMHx(+(=U%cSAKx69<1)!MTQw
zVT}-M1VM?pI!uK=kE)y@>{a|4`B_6~u;fRt*fe{lOtW<=1}z_T>wZ6NK>)b`oY;>2
zJ0#IoE_8G2>WSySolIAE4*R0P=RRqmlVwei7FSr-HjLde8ZjSw@_@7RTic%&!F=--
zGp81J3hACS<hTo^zD#{d^GXDixDF{Snf3LbnqwuxKBjA9lFX8nSwFsc$LF5#W70t!
zFuSRcyQu}ka%53>W0NK6?pZDap6s?TYK4y$eqS1UWW~89C25@p+ZxA3y!vb)(M{M{
z^A#a+L3`)TU&*Aa;mn$SXearz7DKWS7nG?R$v|30M~?0GlC_;A#-fGIxc_8_9>xHk
zX!7#ihwL_nHR+@oy2=n<|2~9SQik~-?5hDoTI)qI!kOPIT^a27co_hKlb{YH<ZS~L
zDxLzhiG%eYhEH}yDhKW@;Ao;K+4~))cKiJ}K0m{pvA%X`$dBM*brDp&dXld--D|#7
z(|-L6RA%&w`k&cJDRNSHcIwbMPxQRv4I#!MeCaNOQ!Ft)m9?GNurdshCy_{zDin75
zB@N~wE;0{|0a29T$8Er$VJNtPzJ6*S#V^2<G>R?Dgi+{c5U>BUQ$bV%j5B_<JoS1i
zPFbGfzMv#G)zzHg=XRPxT@f$Hf3zx)K(nXWuvU{0{W%Q=>E3@AjXx##K`5euq99v*
z?(kdT`4-f0O8(C{DE=dDs<@%q@4sB+%tF*i+sjrAx1|O&fYL{oz`D}pS4_VJ-x6NG
zL_EBe(UCt2TdbtDBqod#lqT9E5=RSF=BCR8o6*Y}rfUSrk7yk#8~%?M(fgBm`9`8d
zmh7y|810aL{%OPW2Pk;B2*Mfp)fv2LvVKaXtd7Z}-cgKRTSr~e(;Jnax7xCh<Lvic
z1(Qt}JqH0(Muq{~>C<K$tJ=Bld|j-v+PSnIiL0p&duUwBMXw;<$5VcY-vrM(b?B2a
zEEscN?<mmOQkq77Y7*GO7-hCfTkt{CUvI5Dt-v$O$o3?n9T};l2f4=Y(1+A|vXV}G
z{?6R267uXJH)D&`j6=72VjR4ssYi^kQXigtg60dbAQL!Wfc;oO&8WnmRbfXx5r3iZ
zW>SIS{=m#+Eg>bBy6I$|rfNeeSxP(Rjrv5L%WwJmbMu*J7`$?Wqvzc9Oui05*_)Zu
z_lMmT;=neAuKlcO8bh%|S}^)E>XGT*^qy|n=Xu=E^sC|m?VqCMD+y<xNph(FhJ?Mv
zNCW}8@ki4Vja{Rb&8_MdLM45%@&SGR5Y&z}lcCH;-;k3HD*LA3a+4iZA+I2zbW7Wy
ztGH>q;teRc(g;TV;eT{^1lG;1fWQu+F{1cnn22}^bVQ07!a<CstV!A!Fje96w`-u5
za0)1j?-HM8C+(>q6$$S8xIva7i|$m?n}UGZ`7o}y9Ts_smr*eD_R~KLOV>zFArE5^
z1$l{aEI0BW<B+coNeY6~XoDx~l9UU+OZ}@;xaPgYlY_X3b1KhZ2CswO=kc&-_0PDj
z+G4V$tDER}bjqobT@=|YcUvy9>rrXe=c`383OW+h-F=>(S;|>72pc6W7L)DT1mIKA
zQ$*w?;^<&9sP2YBp`ia5#(<*tM=&b3O7BXuKrI@l@?Xq?E;rMP))8K0>}XSZT9RCO
zwdh@NL2wI%`_Q_|b0+B;frJz%?`@TF%i1xy(WA^T7hMceLOq=aP-2bg)<Iu$5Opwl
zGf4y?_xYrnmciv1Hijyc-PR)5Kt=6hS_TE|@vR|UJOB4&<0JTF{&05DI;^-dD^ex>
z`aKeeKOrFD4{fGZj0$GjMKIGp4zbfx@JaDtI~0Iy7-o5)3z3r;uvuwcSi5^cNk>>y
zddBI@!B%S9#xfkCMWT+Si-qk^*8H%Y09kK|Ob{%11d0v}<thx9$pQ%+qM77_CfWM_
zDWiN-_k1$1NO`@z9R_5opBCM}Q)*tIl8zN3QUt@3%O%l-HLo$Kc5j^o`v<S7C)3P*
z{o;c31udm#16uWTDJ4oYiwu+gx}2OgfjI{*$f0FGl)czI*e-9sjRX65+w<k=Z=3K3
z>i>qPKlE&!0m3otH-?Cy{q?37;oN&zp-qlxp0jxLBZ!AsHkri18cD?cQ6s)lKqcNn
z;j?R)Ds@W|c~s*RomX#h)z)iW50UoLp2O%F?%77KFyh-1YBp*2ljr-X+g!Ks3n~j2
zIDD7VQ?-QhQPYR6f>9x>Xt@aayjNyq8}Rn?OkS}DVh>ny#%6e&U!;k;b$SW5o!-j^
za=c@whI9k&UyeQSn7Qi{5=8=D?i&9Zc$41x>3p3&%a{-(S}9=BwvK(UYcN2L{r7S*
zrwee+{WG+B8nabKuWrEfIy5%1u={pS;&vwGg6&&|QK>G8NZ}IGbFG#`#-O$(^B1Nz
zyATHW168CH`(n|th8*i9AyTLOvr)K<z*sPh+0aziB;|(^RpkyROaZj5xnXI{J~nF8
z>^*d+AhO5SMCX;C3bDOVrMB08>c!Y|9k+qigxw=ruNgb^C8E64P_PIuz2;9PXeM59
z+4R7_$5YTEb-QRX^`0#5IfV0T^6Em~`|&FPW!Q~&b6HbWU{vp&R-Bf{U@lvqvmgvM
zpKds+CYvb*X48=~&66u`WS?`(fjohjV;&RTA;<Huf0g0#<mvE(=RcIzV(H`B7R}=G
z{A|OCw8;Ymd=m`)r2R9i`%pXV`45oPCv>TEYh#M^`jHj8*#rv~Ri(B$%dK^$?-Iab
zE2HF?28CKlkh+Esw62<Z@HYODI%3F7KK~=;Vta_Q^o3T2)TZ2cjnqb~r-~=sTc<{=
ztsad)hv#z5K0hlBeB`*SRDA_nxMZ!Il-WGZ%siuAu)L2x_9jV%VfyN|G={xuX819u
za`zefb$3(1icS6fz3xZDM9za}7eCNjvGN=_W%vC0^0tR+-9c(({AF)@>{>u=cg8?y
zxV~3=zsvtG&lWV$fE0rIMm4bVBvMD(Wt5xymwE=fZ6=Qs4u|P+Qd(ZEkPqH!Om{l@
za57_!t&%|iu&1qVYl~=qJ=9U~^_99}CTwo!xgse8nOnu>rW7f{Oa2BWkpq#bQXww;
z-M6<evWfzInNzR3{=jM>_Chbtz{#mwVFCBLp>|qn0y12*`{&X<yk|?Y+*;0tD77cE
zzhvbt`65}^igxkd#P(mWDy{_CXN#5iGGII#EB#l$*SR11{swTNNjG+X1La3A9ZyGs
zFoS+lm3PN6atf)s(I}2mbbza4&DWA;M9nGzW^Xb-P3G67&M8gi_4}ov>qpP-4aNv2
z?fx`oUEL%)uFR;E<9*9CSsZ!IHP#Y&E<!uEwWTMp@0`$bbjkaN9J(UafR3TyA0Ndv
z=xOx1gwn<>%1aIOqhw`&5Wo(VP3BoArS8GivKso6^K%xbx(3VF3!rrBC&$BeP&^jZ
zPccjd(V8&0^P*-f&x1JYE!*-#)9uesD%8T5zhZ(-*+;~jIWuGD(@z=k5ug@3c;p}c
zk~@5AEz><26M(Ek*ANT$iq6D^y{G-dK835mS9|c4v=fSb`B6R?yUi$Rz7~4ngpkZ_
zl5GxOfBlF_tc&c43>7dA@$#$lD}m<I56;F(3BF8YOCs#0(!!#a2G_XW&T(Vgd?oGq
zlGCH69=gLNRP@OpG25@i&5_1$XuamvtJxJ6A5%J=AZfi53oGU)hL6cfiDs$UEu+?!
z{nRU(ur2>VQz(H8lgT562G||$d?!GWGyQQ!@ySc<dN;v`I1aeJc-ly|OOSLIe=<YX
z($%E>gpwkjR)HEUh5@4`CRIA9o}E$RR&^p>dXrOyq}m<zw`{ajO$K|eP(?-wmT1Dp
zK2O$7SgtHU?_2`9d)n|fba`DUiF(DX2?83yFkYF5)f(q%*2xkIyzs_cZm85cbHUq7
z$D3($8c0zmv;|<WS)22hXI0t}WGybH@1SeGzFpx?Yb+LjJGA*-J7yGw<i8z?ZCyLo
z)=jpISlOxFv9-O}YON9ek9{Vn+bLdwm&+~RLi`C`RZukHe|!Q>a^S_uySq#lBB>Vn
zPPmM-4uN%V!XR$+c-r#`%(lqZ*GN`|9gxmc+!mUDoB+K#Xfxi90%SfYY)un1z5jtG
zHo@V9p(x#7n4af`MIoqBkXoJOEjQ{*{q0h>8;)I(=I38S!(Nt*%^|x6qE<ztVKBo^
ztp@fTp4qaxTJUKR?=c?PU6$WY4RBvxE-6klO8vf9-mA|dyev_6x8VQc+cL>ffi%?}
znqg!I93#Sh*+eRdGO4O5X_`*Ioj)`Z;ZNepuDu|4r@ZG*+~Uk6QkPU;*I{x$YGi-@
zrdPrHb*u!*3`QmZ=Lr_P0%qP-kWu??a=7%fd;HC!fmLMa+VS)H^75kWwrFXv|4*yC
zRL@$0?Z?&|o=(%B7I7`&KFI7Yi?r(U*jPVpfUeYr?<v7EQO~<U+5F6Aq+90}7m7^C
zM7YB0phcSYIARm`3bG33X=mDgXfMdiqEaqR!&@t4(@`yKSUF`{`%f&arCH9=3$Bx3
z+uOGe>wf-2z3Yl;+V=gj&rl<NSQENGIV?MD+alOq+-u>J+vDN6T}c1v!D7raAYe{v
z0bX0|ni^^>`IBTvBK=<`_Ej?OJM~v$n?Ai$8NWC62(JH8N@<Je=cJ71AVDw)+i%RJ
zXNr%DfZHi3pjPTyvne7n%fG?)dAhNd$G5tB9tc%V)`wA3fiNsYDxT&&gBtX>o`asa
z4j{R@D?A8>jo0{bb!NFz6S(<DscL)_1n3ZxO6dkk9mpdcaw+$lxoArYsSuX+L~lfL
z+Z4ZS6#8>^SI&V<^Es<*qdY;zf;r0@K84`88c{pN@Nse-Xo;Gjb`t`~yc)|)G*|PZ
z-{MMCb2dd^IpjWNY?>9aC>_ZlCoZ^gtb5V_O2ZyFlCTw1yoMmhC5srht06Ji0i2I&
z>9{Tg+(>1nnsZ~7Ei+-5oK}}Jt=NX>R*G&7*UggJEpeXkkQb2CK%3~xobvvxcyh(k
z0=UCs8=otA(xdfrJUvhzZf~~pb5XCf&rBtj{5+MN)A61Ler>zWn;~LH9BT3nvLeFJ
z!w^D2ui{a>nUx<({TUU%+`0T+0vI-x6YsvT6Oivf#E$NMX@pl|p;s|Et*WZw_&GI0
zB5i$-atRjL{VLTHeE=}B@N~TDZ`CmG+Bj2`y#w8NI7hKFI;J{Ir1|Zb+?puest7uH
z*UV~X6h>|nR1Bfwqmv`|Hs;#_VF4SIR(7$j2ofD2Aml9kCzXXlfVpWKAWLJ{!gaUE
ze{CWL!Fmh*K&!@|3QO4E8O4-_a*2)^w_WW6cNtFJ!_rD^OHMTvLUlR2trdovAa96f
zr9H37T&6P_dB>a5DP+=;82pDR94eOn8gbZbYRQIH;aWh0tf%<FCL+AWHGhB1p8@L?
z58lKlKXxmr9zQd1*pa6Y@Ei1nqCx~!yf4EWBMpiNIe6*R;s2(HA8=99d-*A)pVdb)
zHfo!t4M)Oo(U%+omj7)+Cp{^`iuYSJQAghumZmNwf->hS{44$NVlbrzFCp%?becQi
zdJ*Qew<CjsPvxi*>yfkuS_wyjD8#%GW+)wzr8z&-bej4tUX$m}fYg<Ef+w^empB})
z4e1?2J<De8YeimEO*%d5VHMJwecXu8I(#XX>Ph|m3LN#mGAakmgs7CH&g8wd8TWF+
zGZVE5QAri7+Ji4Ss=ukVxtzQu<H#@vplh+n$DUsVPpbv`;8J4Sg0?;S_}zQLwWKSG
zii#jiBMfWC*pP?V0CmhUO32|GS%Ho(+$f9ab3b2(JMwiz>Jm(SKizTuW)x$Vvi7y_
z%HbRGVEY_oOIZOH4~h&@FdrpEZskC}>%>Kt<2Qa97MtA+zFI<4d;H!SmVLDAXYM^#
ze2p)?;|s4+69M1d!ba`kVX}ayDX(dZjU8%UU&ph>XwGl?$Hw1Wj9BH7k_FAv`Rsno
zti#u}JHma?D1r31AJ^gGk*Vj6-x~t?c1?t-=imD!+q$kFB*x#4@2au!Hm8uz%@VF&
zg;6tbS+vh!C=Rmyeh7C$K!s@%mBAg1Y)<`FslI2)S;&pN`hWumAz?N7QFD@@Fg*N4
zPQikJfY*e8z=8np#^M0`2J3F?vMB-EQO}Wx-EqXGr+W{jT_X?BRPwDwR9WWZULGpv
z66mxkHo*{tFtTMmR=t+J4$4;8mk_#|_JV{BEEhPzod-fHR=ZQ%y-X6W)fmKsbL-v3
z?*l^LC|DjsZT@;)-QKV6j0k<xz<*|s`+V=^Tzj{*z5RaByJZ99A;!hut#?ah*98jm
z&Tfe_m2M?|q5lci&1JNV5dl938&S!>_<hstL`KagCF$YU87EuAG|H7aS?^w{PkfNX
zfdMQ|2jBj@4NY`=J9}JTD!n*Wc(Nv@)5{MH4xI0e9lVx1qs)6dqa24XD|~UQ%ubZC
z!;ut=(TJ%VSvdo=>__Fw7JPhNa$!sfBrgzJGN2i<8=j9nxHXK{-tGgE0!Pb=+%lWU
z9GLijkiMA65NuRS8bHq}xo6+fYK^Hs2P>vMVU5&!O50%%+q>fX$kqJTrFZebe$GT8
zLZ>m!eJ1ngL^{-^=xPO&J${1MNn$v?J<Mn{^hQ~+PQ-!eiMiG2S$dew!<VettTr@t
z=dA@q0b~l1_D^q$5qNnUu=zht4lL!8>TDM(@6;#ZT(M5q>6O*l6!uDWnd66~1aSvs
zBhEOlo7-c-gxx7dk&I~J)7D>H{a%=6E1hm0-cCJ4tyyIVM@)BW6^1W9>edyvv(ERT
ze`LVaKYj+%S}oQl`JPHVa;fqO;y`@P6XZ=fBvK8-{X>KEhCvhquZ(I>;kK*%NB0!7
zW<%wloe&D7WH^xQDT<^7G2L1~#5xw|KcYABqz5Stz1eSIC^@#}@Mg#{O_tS55gMTD
z$3{^uO_u{{INUH&M;5zWhNAgVkon^GIm3KLRFeVTU>6B9Bm#Xlq2N4qxd}mC>0cQM
zrWUvgS<Q<%wNr(TPIce3_&9RhO)xu#V<h_*?Hu}DlCubttU{1VMCFL=&>6pcqwtrf
zp}k{JGx{-DFWjUfL14n3w(UA-_PF=JM_2K({XtGzxC^}>zhQg|<(p_*J`vDQK`lYt
zB)$MhPYx4Uvq=_HS>lv+D5f8+;r0$^U6Tn01_hMu5@05O391o~n7}PS!0RZD+c$`Y
zkhDRAfJ3#|r<;{CC&!D1z`VQuP8BmSi8^l`@==+YXl;gNgMr+u;S~usr_sHzyz-JT
zJ(!;~DFsixXH2BeKlUg@ymHH`H})u;1Tz9AE0~klsggnYr)hsebRn{4hfxW|o2>I`
zTw5tLM3~+v8Yp<sLkdK~MMnu0*NfjMi5ar`0Pl*Vh6t`s9=<ub50;G59)7kx@u|`_
z9H@rqn#<*)P=@sJjEM0lJIWfw^9QHNmw5ptmH}p6jw<9FL6U(77{RI+U1*MmhyfrZ
zX|`ds!J^uiBEYhOrSSXR=Um8EC|iH&`dC@9x>2#dsT$pl#WqbTtjzftN&w49lq7b+
zG=**t^iMn|nJJC~B#U161TkoEkA}rJhIEf(=?>d*+Z1YVxX*J#N=uKIH9FU?zINm)
zk{J8FJRcHZ_U$#l3k`Wopav64DF7v=m*i^b1G+RCiUZ6<x5rrMZz)!c@j>S8mhD@_
zZFttI2>5>rlWQ~Pa?Mx{xT~~bnZqX=N4@F&<B^70;*aXGD#a?Cv}mtMeWsj{oT6i(
z1n`qaO3Fg>@FUqv9jZGXt3yq1%ioru9N0ogEp=^sQrEG=N{A$ox<^~A(*V(dZmev?
zA&ztW_`PVnoNc);G`URFOvX0GY-Qw+977mx3189Z4jhTBsP*=f!k1&ad9m1~&H?kc
z`}FX~A^af-HqbU1yDsg+J#vo{oGpX;%{$&IT>+x=bHhq2bcSrC^%-><vq-}9Od#>>
zO<vfZYei=$FH!1nkNz`k5^yAz%yM7m`94j+RyvvVIVV@tFLw$Ye_bdajhsA4(6Ucd
z2%qh*p6OR%GA{(}_5Hki4#W+y06@8Z9To0W62@V$X)JDaUOSTDZbxdG35YpbNY6~r
zwD?g82Q~c!r{1B(Ek#c=J))$o$sw*Nn<e47!AlDFF_r}Kw?rAd1q#0_X*v`R-7Hia
z!&x=nF3mpn`>lL+TCgQL4tIg$hJ%b^vqkcaO%gT0SBONLJk-9T%l0Hg$?KITlgo!e
zaxp@;w!PYjN~69S5)WsX$F&cFPPO8OGN&}<`9(Qn`KFOmCn@2cTQ6(&{a2coyGqw=
zUvNojTh32OYX-zVJ-`?GKsSQK9YP^$mNJqC!*rWC1)2r+xMf<5l*x(jQ;Arii4cQ>
z+d-;>AUl5-FN_!#O{*6~q~-OeM%qU2DZwQ%6wtcmE=r^Er(28LU&HJHYWr*&Rx<8?
z3`bA;c94h)q8<p*cD#ZlA7D7!o^aI=(FIkZT?5!4=l+f+eFrptnzBZX?SmjV+~b<i
zM&+X^4#eFEe8;lCX`$R>Ml%+MyBm=fa7uj>5wSL@&To9oDn$<l25z42>^S?-VSnB9
zq1(SGr@ENvI?aN97FqR)BE=pNR)AVXWX}8aWE8B6xmZgx@14*g*0thdpYP=m-gfU2
zO{snI)>0tc@BofE>g-nrqA77-9%xSX#l9$-k)R$>4L<(%(AuY*{$SgVM5o_A!qQ~2
znUu=MgZ;#nhkH(=-)I}plJg;V4zZ|};qw}I)%)@G%hKcW%nY@tC@{LJ#wWk)Q=h=H
z>ShJ@zEjW@MaBD-A|W8>otIw{O(S$1Rcei&g<=MUd<OQ9;<`9I;NfiCqj^C_ce^is
zf{@d<x(sX7AJL(<Nx|$~*EpszT-6%aYRMcXd~!RW%-!dLppRHe2st=3xvcRRDb}3P
zaPm}p0_WSXANvqth<tw`G*HrmuOew_X`jAc(A?O;bg&LV$3H>MeVCxXp-60gLvzsO
zFV2kq)&_X?lfuJ#rnFFh<WdfFSea;0BDItKB*4QODskww&`1k%+KFQN1kWPbf@Ilu
zh#wtqrE1R{+eolII)oScLzDzD6MF}7Tr&wOeQIl|02#;<WO|srkc{L>|K0`hA*8=8
z4+|&WB%7pPlKV)C3%d<_thGO$)4ZBsUNviC1_hL~ab+ggL$i-Hilptp%A2INa8x+|
zltlEF<vM1owALu#gz12ePQDa<MEX%exU;2=HxPK+)U~??J;RGOZrEOrn>s<ZPsSL+
z8cBep$G#C}9uq?AQP<q5PhDx+KZLB)PO(Zw)3JDP`&ZP}VwAS)=UZA$u{@2g*iWWn
zMNHsOIi?we2Kfq~P&Xt_J)t{18>v@UQ3&ON)ruDlxyQ69GJyB}OaGHoZGZZ>&8gT<
z8fHuG?DdC&YbV~2q`!ucICnL6@(aoqLNLPVBZ4QPCPO~mj*4`C*0zmZlA4QiFshG_
zOI!-fcnG!@tI7Q-LMQ^@p0vKEOlz4G^#m|CuEzQzK<#Sslbu|_edF2`9WvKZNnWp_
zh0Sw$5}<7OuJA286xN_h=Dp%VMY`b^d(mY1m|pb5cx#0Y%NKPuNDq~<mE2sF!HM^y
zSD76esd59dFr(+PzMxa<5RU~txt!}G=Bmcrn52!N4ez3hYz7U6kudl0g@){LeS9Fy
z0H<uHd7!1yox>H@uBi<Y!$|rR$SUmPgiF)8Wm?YjkzzGeULxK~kzka)ELlT6EDH5&
zJ7T6-PuUGONc~BHl@`rUsAkuw9)q>oPZ^76c9I)uENYG1)g|&-l;y)1e%7`>2o7;>
zI_|Igo}`qZS19DYnG3i0ak3m&=N_=)XbUf3qycgnXR||)%y-p6+8s;Fg(cV8F`+Us
z7)|cW5}7pW0|~c|{o+$wE&N5u*TC>SEJbrZ#DHlh_sEC)jc&jKiQ>sYZA4ue5#ANE
zMC~L45?pekL^jj^kVj!Z9UFazY@mg1l%uAZ!JZyPFwZF%H?+L#qz%u;PY=XUJp|Zo
zyUuq-g3V}<+s?kSw!<g=T2?pV=**6KWoG=YC*)G%nt-f&E$WVI!O*p0=YX9u;a4dx
z0V$=AjJ__kPUqJ)GD^~+7&oYZY%NSnS$9>D$S=UqHv&IYquplqDL@F%6|CLoBGt8B
z@%Ius!jS;5w-cu#{^MNv2nndx%2m*7ZD`v`8g@f1L`ID+^Eyy6NxjTP9Pm+#^Vn}=
z_+DZ``tYR_SfWz4L`AeQN`~CzaWIq|$#e2=L_B_$bR}(AMUY4<HW!NNuEDN)_pi7}
zVc<x}s}r^p%Kl5pE&`>iqe+SuQOOMjH7#KGLKz}Ju8;4*<xL%_2mozmZ>ZNjFfY1|
z%75WMI4m~Fmq?7>V3Wc+`Q1awx2*dHFfAB2r~0s~18^a<_dun!D=yjW<*E!-_cJ=q
zauL4RMT;hJjkU$k_XiB`)&^!RpMcy}eAb$^1Z`r)RsKKRAtLY#PAA34SEz`OO3zwN
zkR?s5@yk<IwiQ&ZUjS=Tk-S1mkDK*EWks6O@d@xCl6_LI0H)2R&&$*)=E`Q~OQPiH
z0%G_%Ix(9b)+E23JneW6f#Y16=u}UG%oh?pN2zx%LV1CXo&uF7yRkQv(2)v92ghGm
zHU-DLq$|qYBq`@a--RAYViN*m66cnlqXkGSj?GSgmoW=K5dkVp%SO5dj#=UhWR1S5
zvaT&wkzUCL#)v+VsyV)<E%X7wy%jA_;sKz%Z-GN8S<0@$>HYg$Up_ikh{0ehC!@j<
z4-cGhH%r=2Ob=u09&i(mUnup<atXPe4g|z(+BoLe!#lBtwe60VFV)$p#P!?DO}gXn
z0g^mp)L}a;Ti{W){g}Fn<Ne|6`gG@Rp+Dm$EmK0_YTr+$VU<^6>$>Y*^|N{y>X|LZ
zlXjb-eXlY0rInUbd+s;K-2{3Dl^&Ftd@oHayn$+DALr>!ENOSgsD5e1ec{B~dAz}f
zNZ(&quU++StvR3fp3b1TI+35X=WfE_4b)!LYPVd!RRHxuCQTt(sSf2@IxW3LtQgx_
z6&Neqjn1{w`O20KZLg}xt2Wbgg!5dXvsu(Ux321gS?$Afok;^2+ji6x+h!4jlm&G{
zCxp$p<z?~xHs1rJ7u3%~2%Un$*EZFfVFKa4Fo^dSW9EguOdK3luon<cxR0FMwjl>C
z9S#0^e*?y`4dXo+YyoL<q=)A7qZ@>L*k~aG#cJ7}AMsE+_sUI<(^}ngnld)$?man!
zD}0W3W5M)XT#S_`skr+QEOlsW6oj5k#Z)sArjB*I0!*!)EX+aoF2A8O!q(PBdowt1
z*X%Xp*v-*WOn$9}msG2#A-OK<h>^Rd!3x<q90TbK>+#EJqS*>pIQYM3Lk#$gF-xTf
zF&J`+#KW~$({X7|I&)bT*e*3rIX22CNBGBdWJW(Tm>T+aF+%A~d?)x4+uU6;bm{mT
zVNDIr&}Z;|l1Rv2%JYLLhkXM0$n`G0H;9<BMzhI`_WB{KPpY8jSRD>652rBs%e}Ou
z(G{QpiClA{%$=6c@v_j0h&qu>J{>l8w0nN(xPF*s?^y3A!CC1-@ZHwU5m&-cz&=vc
zxWY*~M!$F8nRW;~_||5g^R98D*@Rh(+`6=uKif@whnrDWYk05JoxWr2#}{*3=g203
z1pC<f@0Y@d?(T|?S~0`kgTI|w1_{J)439vr<ypgK1IF*~Cz)iz?G4C{mhlMBmVYi`
zb$+s{G20}}^XL-7G+lT}Drek}&M>;#Vq_xS<JZt8$v!;*rus|_JKv7ui%5ticZ9t!
zwS71^i7A7qo|&&XTvKR!_#s5NrOQ&8XJ3S6*11ewXpS<l+GnTmH@1QZ4+_0`*M@<i
zF{M^0(5yliT;o;xn-SW(Q%<PO3>73lr|IU@aZ%)lf}=2QgwuxDvuQ}aYW)Ud?YZ)3
z)fDYu%MljyrC2zkoY;)7J>A{moiE&Aqv*8*!MZ3*^?keun|;E-1@ESLX%vcpwM{US
z)5S}?((6eV8544$WhM!G<iK*>p9r8p{)fF-{sqM9z<_pS-bE(B+Z0?!<i4-x8nM(o
z1B1_KvXg%<@IfN^<>f;CoQ*V~gCx(%*1SgA(f1;4#!HFm^tiByHVhfT4?M1b*J&f)
zn3vxAw6N}OgBX)g7As;RexE<raFW`#zT@SLM%|0F=f>BmcW$Fsm+x26-2tfgmKpbv
z51{FGAyoe{Izb(Mo|kfe_|wE!CO=e8U_^o%OJdJ~vgs!Hd81QzKJcXM^|Zlo0on5v
zda4etKN96B>G~>k&F#{yEnrOPG5(d#S}xqLNgO{*1Ygt?le~2ap}K<-ur3m?ZoZrD
zO`IFrbNpgOTz1?Q^<1c-eGZg1@E(*CZX7s6Vc$*(lfYC9->bFS&{$;p6MkwRD5l3>
z=Zp}!)BK7#aBz`p#(bsS`d6n)AM-V4Z#mHWZ_J=qcP+e$Wy^SdV!JkZTv}SpHi>JV
z-mfpZ)%3RO84TB*h=ar8F>p2z=MbsXY?rAxhP!3V(gmF2gn4x3WJN$D#}n;)a=(Ak
z!%@Y2it{9kkKlXGET@`d2|f?<jTEJ#nKYL$YB5_<O6P+~oNBvm>=vPsPyvjs#*x#D
zh(M^l@kq?PBt38cOxETT+bIB@sgWKe@y!dBf;Ia1)d_m6Xc-|hL-7^4;3IUqErVb2
zgWGVqg>vX}Ag*BTw+e7__VuAp){yNnqJD3&73RYpHue4Q#-jFD!w4q`8arkE2HfNU
z9gw(m8+&#c22pD@({Wqwd;1S<dx>L6AbK!-@Ej4|DMO6+v6vLadVv(k{e)t@r4ou;
zZ}h>NIlVZy6IncPH1ob9vt|EL8d^QF;;|Pd{8_fec3s@~Pck5d6v+R5v;N-sMYWig
z*^IqCL;&Zh0E5mtDR<z@L2)#Ww*lxYTvX5Lkc7(tp79&Ux2ou$a*8oIs}G$v-?YyE
z?oO$1P;+4{J<>C~7vhL+V+}^i=uM8%F*xKPVwFG96*L_CA0A{+CoI(Otp^lr8ULEt
z|L1%-JM>&*%w{;B#R!fV@=*uBy`3C~`@P#;@0B0PgyL?^sf3=yeu;#7-uT#E+TBHE
zDd<fl?C^(}JlgC9?^<Ca29IO48^J<Aq;r6O=;#8Kr!@|oqrMGava-$u+>bWg6MFsL
ztU7r8!VQhvrf$MiR`=m^ewB4*k*Wj+J|my+SCD=MzZE%N`!x0k{&|`!FZg<o$^0hz
zv1q(h{WnV5_T~535^GIQ=G2Q%xWcx|IyUzmW!vUF>RoHjjJELK-6LMixGY_7@3^tz
z-gsZYBRzp;Q+LnJ?ar;Ks8U4OC&!)mraAtMihDrFeX`D`#7T_@m@Vwd`R&5tpb{JS
z{&K(Admr5s_bo7Xv$@~&aJz0zikRn0BtOrrDLB@%aOB!v$e`s6GVu6lq1v?L$$k;n
zu?R*afWu_vX~^Osc=ou9iJsFo#m$C6m75+=)g^--gzjfhR1Ax;4j?}I9Tp&%aN%|!
z@K)!XGxP3te*n65`7x#bktO)7C|KP4+N1gMv~7HL#R)I;%MvETZ2Y+8J@L%8%P;Vr
zbV}jqx8GLefo>+o9|N9y)rI7M@b|pUbF(BiZITcVNX_pc@n#fN|2%_fEtjRJS|&rF
zgIvV1f=nt5OoMBj2(NVgQ<*6dHZKY#cLEv9?h~^WBqL&_x+b@P_b-jE2}I`V_ky*&
zql3@NwVL4vtCG`F>hS!M^mA!4*NU#9EGY_XW%8T*&!$Uq(SH(8|3#st(<`wgJtI>r
zf!%o0xdvKkgmf8<aP}PE6=`&{#>GdON5$NzC98aD=BJikzwhIq-)x>qQ(+0qiQ@28
z9CJKLHk_7JiQ*<Ivd34B9Z-Ws^l=bgt&klULCPC)U?Y8Upf|`X`^)C^tLU#Mkv`Q|
zy2&4$vIh=k{gz04d?A_%@{KLDWMex`$c$9>C`grFy8We_9|>EwMm%0JxR8~X&S6_i
zC%1Kh2XJ8vq|7@!W`e_5HoDM7of?HLYWSfR&~$O-heizW^w1`9v$4g|hgJe2HKJo7
zH;ZHZOHgkcK#jkmi0O7+<?pkCS(vxqb`=@->-Lv+$PttwHMG-*s)oVLxaxU~tyqQ}
zk+?nN%&rsn@uL>~klLMl@&u4`pFRC1$=i2`&^Bgk=D&>xBFi62g?%k&rYkG5NY^mY
zOi7)`_9<bfiu1;3Qe#g%v5`Vgy@{;DH%pvZ36?!@2d-H1xowx0KPCT0El-p}zq@%i
zEi#E-t>~vL?y~{+(H4^zN$4I7vJSE}o7vXRwBTKv^$<<3J00)pt}yS`tj_=CjrsPA
zVc*!Zx#@dX-#^#<+ROa-d(4CXb)*UCIa*NVAzfsW?}B=y9mAS)C(dV0mhv!oTuIOm
z{QK<e0*H;9+ib@{+QB>$v_Txot#jhZfh!}YGVvycZ1k+7(V=V%<x(&@V66XL&f=;i
zIVH7U(a|%!1nU`QraS|^gd-*xlq|k;W85acJ(O{mz_H8uf(aU3!p7*a5*pZaN}JO&
z{fT9XZu>&UBqgmergX5y2*;G71oyoq@A`Qs07GpT_z3GG-;pS*BF_GPdFOcCh)h9c
zU+vVrLPLsx98625xIKe-$Ra7x!o=-@a#`y5gG>m8GwjFsW~57W=iPo7ulmv1JEoT*
z7cN-RR4Z1qE!S{tLq=tX1Ch(9C{ASA{`3g8%5aiUM0uozBFTZ!k_joq5J5RG(`U<{
zfcUEVtpbcJ=`Wd<fBMnpR3`LV;g$W^4V(pkb?^TZkS<()PS#NSmDCbcO|LGAAdk=7
zV78SI9Qgs|JiI{dm9uo+c&lWbNG{}Ko7ta3l)AVt51(Zt$4;9Bl@jMlL7j}9SmBDr
zq|5p{PAd)JNnsS*>5&CSg-k~rIW0XCV5AQ<SCzCq+$7XJ&KrHq{n}TqB%*i7aOuU>
zLy?vpyzXSQR$+mF#V(G5{cKl?Z4{sUNwfc9Nx#A)T^5F5q$q0sSh1Wf89hTnem_yY
zBqgXCUKY<hbAGfLfk$Yf-*4d`ho84#zVi@1Oy4G)C~4U;W7;Va<E{qX#*wi}sb>&W
zNWe@(xuPw$*=39bMeI$vuqYP@LGB5=3msZxmfDJjgfTf%sl$$q$tuN1n1Hg}OQZJ}
z<GH^lmbyN)87~OFVE#AN#cPa41j8WY(wEny<WB<$IIXiHccUJQ;B^W#=6dRc55lw-
zm3!hPVKI3v&~ne&DTE9z-fXM1V$!U}Y)T6Mxw(ms{a4mt?TlCC>NPf4V}h^evi55#
zMX2uTc7`#wq(-}?sojED+DqRsKqn|;2lN+y+MFzuO+k@c{#v1x>QBloyuO2GZYg3;
zA1*EdAVr5vc!~X^>eHV_THza5Ia{fi$FPn9ywza!0m&2ZZzS-XE;S8e3dylqJLP&m
zX9v9rVfSkq*%qIh7sM|4+9J?%s~+bR!yVVB*Ph8fpWwbd@2=bFaPhQ0A|`1eeM&)I
z(qVc!$ue?%JmUeypU}xdKx^)cx2S*DTJ^?`12$2+WeVHgu)CIFh&5iNQeU{F;fFO|
zMw8ztlB?{oPsrcTW5wP}U+t%ReMFdda!y#xiM(Stk&P0v)vU*e`TTq(^AC-$mLF^A
zV;d*KM`NG$;C%y_Vsi@KwQ=9O_05a;j$cK73*uTD#k9~Kj1cO^a14JI<07h{*l3@P
z$N6I#6S3ZsnqVyz;|0gl-wo#Py*@?#j}vbq3|vS0Z<QYSB|7;3t<MUN(FPq+r=Vbi
z|HQCBhJz_$ML}l5V2ghpsTjB{mXzrK&t?8Ay7}KmDD^M1Nlo;B0|W?&&;R@JKZ9*u
zaGwqpI4ceftP@873N-mQB?KqNaf0|Q!9#KKATBE~db|cm&<1Q3F9Jnn3jw~g#s{~=
zqJih)2|%89;EQ+>(3~fjIYAQi;0^Xj5P=%<g#ah`;Dcup=s}MD;MW8OqW_8@Bm@LA
z6a)nN|F?mJuVC>+A&?mW4o(yV$%lY@6GcF^VJS)Spr(kFBph&3I3m~~i5}D$^`BW?
M5&>*~%zq&KAKNv&tN;K2

delta 14227
zcmZ8|b8sd=(`W2#Y}>Z&Y;4=MpV)q4+cq}##@X0*Hnwix_q(gRy7{B0YkJVt{hR5j
znd;&au$e-z1|Mh$bmxBd<^X7TFhH5e{>wHoOHs=Oo`cc5q*>uOHl@hAGri|2#Jr|c
z_`C7wjSA*Q3f*bmU(o=?HiuiE_K+GUnS1a!P1|?Niq~x8_GfjTnyd|Q3OZ-x2-em|
zvRc=+^RsX?FWE(=2*?JFtG{H^=JS7Y``e#w^I`PSh1Vp5bV6yB7Jc4qcL8pyLN2C5
zlFDOF5#y{-&Ri_P@dQYwvoZ(74m6okIqQOOo9o)ux>r(M02?xmg-eN;(1I8p4w*vj
znVXm^VIs|1O-Q0V?~1zP6&{t|FZl6Dw1Y$Q=Tq};_0f1)h2s{=&MGlt4>S9-pDX72
z`U<L5Hguz?vkk;m{33mxd;kaJ%-~}lWka%_@4aqD|Cb}uF5$fqN31+|b3%O>RDU@r
zhjB?gRn_WV#->Z*Br02PGBZB03FUDpm)Z(bcl{w*e58lf*0_FmJJZuqkA3%KZX7S!
zg!5*sFQVzb+7G8^0d;!#sUv~0H8i#Nj45bjN(@Bxu>R+a%YJyMGypjI7J6xTOc!x(
z&^4|>4zB_9$k4DHl3D8ey=U8YzugX{7Gt4hrN`2GA?}~6^8n{w?bYMYpY^a~jV@;I
zPtQNLgPtjP?w#J8jtBNmHr_YbX1B?o|BO9s4$WT?$Il26#f{CUzaJ)SVH^uVxdELx
z+E_U}S<k)^K|sF0!GXt=NWjRLAI(MZN?>q*urAM3ut7kugMr_aI6#aa7=Q?f;PJYr
z{;G}YsxjLG>;}&GN_$MDCC_VaXkneo;M72tsQc*;wm!D*tqWeC)Mc7KDKKL+(Pm`w
zrCI7x0e%47pGt@Pj<g2Zl4+;J1YJF^FUD<bPb0OZ4=BjEnnkV8+1AP2jcHlkt9EAK
zo@t{tfA{M3DI82G>enOOasi3#(`eJ`A-sc&27}C#rKorFk+o@Y*Tfpjn_{01wVVzG
z*3PgBuJ27-v7z&L!t`pjABAB>(lKZERV-;tHgi2=u`yPTdt$qC5$sowT$wGX%iPTm
zEQ!Fn<Mz9l66p@^<n8l5m=JA~qiQ&C{=)Hh*}=6W2?gdi1+9S4Fo4I}nT9&WTgZvF
z?6oU@(Ha3BOLWY<zsQ7@VE&)62zs*n?gyr>Om#R)d^HITMme{L^899W3a;j5VWHH`
z&Sv++*Zu68(i_xdBXmdrW2`qUUjCj6ob-wVj5OmfpH!r#x*!CVt!qYDSlDFK@cYNa
zt4j9=EIf6WiS||iGvJX){nb5+(mAcsk9B6w>AHH&KiQ`BNeMLu$BkswN{4{36m8d#
zny!qbl$qmZk86Q8N34Np$CH<r6K9N@!ODma023c7U~=(m-rr->l^4v)1{T?qASgLQ
zC0RwD(Y$|A2WmJ^B>JKXWP}0KM6v&@QU(h)$V3-nxG?ge3qX382hvEz>}O9mDgeGu
zeE2)4-?wE6)VU&f<lr`=X);3R0U;6`{KIuiiRITGpW}eZoT$ktv)nzKt#IGBDU+X@
zl>$}ySzd17fzwcs&DAH;e{cu#ACi-E<*?a?DPcHr15Pd`d%rh`s1!5d^?(`f82Dwa
zI^5ZFwE-}U8}=FQ(To`Wu(6>hP}$}^<k3wb+6nl4dzA8dy}diTeQ*EX^8bDn+}!E;
zyuEwhc&N`Gw0O(Uzdrcfx&Z71_`P3EwqN)4d}L%A&VH{2tZwamV!WlV<bU0JzP&xY
zJwBg}Wg~5UmXEEtHW<##AA|gv-6_ledbPfPxdqHBCJ-62-5!clM-4=2p-x2Akqh$8
zrw?OMwNW^`nP{TUDqPC#9}X9ikA``5^!a|rg+)Yo9v_q}bgKaw!_+K)w!K$To=jRG
z?nreE=d1g=kVe{x5y%8aw&a7N*!O{u?h}Hdxc}q572y|Z0k=ih9mE^2Jb&A>o#yN2
z0OrxgUBg2WVicM)>G~@pQ4Q&Q1d&O)Kl>|K<He`3ab*HbrHs^Y;fk%BnLl;1dnjiH
z)kZRdH<Q^<ChKAj#1l8LL6W+q11s1AtrkE?c>*BBQ=Q3wvpVS{x-W=l{_P-E*KaG3
zi$q#ly7b#}H_nN?d&dPylAz>4Rl|-f0`P!GI<N(v3W7&kOa-G4S`E@mt7llp^idf9
zk3Q5$XG&7ZWM%N;%KG?chsr`=q)7d2#CIjRm}a$dREq2WS>P#!SyhJ9UPV)`>E3-M
z%(>`~epx)ZlsvYS9WW?}-55mK7$hl&mqD5&_Hgmv0OK<MZPeq2cjj6^h^9M_p@%*e
zmFOZvS&&TssmgIAjTqSksw;#f7mhIdqXInJ(MT!fa;b@4MisZJvHkv~EsbmMX&1Xf
zsKR>&6eVc!0=LP+oOBa1L6EXFbu7I`c^C~Xn?C($SfwnRXZFQ%b7TI5{`n&Jr>z*c
zG}Y|6aO|ZNY=*&8)NDT>Ll|AkO%M!CjU>95Pr+iDPPblH!QvdXlFuovqOcWKPSaPN
zR7$kI8gH0|8uXBKz)DB_z^H2wwB^rM1lZLSj+RA>!Qs9n-W+~q-JiH+;R;{yK!~1$
zLP%MNGZU%UGl=O=g>=3ywuxZNoYrMn99lOOPqQf{eX1t7w>llbP*|5Hi1g|N0TP1}
z*!Vqcm)9TIjNBS4DeS5HD6q<0Ab9F4`NeBSVVA-ouG(a{5*H!}EZ;_Efu<(4GWlc~
z)CGuT$uX!f^hWkLvhp`EG_5+TT+6&D%ppn3rGh(>@elp9!1>EuOlnXwe-xIqpGIIc
z2or1L0xHCRqQIg6yXE*+v`ss<H5C?f8HIo*8hl0@tS>8KIg(4$C6ZjGUj~ujsC;x}
z{U}P*BIH<A13LXU+Bkbb{DoG_l#5^(u%*?H8RZWNO3t2Zhq8s^rdDftzjpo}HTuHs
zB0Zdcw+KfO>%JPXPf{DTorBFA>C(MWCodhrw>aePONQeC?wzh_TF=R4OUK<R9F?~H
zo>i{-A&uzs&*h7_mw7o>f1r;w!5)((EVB(OH!5aow<}aVW@P%nip+>j9v|v=*h1t5
zzTJpf1)>V~o(3@)b&7{*|J>dc*{!jk*9F7q2Ch}{sJMGZpQLYdts>vMA04-(@&%Ae
z+PavS-OBd^v}At7z9O@ytylMFAc;7)IRBPUl0R>-D9e(+l_WChtt(5?1!u{UMpO!(
zr_YRR)ZAsym=OPp%25m)D9WtGp#{ni_Opnkn{`oZ6Dkvv6&WwZZ2xgIPX&-l!bko?
z=fT9Hi^@P|ZW<DET5J2T)oo&?JFB&;kVRRZJXaO~d49ub1xDww2loJ(nmPr<B^6f>
z27gK+#fvyS%3<0~r=Y2?RoyY@Tr>%OUMXJcdRU*@axoi+IGz<2JH2usyr9u;B8115
zM#0(6@=g`OW;UKjL7(i7Sm%eiH`ZTV9#aG58a7z$m5M!P@VHV16lMc~7cF0oXqTMF
z;Bq;@a7JdA<e^ZDo$PjCx8z)j?Hb20)IXpvg+Rk;2+SGzD8xXi7DrmtGVv(l&{jjs
zY_f<ws^ok`q?z4)`8t+zGiw|zWuh0ZXg&vF17Sy1T=DlWk38SyV;Q^xR*fCARSv8p
zr2jdq>`<V~79s-tmycE80{>*w%`*iOSSCQ0JwqMohxem!P>qjPf$U?0@S}PHLL_G4
zFFDV`oZIulnGzU_h%E8`mn>*g?MIMUb)<eRRt9<HXx)EQz4))>wQ+Bq->;u!CJ#SV
z!GVE|YG9)YNK8anHM0<xtv-R=X)^sa2K-akA_|$>wr<F^V^fP9q}PQ<B{nAnU4WRw
zDG`k@(0yuPpmS2c#++*sdm5u>e}}Y_;oB(Z7>)P>IC5rXjCilukjaWS(lsuRtCAG{
zf4j%|(JPW?B=GJtr={+(Te|D8H7}ov>}Z>n)y>ECik-x@+a6AZtp7lk%7louJv8l<
zWF~4IvKI6a55t~VQ?-DLYXJky%IlLg;p5WY%;>tVz{E>Q_aY&mh`2C-9^k%e)uBv{
z-NDqrUjdB-Sx!4A5Najho}QS*u4!uxVAF~4x4do&Lq>Jq$&HGh3dP|6p(hvD4jO+d
zc>?@382UueZa_C<pP?2C_dfQVH|ch+iOw7TdhIZlApi1Qo>WrK$q2xo-Ji9ZA<InS
zuM8iu7PCH8(>!6YXi?UCm~_T`Wbygl1GQ2J-fmRf_MiFh?C$3EsIro9k(e{mz0k*P
z_&o`Ob6uv3mr_YDNZ9?r{&099^@ql#de4o}r4T369R=yp;7)N?KwX16PGj~`C^d?#
z@vQtiD$%`>5O;>%0EpY*%mZB1+%^SD!P1QA_;w9tQBcjL^#cL@y3MkKpAox!YQ>=Q
zK+yRHvFR0c1Q?^>+!vc5RFU&e)M5uh7LR>+5{_tO6+R}h6-7VuiYyg@HDm@^jt*qk
zOO@#YN8a%NoP0Epv9<o(8C?<}Yb3I8C5~tRu<Wn-X+a4Pb1!sgA$^0Q1Iw_=hiDUq
zCHCDAk1a*V##H8_fh*BRpYCdo)sdtNJzr$|omAzR{f74$`N}(yMjSSaCc1w0Zv@G!
zE7fp@ih~S<z(PQ%u*S<?sQ8^~_-_|cp|No#fl>!I3ZK($eHz}}0>D=&>6!OS=uo8!
zq9utF^Cv(rk$Cc-g<O6sia`i`a~{v1%O<hSH_3^-|CLovsCV#IOsqMACEh8+t%1dt
zH{=IB<dJAz=2GOD>&k=inF;t8Nh<M>Bp&8Yx>cN@jL8&FK$40?VTm>2B>&*%mh~)g
z;emLIfIj!B%W*=}!oxk9v8icBBSfd=6anGd6ak<u7*?lv1rUjJOGZk&Mm_<M#IrP6
ztpVZL;6G1~#HiS)S=BUU5u>XCAVuZ(&~Ix9!aWlQK`Anb&VpRbhPWA~;P;#TIk*`t
zZ0^<$Zsb0v-~OH8;00`{xCIbH-r7HcYF3K}=%ZkgA-v0Q&URF|%`5b-AHsaYt5obK
zfb10k8|;RqhIZ#;KS9D2W)s{0#fw(*Nae!FdGmXi#99w*X$!aCN|iu)>#4cEi-+4g
zO>!V89uDALFy|4<e~Ns&hD$OBe3fYwUjVfkl_oKz$0hMQ4|k$Xav!FU+=oOA**sg-
z?=!y2=TqOcQGY4skG-~#Zu;Jm@-7o#?(%f4{vsVK=4)vl;8mI#8xC9)NlM;SeNa(S
zS7)WFmB3g9BpCR8Z%rI|Yv(hj_1RGh8TOsoIs+c;K3)8}A20HV1TL_$@BbX%EzM7O
z`1X3g?vIQm5an~_XMKrjJ7VSketT`QGi1-7(JYVo>(Z!ahc)eSTWII-H4>vYqo|qw
zK)DjNV8cTnpPz3xtKdk|ZUCVPw4?=Ai5C%rl^+%>u0v?YoO9mIS}j2^BoZOp8?cW}
zE&(jMPdOhB&bjHc|4iPF=$|e~Oo9Oq?dzl=%V}QdrSUFoFq$>_r$krKPVboKUWu~{
ziTEFD?n`*rfT|wEC-0+9+Vr-Y`XA8~$Q>~$rqe+}+|jfL<iVKuG~{$bL_TZ-38viQ
zr>%r$XR>lSx-vGq@xN}fLYcRtXC5>-JOQ_wy$Y2I@fmDTFLC7ss8rQAK{k}~CMKL;
z9>GMG&M+Sux^*QeiyR}#CcTM{J>{bq(=`rPa}S=kzL;jEc0VQQ&}-35zarr{YLuIQ
zVSW&P;Fo^4syJgKy@LSn(0^N9nUSd1h%Gz)thI*cSa7qq<XdUlW3<tgP`=HP83y3b
z*%V17k3^FOSmsRfzzE{G|D~*OhDeaSQa2R;BS%{!w(T)3{1fS;OS8?MkIJ_b%~r#i
zAOkJ5fK_FJE}B&KAq$@kDCnDJsT^Zna|=rtw~nEW;7HMk8K)g-Kz9Ba7)q2w@TTEg
zTW|6?)@#?LxpjW|OFNy2v-;>dyBTmVl#^!seqM$4tq{Hwg$p=-V+r^yCELll@4KaZ
ziSbANbux?7JNoVXxca#Na>(Uf_wu$m;bb)7GHX|q0}&o#l$LXZZ$9H!N&xI?yD#U=
zHUEMwPn*0;-Zp5#cCO#qW`G=>%HYAE$V`eHg(Mb3q=^CBtMENJ!As2eQ4eU$BFa_Q
zeA(7-!5(?2A9*r!Z!FE{>{iuKPgOt&65o`rWVZ;wfN4yn97zdHxDU#iq5U$_U_Rs6
zeyn*6DK31j5Kdq@(nDFCY{M~|eA~`+%>I5S_PYL&|LrTVGJ7O+!b7}b`#W_^ZAzzT
zT2|hQjyB5FbV;B`LtYAB2pJ$yl{RFvg;ABZ^>*j?{_NhoN#Dj-6HKSyNSj>Ao)MXx
zaj2dvBS~Rnk1bo8r^vB*hWPEr%+xi)tK9P4M;%;gj@=z2MUWtoJ-~xH+NidiJ>?&7
zjaiv91My`9#V&HL7g2PIcODHLW-Y~PT~a3UGAgGVYI*4p7>ACrAOb*}6s`${zSPo|
z?eZ99yKYgvZ&2>#0u5lk&Ft4eKmhXm@F^b9OKDp~pOD5bU<^@qx$!i%ZQz)uRosSk
zic2ArxMF2tLU>c&SI=`yyGvvAhT8(g!GkL8kLF{NK2r!jLtsGWInFqZv%hS&7x`xz
zCZwI<C!e~ma!4NC5I~mXgz$3}`gq(<Q}ld^SrdnY;D*uw*V+?$?@C6Yx=P4yD|i#4
zUc$OXiHklH)JS*Hq(hrC6b_nX8m`ht7b?0*3k0DS4~=^1D!*K6yX3tpOg?+h-G~Tc
z$BzbR<qC#UXpb8~N}b6FNBNg0k(;k@FM`;ctJlpWn|N_oQNW7|oI8eX3ly|WA?-s%
zKXFuWRbi2f1<$OU3eQr>2TklX%Q=`DlW{MNi}#{33(nM8$wZ(jj(shf_6*j9n?i!h
z!EKRrdarx1>W&x^jhj^i1Pr1nf@&ADz0PCY*%Bel_Rd^Rh<WzTbLWRcn>v`hR!A$I
z)%v{eZ|0x7`~c=+U{yzy&daN5wygFoy2ccr>MszirvMN-MjhZalt>Ml%44oeNZ()k
z9eIquA-g>SAJXgZoqS{AKmOVe^6)5;+;GA$&l)k)P7knz#21L)k8zr3><`p<i3WNV
z>*6bdvp6c*Zv~o~wuL-Wbz1Xn|Hx;Ebo8|IC4Rv)u>j;N20U)&nuerVZklDp28%H8
z9Z{2el?l>m7XNKZyq6dKnHkERXv~Z9<d}V|-+DQ#8FS<@c4*Gu4da-5UNDB<oMwVp
z6?0sm8aQWp9^d>mlHY5tL^MwMd0F14&m_pcA^KYG`EYNeZJ{JJ-4l{-V0{V)rMU&4
z5@}RbRSIaH(YRkY)-dHu<kG1jAa*53Y>VAy&%l=zS6R_vkh_j%J*v~G;PIQNA!{6;
z&xh<CID9Ojds&bX$DI15)1khPgb9DIi?Gw$bYUk}`@o=v+d*X~sVKqK^*m&x3#i4T
zlpoci3mqc`FO&qT(5k=`U#XN@QGn;8+)sjXxC8Vg3BJ9?lsRYE2m77($S8yX!IP`t
zoDp!r=ldU7sPaZqPFM`Jg>TVZrm$jlb&b+4qT04z!)X@1?FuU_NM+Oa&P>6NQ|`OU
zJ<3iKKNX?kAF0z~LM?yGZd}ou?;h)*pgLzK+U*J+wjz+1XrfYPRA2ovuP7@r;Li}5
z0RV!T(kAj5v)ua}Fw61Y<T^hrU7foQvdtV3L#(B7SqNeEf)AT=Y#8F?!=ZQc4MTsb
z2DDKAXq<fk<NtVJI|5^SyL2dU-PaIVL=%>hH-5me^bgGVA(&}|(>v?fR~D28t;4Qx
z+iRQV-~Hx3##L!cM%KV97~KRC^IIKr$`-I0T)JB$?IYN)x?|=>MyQ{(UQyVRL3m|^
z8!MbaRcoVb($kN{RK~VKcv?bgn~1Ag><W|Ck8DdEFHct3+=_rl>ToIG&5|m9M-!ma
zaf+q;#_tv|e8<hi)ofZGuCLAJC)k2{2!Vv`0%}rGHTHJ^^2=j8OGTA{UG_#QVin+)
z6Jvmp0ZE{+#<^<2GE&K2^z6T4oYY~8`GSt{2O$^i56UvTjxV#8OtBOn)~Lj$Kq*z(
zfr{XWa(5A#WBhEJqvpj``1#{`tN~NwO+;hgK}jjT4gGYb$G9;&oEsb`B}^3y`OApH
zbj)EApMR^F<j6-$>rkGPe`+kUQy@TM|AtOGxD2b6irHO#Wf^Dh*b}L^*$4c20O-_9
zW_WTZl!leP@Lg-Cf#uY~1-tRpm*<FO8Kc-S*r2l=*MY{l_@h|~Rx9_0asC3;z-5x6
zI#~4g)Cor)#%+0r%oIE31!}kl<QK#We4N~PeE9O9Ly`i!jpbRT`|dz6h!Nlf_EM(E
zof?rd_=2=eg}1|3zQNhl3GEepb}(^!B=@JzxOTHq6yKC*>TXD}s?^|&Y}R^d&c2^)
z0$pXj^cc!lHs=pLwIEIAc-uNjG40@;%*YRgbyI9f+duphc)lZum*v<nMqYU_1Bs5<
z836;<?FBx=-tZJ~U=^P;aE1W*L(xDxj}ASyV+q3ay{wjpc?#X^{=b#u*4Y}+26R^g
zNx?u_vW67YCnBv_=L#u3U1um1O%bu==~>YLx^3v>#67oPFs=M$p5~v%^Ql7V$8NqZ
zT&@1ngG)=;C(dX6jp(iw0(xChb%Pvuc5T<NPbn*v;IQNM8P0gN+Pr|x6&*V!&kFq!
zdPYMUQH^59T~4@HHNIqZjl_WgIktLlDY{F_S|oC!KGA?b^w|e48fkoJC^X8ZwUHN&
zqH$b}=eHhGgK(^Dc5}2SO*z-I`^)NO;1eVDfriihyl6XCsVKC|=wvW#mnJ{sjcMXj
zv&Jdmnd5y&Cm1@Qvmyc5#$p$n!gkp8@q2f;r`96$B8(D_-j?qd0wWJ5k|2M^m8g^h
zBLd}2C-4v)EU{1BnXscDx^8<i47mBnZhNek$6}6-*OvU#$e#QzsWm<2>j2wzGlp?O
zB%bR_9^Jg}cjqPS{@MxkN<Bk1kT!0gVClGH&;FWiSSPa@7m!4v0USey1i2xyBChu3
zJZGbFiA;iZ%YAkVvTFg~LLkk1l+uKN0I0tX3uqu9v??GV=>Hytz3iA=t&CmF%~ai7
ztQ{;}8NKZ74)r!%HpWr>71h6tWtkeQ<tIFv((UZZsg;}5=_X=nHd?cP4<TbGYXyN|
zf=ie6Qtl)(O`hcq5D-V`jL4`PT%rbbKK3X+?=Bhk)rdJ)s}Ky&UxZ*q%p!#XqJOO-
z6&+oKB&=8#Un7Oim>o_s$1h%l#4SJr{O{j)dKP%mu<_1TpsVTS0=Rh>wq<Ke1!K`L
z_9jRbR#=Df&+eqDDwBH+Xi{s3iqmKF0lqD1B5uULxD%RIpm+S=?}QJPZ*1!nrkI$%
zANF^r=?H##r}p6363`d7MzgX2?wPy2Twb5fs*5kDtI2!{?-x?_s-F&`bRd)y_fm?k
zZyzbo5O^lsG3yiJ?}?{^EBFeZ7KjURHWC!D;E&9&40oW`y8Re!B6#2jXNnHq8<9NB
z26|*iB#^gS%6Sr4Q|nTR#^s}soHw;Ci;|hQBPaXiObM7+gNm!i$J}-Sk=(Eco6u{;
z5)D(TYwe$|MQC}OKa@&(iqZHo7evDg$2Da26lN4cHE>Sb7H30edQua8-t$l|nIk`T
zId5EXOx%3%yx>Ao)5}HL3V&KIOfnM<D_1bd<XD&_joLQrVaCLG(TpY`aB1&aJ7bk|
z@g^B0&?AS<U}-vgyiv>nGXLH@eVn_ATQW;!j~egV(~c5+6?Mz+WMA$_{Ys~(M<Ppg
zH(Q_Lc`I<sDbK_G3D$Y}o1{6LP@-{kU}S1RKalj`onQSW%zBOI<dJrcbng#Jd+2OY
zab_4I$~>t7OeT2&cuZ_AS1aC7WJbw_LRoL1873d>0fiaZluk80fFf;|17~dje2Vwd
zTv8<XJi~{mj$3&wh@?CzCj$8zn-;Yk*+JS)#+0s%szH_ZDuZeg=6!)B_R@yoPrOfa
zD~|j0G)GI7k%jLMyP`R*B-#v}I0kG+R#)%^d8Z(B>NqimV0Tp7rgFDnl|GfD5!;V*
zwiu2QP)gNT0V#S<0F#4Za&Q&k6X+Khj+V%E=Tw_;C{UJLj|3T$f#5y`_Y;o=&o*}i
zIW8^5I|GANJNH8A1N~$$<mLtRDKiXDUfck*2@a>uz>m`CaG5n(jsgt1Pyz&>KQXCX
zm?|#Jh#X9wxqm30I^I=iJP-D(-a;@hN~S=D`NLq1U^YG%VCJ6K(~TIGD#sR*s=)c2
z&&Ve$^umbqcY}C({H?AOx+zd!k$FfJ71XB+?Fcdkgtah^h%?k;_LuwtKZ&Xk(<f<T
z5i?3~zEGI(IG#LT!3Q}(l>A<wuiCiQ5Y*O2&S~j)`J}92F1B-F+QLR;(yF9}r|tX@
zhTM^yn7KFy096Ch!&k_{A2-J$(Kx*Z$31+SFu^zij8OfPI5=#z-&jQYRO?Xd&MZ^b
z5a%48n*I~UGVn@xJ#YSkR3(wl1=)!W50mSWLKOwF?1629C=4rc?9MI2EWQIo2uRW#
z1LH%KbXv%rFg!8R*@*1vO!#IJ&+~WWO2_sWB44=?z?!D(G3D<wUp}K{^H_SGac}1+
zL<6@zK=F2KRcu#s9@RR-S6Xe<X?Y^$PXqiIKd%@>Ul|S^*)FyNPTlhu!zj+8XgH~r
z*@ZcK`KDZJTvuw497!{Mbnb7FgWy}+gHAjP8}uq&47d;Q`ZdP^24!a>D)76EMYjgF
zKS~xU0Q=VG0C#qWZ?#`Op$w8Y#q@Mn>2Te_i7BR5g_>bc<TUJ?lLeJZ{6l#Y<atq*
zueomSqiZJXw_#5hrnqoIs*EJ*<IqVe+oQ$~MG`->t$J2t#7NkNzqm#XueDy3a+DE}
z$!-uyfng?wv%4E^iSDErI|)g-ca=A3M85iR0H-K7uSRRtv%Am3kIQltf*l!Z!iXy0
z$RTC(%lA}A2yepF*99XTuFDz})!+C$O%t#sV{80tFi2G?zma8Xl;vhXe;0TYhgpZi
zQErJDK~D-|GZ=w0e{vy@MO+r|9GW&JQ~KJxxA_a2g}gJrZ<c!rUPPXWON?gwFz?0!
z0K}<scRVUQ&Vu&MMR_PDqQCLa56VWkUlha9SLs}d4Iskwi%h@?;`0qY*;#?PRHi%7
z7y9>|_T|n6Sc3$s_z=XSCAEhPqF~PE^aP^J*}6TYR?9)$ZeP4X<ldO{{oWEemLaZW
z8d*IUbQqK+Ov@m!)YB%Qqtb&84KjI?fR}Pc{iyI`?);=-qei-`<GiQBAaEHvN3Mvd
z88o<lUT=sa?QlXl5V^=X@(3za;~j!z2qvi0RvKX<1_vI*5|IKUHaa`kqZB)SR^D!I
zND*`@4-b$C^Bcq_Y8R(z(j}1}U>oLpKbi~~?#=F3ms!P>4_Q<#6kYGs$ItqA0r2?w
zkxy*MyAFZkPmt{GFIdWODEvwg&i*Xm^8wRI4XT62%#mxCU?6O+vCYWivSFkcqAs}J
zXW@nFKOR-1=nFzz4T$nvB#gO*ERCu&n~*X~VS@k%XAciHtb-_$tGDAQwr{d2PDa|s
zb6|r-nEk?XF(-HxU~PTEm;E|Y06EKI4(8IFM+Xd$4fWWV*J&BpkG+QkV@j{w(PR)8
zY_@sItaotyX<2VB2zJ)R{z$5^z+SK#9Gsnzb;Rs}AnVqIfCDc<31aCCa)s030fEZn
zeTVTv>ZXe%1CZTgbV>!-+@?L13GBnNwAdaKeN75d)b6VFsRmujGbm<lK=xO|J1I?3
zWSoyV9V|lbW%*x%8Q9K~O7erp0a)PylsnhaEgarZ@Rm+-d{8DIPk(`2(395+413`B
z@BsU`a3-!-4D(3V63<J;I8H-Oi4*A5&Awv)w>fHH33z15l-V?C#!vJ?<ll&K?cSow
zE+C>|_<&Fvsf+$+F?4ivfM4&^A8r|9tg?&(6aeuXQEjlHQH3vhFoT>UIvd+V8{-SX
zK!HNj@^L=UjC%#aF4_zfOI(XAq$nfhYRs=rWeyR)u@rPKtiq!ZVO5Z<aUS7(%3N9F
z0Iw6<G!biD47M3ePb3r0rN4=%;|+M5&|H2*_?CP6GK%U!v<ol-T<}fo3R_{qy2Pa1
ze_ajkZh-Xs*7MHh+;Eo1z?HWPeDHu`yGs?N)P6ca-4uq6ZSsJ6{Fx!W_oEU@fb!Aq
z0$4_zPRz1Ea2gPm{s6w&4QIOQ=<LCzm%WPvE!qkH{21+m6N(=yfqXn?Bq9~Q;Uus9
zFZ!x$c#e@H(s$$lK;c)&yZ6b{yZp9^sN)fE%r!ImqTSWb$mygz%u{R!H)WDgK~NeJ
zc26a1%(@H?5&SFMMIi|SiyKCy5s)1Vzi>tadt^tSZ4uklBvg^W>T@cNLc_nAM$Sx7
z(XM_z!mQP3h@bO$Q9)2v?36FsE7f~h1PbAJTLctWibxIsdLRXN_Xb#GF{$A-)CK~V
zY$*{aKNy4^Z21aPL}>TB$1RwSDG)+c&w@(&2t$`Wz&R3(1tg5Ci?H1W_pTF%2N}a`
zU~!!)2_K8=gffRs#v*C+DQzjb=r)Q>n)PHPAm;?g3|(CW(RT2A`TalxRNQ_;ik_xA
z!XZ=ylu2^|YExTa0eeL@la(+N`cwW?>vfqKIy{tmv^nuhYTLhw51W`F%LVFEbF-t^
zl(Kse6K_~mz7G%}%P1;_vm6`$F4BdZ*;IYqq~V*$xKJ$xFk=xccJq1StZ5)H9TlNs
z7FNhFZbU95rplI#|0wewMwYwg{{Z7PUETV`1bsUOe2WGu$U*TdMLt<PIHFO}?l<Bg
zRA7ZPqlhNRSIuMf{goA4z0E=mRE?jPCXS9B(t%N=bRi5?3kpdMbS9Akv;1QA1%-cE
zr8K=3H;*xKJR0upN0n8vhIVNUbWJ)~yD5hQGDPk+OXSM((2)$=CrZ{DLdhqWaRu>1
zZ+J!nYIv9^7ucNCrM&DVl?{Juk=jWAxnaiCjp&v^HhEA(r@MS#>^&&)M4}ooz;@Vq
zHF82BZmccsw{YP=d-m5d>hal?J^;fh*bO>noX~Ku=UAmBPk&?$3kQpC!zOL>ZBs>X
zNJtWJ$;6II$DZ+1lHS~$M|OYG2z*9~*3NYRj6l8lu<udU2JS^W^eNwO;UH}Ae=RJB
z>hK=!s9b{==m3?LsycEPBfEU0%8*c!YMoc5b$&k-!%w=(hdL}5QbcdkfZe#zbNnWh
zwn0I>){2BUptIDFo=vrK?})pmirn8eZDtFnr5f`=_4TGwd!JR>pwP6y=abvE70CPs
zK(h*gYip?yA%|CTf`c>i+Jut_^O5l3xCwYtM#uv^%RZQHdcohcn`QzKzxm9z$d(8V
zKM)c_yLjP4NVbprhg8kzKd1XSs{OG*H1@$tYge4Ino5-DY#wH{9A(0JV3lo{CD)ec
zKaTHOzt|WX*TaPrHW08i9Hpv}%IpXL-gpB<q1K)c%HhvarSD}QRa+nnx*3ue7TxTN
zC>zzy&qNAJs9i7Ki{xcM6^tX9{V<Mk!(7-F2mWu9$EXVj`A;d*L+d!vr^tA01~>}=
z4hr<6pK)z=ss$E1tHpFkxot&zS%{^%dOJ*IGQ6yPW4kmqczk$IzUx#zGh?j)U~L3B
zAGF<U&sb4;{=UDPd%*q-G;LSLTSw(2BgmL)OsnRSC12Sbd!!u^1*=}|TCsk~TsrDD
z$)bg}POXmNZh{S&pmM&jV})U}S($21f;qGI^b+8&``BSg<^~ovGeM6;p(qZmSd9N2
z=hlGB2F65M<!*SK?yCaw`jtGOMZS<Rtg#ihtF=2tK57p0FOAl<$tMxj$x3l$miW2=
zDr0w4mVDnQe=jfZr_+PA4@KJC0$=Bvs$JWR68pzr!NpMYy)BD8sNN;}mGx`Oux{;E
zJVr|^-Hzhlzk#y{&E*2AIHNZ<;M-ZQ?P2qJcqR=fXq~gB)$CBt_(p_)r}wA7&3cz7
zk=$RrB5{mTz3LwPBw(5;0gKh1depc!NUL>5loT7b7#dfz)Um^!lvTrz?H_XGN#&Y2
z-B*I>Vr^NjRpD;a#BOyH)4%dlohj>_-53uWhCQ>Q#@jRYpeD*~72lv3PBN`cnQ`s%
z=UdRbcf;|F3LQMr?Spmz1543!*Jt8Xg<o#3ELGDdqj!TWzUvI&Mvpu!9(^4y5}IUN
zvg<_3<G}*8Z{B{v<sv3XSbuDinH&#5G<sI-vR#)P**Q>f-*c`hZ`~E}{9OuUe<Ir2
z@E$>S?#0lBwv9{bPg+gfD{1M{&L~XQ5=O%t32br?P!#^<oV%s~O#gbq#VDS_4kgEK
z^Po7ZQo9nx=g?4+)+-+f#Kr5vc<?B8XGlC==$07eZXwp3SrM;9X&n50T%lB`-gYn|
z)5Vy6VHf?L@`mtC6Vs@`x{P)=uA`;7#W)GN%vv+LL~74u-RQgF6YQ`kf<@>o&@4R5
ztGu;SUN&`?KongEXbGBZ7(oC-WSh^!vd%V@skU!T6h1SG!-1|#S>*gHz6+f<N}}`0
zoQVl}1U)_-g0o}LhTQ%|i?zM2OZm*VI<)V@MMA`Dt6L#sQn{aFd%gvRDo_~kV>6SX
zjvv9pt{Fg^Z{tzaI?$%Whuq~E@^!b+(pueHxq|v3$0X$pm~Umkv>MpmZquq6@Absu
zXy>T7XkRxJ0#-NvA$FeC_8{CKpkw)w9S^%7f_Fh|$d#d_M|tfSNP&QM6#PW(5A;-K
z-f)mQbkk1wn8Hn`4C++M7ZD8-|K0vAw_&3ViX`Ef@_0%N_T1^(KAPQlMhr?n;Te=4
z1ys9T0)1%&(6E-;g)Ki*tk=PY@bUDO^oKdj>^?zlQbYF~OfWLeINS*!2a2o<B>J}>
zJ_ny-ZQzUh*1^mb!)6CarVD)J<KA~NyIuUKLPA3b^;xp8Hun@=wwI)-121=SMxs@d
zhJ%{fkS=U5pY<h9qX@SAvx@1XUGMl2t__dxFndM_pp$T0<q?CobH-b7v|Cr)fjlz;
zAsBi{<iT(AP-p*G+}DS{yM!7iBy8iow441H%0zTK${<_GVyh|lXB;<z1xGU58F?mt
zTX0M_Nq9Y-d^~iM!ZQ`Hp|h#?YqPacmV(BRATg7k%U07LoHJKVzG`V1$sfoQQ&n<f
z*Z%+opjAD~$Nwz<wFTAg8^S!IkDNX^|7aq$;exm*b~T-P%<+l(11Dm9{il}tgKVGJ
zOnU8lvu6G@i#n~~(#xHf-ji0g^J&@v&ffBL@{=6br)I)cmPN$|mDQ5~jG$Y8L@0oW
zBh59vdrQut+mT<MM~-$e8{_x*#{>vmHcVqJKv8R!;*}5Wlc%`U^VUCB5c9f=^@4e1
zPGSl=x5<JjZlqFhYnKtATcKt5bW5%ET$#`$!ACN**=^NNK<GZPTFUZKSbmp{&FF}Q
z?&{s%_Bf`p6~4NH-hSJCuSxE4VgD1vwt6YRf4EiFxTaR^>nZYreXw_3$6aQlM=xpx
zutdy>slqP|ZiH089^+izatX)f&hl1*vVJPh1BsHFJ0NwIfUu3`-XWfv=4a|WaByZA
zS{8*%Hr?SI$wX?5%2xI0jU5-1vgi(N8ant>_hI|ye1u*)+sBjbV+}{|omV4;Qe^-(
zVCHf(LHV1kKc@)-AFkCGIY>r)$CFGNfZ3|h|I2J0>*a&!qqk?#_^th{sg8oigXs8U
zkr1F@c+w0lc^=)_?uSv{$navwR&f4&Qr32N!RiLituD77-4lsFii*tIl{(L!y5Hb$
zFCv6>Id;@4i8l!HB1g_hVPPoj)Q&LN+4pjAKl1T@ja7UCe?40)<o~|)T>L7E-Glvk
zJ93}S^m%RIwez}T=l&=q47vS*2i&7XhqJ!a@{oW60jXmJK5J_OXt?R{5M2zG>1L<4
z);gazT@`x0J}f%9eZuq&+ox|s71s`7vRBKxGKmxe{9X|*4=afLfFDKnH(pHx0e3I+
zV?_S9;EW%_Lg)48>HzU#_Rrfx8*GjIX$${fgQeHyS8#Y;zzv5p=&sA-=G26~SDqON
zQ;X#-0@J%wMN>jRZs~!HXIe)Ne$Qr&)j5FZ*K}vR*ZSxqYW7|pkA)_?N_$22j+N5R
zv~veeTe(DEz^Bjo&YL)rX~m8Sm%UTQYkRea^4Royy=D2T-L472Dd&eClIE39;Pu<<
zgN+vB7xtq>w$*^*4#Fx&086GnF}qKjL>T2yl^^zyza=37wD6&U8N^;;QBg{_HT4I6
zISmP8jrw(d5jzj|_mzfqf`&$f@$KD<08&Lkl-bkk-UwO4@6X0B*^s$7eGMm?vRJ_l
zLp{ZfrTgk{D+6Alm3u+E{4g5h{EIR|8{Ve+hQ52wZfvvI)CgjI5R95Y<XZ4W1FCda
z3_XthrL;Q0W@0{PN+Rjt1Tcn4DwNX8xI9fNL_r*S#vBT+6$+~v1T##HhBiBw@3L~s
z95Q|BOYv&v{tl&FqiXPJO?*Z|1%_8#c0N_=M&4PNDOrxCOm^$?ey9nEdPKBTzuYUA
zTaP8+7n7a;;lmQk-C0G;rNXHFW7)zeQ=y49H7xOGQpllvq}r`kY4*Z<!!!fwe)o|i
z1-hV&FeXpMDcg&9<9SJyaF`Tj=IG&}3)d66W{d}Td22qGz0hJ~#L3l1sL`H<FAEeW
zCMeZkJ7A_B34lqMZ@Svy#GlyigUG1jll+(zdFk`zW$V`8`Rx*x-#S|_!TLd#uR#>2
zwpJW0CdF6%5H}bWf~q7cl%WWbK0!vll*H5$4W3bVd;*2lLruF@0#pVn-`t2s+f~c#
z*CZU{)fd_yh5N3?s7e^KkA#!QU)6@MpnDJ9@GoJJ)c_WE4NTD3>qTvQwNYXm60w7*
z;(54WI8ZIrhdryJPVZbI4NJ3uh8MHkbI<_0Wq~rH2FI1fj%P&}DgQp)bMw!qtYG{<
zaLBXT=#L&1#|r5&v5J_wWv!V*@H@y9ze??-F3ko&HM;g?aY5(FI4-A1I(G4qZ5C@5
z3V#R4Hv@)ZU|tmrROBTl=*#=5DQHURZltYcv9HN3ip>bc<ReKlzL8RKP(f!_f?9%H
zubJ{Vt(TS&t?`jGLB&yM`#+6~jH1>m2FQ#1t$_W=9-)yx%u~^ZkjEN^N<sH+f1Zr^
z@#M5`%?&lz=?`i*t2;W$E9{r5rwiC<NU)biSOQYa1_aJ(18+aDI*6?~TO3D)3xbtD
z7}yKax(B3-)CKHDhqV~r=6U5}v4t;Wlb3%pa38S480%3Kk#O!LM0T_sc;|XMz#Xl<
zVk;D~V~nm#=ZM~I;95yDn<qd0v>6{nS+7*$9vv+RT*&(Q*PZxr4ji5mO)5o3-Ao<A
zo*ckMa+kQn@(4}l?x{UM(gDmpAt<JeUO>m8>)|lK-XG__YA#~<u};AX;<Wz|rkqpF
zf?N*+<0e$qqbsDCq(?u=0-ClQc7-!k72I8~>*W-*Md#w@9~Z!)7dHUyd)1>s&>Fa^
zzuQpC@g}6zaWLV=`##yzXK-&_k&W~^EDLCk(oV7RN>sxwA?{CRhlQm<OP)x}5|t%-
z>*s9zw`DsyY_HZR+y4BzzOqI-G=}$}GCOnq{R4HQ3#~}rNL?bB36x}rLSt%!W%n<@
zNWgo2*r6HMz@zu<LfK5%8e=CLKV{LZ3nufF_s%eJ0O$uGrA)#|sBlKt*JMVEQ3s^L
zw#kiSIP4h0<q_9}V$(9PXsbbu83iu<n&5Jo;JdxxS<6w(4ruvM*I6?j)hyX&b=pWz
zH&Aoohr=O>h_)MAfU6&!JF7DC{L3)MBUch1dmt=sZC3IpW889zgrW&Rqk`104nZEv
zB5!TB9-1A0V3d2rNY~+4AAdb<-b;V~%am76J?lMqU3N@@bC;j245D%jVbKumBnTVg
zoVWFzD}CZp@!S0F)Dz@C5urKO2pJ#pov{@or@7FN3KS6khZ(tt>=r5My7E9=H)zR%
zLfF>?MI}afbIPlYBYQPXV2d4)0Bo^_r*p{jW^>%;pFRIt<y?agx609HYoyi+$IRjM
zXt&sDLwe;)lTgv99@W-sCM4^w-|5v3O5X(wK%6lp4q=g#=ajv%ZKJwNzK8L(Q`akj
z%kHPb(g8@&An^Ug;IAgQYobp3C845|v=46l*HY4>Xpvd<P0UIX3=tpCZeHckgyf|(
zjk)D^DIBG<$`0{S@X9UOce>UX?Bv{(-PL%-J*E!VocuHR+w0>Oj^=b6!7nhgN7)c^
zF~nuM0PiwQ{*SjfVO5_Ws34#iol1`Am+DUvkfwkH(`y`TdcbI}tH{`509t8497^zQ
zil7T=pG?WQq=b*W(7Txu;PgA|o=Gqk{>3DGGGkPq6tOrRXtAj6BBfxEmvp@}rnmvE
zkuITqEP5!>iXpnaHL?FWYh0cEHBd`4pZD;Y-}qZ16Kk@T+Dv)E#e2kyvSJKeJ(LgY
zO$JkNYTm0mZQ<5VdVcSavO`m41<T+Y^uMlh0&KwlH_Z&F7!&mWCKj#7Xn@)QSz;x?
z;JAQ=To}N(SX!_X0bqb2CUEv2TOtg6k0rwY|9=MmeGdNbQXmfGjHAT=zqbPr5VHRx
z`)^&M1$@`00OrQgg3%iOWAT88aqM8nra;_yS+G4bpt1!GFd?26?9>9-9WMknZwdT}
z7Y8G;28t#Kf&06G0ROt<0CN*)!HPV96A40K&R#&cL~$@2AD~hq-T%N37?_9w#_J1A
zPZR({3;-@C@`F7F0@0I%z_dbug-MveolrO+Z#*(EED0CPAnae0ESP!3e<hcZa6rUl
MWGK6+|0w&v0HAO^dH?_b

diff --git a/eslzArm/eslzArm.json b/eslzArm/eslzArm.json
index b1eb57a00d..0c4e6b59ac 100644
--- a/eslzArm/eslzArm.json
+++ b/eslzArm/eslzArm.json
@@ -941,6 +941,7 @@
             "govMdfcPolicyAssignment": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/policyAssignments/gov/fairfaxDINE-MDFCConfigPolicyAssignment.json')]",
             "costOptimizationPolicyInitiative": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/policyAssignments/AUDIT-UnusedResourcesPolicyAssignment.json')]",
             "zoneResilientPolicyInitiative": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/policyAssignments/AUDIT-ZoneResilientPolicyAssignment.json')]",
+            "resourceRgLocationPolicyAssignment": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/policyAssignments/AUDIT-ResourceRGLocationPolicyAssignment.json')]",
             "VMUnmanagedDiskPolicyAssignment": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/policyAssignments/DENY-VMUnmanagedDiskPolicyAssignment.json')]",
             "diagnosticSettingsforManagementGroups": "[uri(deployment().properties.templateLink.uri, 'managementGroupTemplates/diagSettingsMGs/diagSettingsMGs.json')]",
             // references to https://github.com/Azure/azure-monitor-baseline-alerts
@@ -1026,6 +1027,7 @@
             "denyClassicResourcePolicyDeploymentName": "[take(concat('alz-NoClassicResource', variables('deploymentSuffix')), 64)]",
             "costOptimizationDeploymentName": "[take(concat('alz-CostOptimization', variables('deploymentSuffix')), 64)]",
             "zoneResilientDeploymentName": "[take(concat('alz-ZoneResilient', variables('deploymentSuffix')), 64)]",
+            "resourceRgLocationDeploymentName": "[take(concat('alz-ResourceRGLoc', variables('deploymentSuffix')), 64)]",
             "denyVMUnmanagedDiskPolicyDeploymentName": "[take(concat('alz-NoUnmanagedDiskResource', variables('deploymentSuffix')), 64)]",
             "ztnPhase1PidCuaDeploymentName": "[take(concat('pid-', variables('ztnPhase1CuaId'), '-' , uniqueString(deployment().location, parameters('enterpriseScaleCompanyPrefix'), parameters('currentDateTimeUtcNow'), coalesce(parameters('connectivitySubscriptionId'), parameters('singlePlatformSubscriptionId'))), '-ztnp1'), 64)]",
             "ambaPortalPidCuaDeploymentName": "[take(concat('pid-', variables('ambaPortalCuaId'), '-' , uniqueString(deployment().location, parameters('enterpriseScaleCompanyPrefix'), parameters('currentDateTimeUtcNow'), coalesce(parameters('connectivitySubscriptionId'), parameters('singlePlatformSubscriptionId'))), '-ztnp1'), 64)]",
@@ -1876,6 +1878,30 @@
                     }
                 }
             }
+        }, 
+        {
+            // Assigning Audit resource location matches resource group location policy to intermediate root management group
+            "condition": "[or(not(empty(parameters('managementSubscriptionId'))), not(empty(parameters('singlePlatformSubscriptionId'))))]",
+            "type": "Microsoft.Resources/deployments",
+            "apiVersion": "2020-10-01",
+            "name": "[variables('deploymentNames').resourceRgLocationDeploymentName]",
+            "scope": "[variables('scopes').eslzRootManagementGroup]",
+            "location": "[deployment().location]",
+            "dependsOn": [
+                "policyCompletion"
+            ],
+            "properties": {
+                "mode": "Incremental",
+                "templateLink": {
+                    "contentVersion": "1.0.0.0",
+                    "uri": "[variables('deploymentUris').resourceRgLocationPolicyAssignment]"
+                },
+                "parameters": {
+                    "enforcementMode": {
+                        "value": "Default"
+                    }
+                }
+            }
         },        
         {
             // Assigning Azure Security Center configuration policy initiative to intermediate root management group if condition is true
diff --git a/eslzArm/managementGroupTemplates/policyAssignments/AUDIT-ResourceRGLocationPolicyAssignment.json b/eslzArm/managementGroupTemplates/policyAssignments/AUDIT-ResourceRGLocationPolicyAssignment.json
new file mode 100644
index 0000000000..283cf25ac6
--- /dev/null
+++ b/eslzArm/managementGroupTemplates/policyAssignments/AUDIT-ResourceRGLocationPolicyAssignment.json
@@ -0,0 +1,54 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-08-01/managementGroupDeploymentTemplate.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "enforcementMode": {
+            "type": "string",
+            "allowedValues": [
+                "Default",
+                "DoNotEnforce"
+            ],
+            "defaultValue": "Default"
+        },
+        "nonComplianceMessagePlaceholder": {
+            "type": "string",
+            "defaultValue": "{enforcementMode}"
+        }
+    },
+    "variables": {
+        "policyDefinitions": {
+            "auditRGL": "/providers/Microsoft.Authorization/policyDefinitions/0a914e76-4921-4c19-b460-a2d36003525a"
+        },
+        "policyAssignmentNames": {
+            "auditRGL": "Audit-ResourceRGLocation",
+            "description": "Resource Group and Resource locations should match.",
+            "displayName": "Resource Group and Resource locations should match"
+        },
+        "nonComplianceMessage": {
+            "message": "Resources {enforcementMode} be deployed in the same region as the Resource Group.",
+            "Default": "must",
+            "DoNotEnforce": "should"
+        }
+    },
+    "resources": [
+        {
+            "type": "Microsoft.Authorization/policyAssignments",
+            "apiVersion": "2022-06-01",
+            "name": "[variables('policyAssignmentNames').auditRGL]",
+            "properties": {
+                "description": "[variables('policyAssignmentNames').description]",
+                "displayName": "[variables('policyAssignmentNames').displayName]",
+                "policyDefinitionId": "[variables('policyDefinitions').auditRGL]",
+                "enforcementMode": "[parameters('enforcementMode')]",
+                "nonComplianceMessages": [
+                    {
+                        "message": "[replace(variables('nonComplianceMessage').message, parameters('nonComplianceMessagePlaceholder'), variables('nonComplianceMessage')[parameters('enforcementMode')])]"
+                    }
+                ],
+                "parameters": {
+                }
+            }
+        }
+    ],
+    "outputs": {}
+}
\ No newline at end of file
diff --git a/eslzArm/managementGroupTemplates/policyDefinitions/policies.json b/eslzArm/managementGroupTemplates/policyDefinitions/policies.json
index 80131eb428..a9b75f966c 100644
--- a/eslzArm/managementGroupTemplates/policyDefinitions/policies.json
+++ b/eslzArm/managementGroupTemplates/policyDefinitions/policies.json
@@ -4,8 +4,8 @@
   "metadata": {
     "_generator": {
       "name": "bicep",
-      "version": "0.23.1.45101",
-      "templateHash": "10333627625984546269"
+      "version": "0.24.24.22086",
+      "templateHash": "4018557226874710368"
     }
   },
   "parameters": {
diff --git a/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json b/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json
index cde4991896..263b8425e6 100644
--- a/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json
+++ b/eslzArm/managementGroupTemplates/roleDefinitions/customRoleDefinitions.json
@@ -4,8 +4,8 @@
   "metadata": {
     "_generator": {
       "name": "bicep",
-      "version": "0.23.1.45101",
-      "templateHash": "191901335711845632"
+      "version": "0.24.24.22086",
+      "templateHash": "7374068324501208275"
     }
   },
   "variables": {