Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Trusted Launch Initiative added #1605

Merged
merged 5 commits into from
Mar 19, 2024
Merged

Trusted Launch Initiative added #1605

merged 5 commits into from
Mar 19, 2024

Conversation

Springstone
Copy link
Member

@Springstone Springstone commented Mar 19, 2024
edited
Loading

Overview/Summary

This pull request primarily introduces the "Trusted Launch" policy to the project. The "Trusted Launch" policy improves the security of a Virtual Machine and requires VM SKU, OS Disk & OS Image to support it. The changes made in the pull request are related to the documentation, policy assignment, and deployment of the new policy.

Policy Documentation:

  • docs/wiki/ALZ-Policies.md: Updated the count of Policy Definition Sets from 11 to 12. Added a new policy definition set named Audit-TrustedLaunch to the list of specific Custom and Built-in policy definitions. [1] [2]

Policy Assignment:

  • eslzArm/eslzArm.json: Added trustedLaunchPolicyInitiative to the list of policy assignments. Added trustedLaunchDeploymentName to the list of deployment names. Added a new section for assigning the Trusted Launch policy initiative to the intermediate root management group. [1] [2] [3]

Policy Definition:

This PR fixes/adds/changes/removes

  1. Add new initiative and assignment of built-in policies

Breaking Changes

  1. N/A

Testing Evidence

Please provide any testing evidence to show that your Pull Request works/fixes as described and planned (include screenshots, if appropriate).

image

Testing URLs

Azure Public

Deploy To Azure

As part of this Pull Request I have

  • Checked for duplicate Pull Requests
  • Associated it with relevant issues, for tracking and closure.
  • Ensured my code/branch is up-to-date with the latest changes in the main branch
  • Performed testing and provided evidence.
  • Ensured contribution guidance is followed.
  • Updated relevant and associated documentation.
  • Updated the "What's New?" wiki page (located: /docs/wiki/whats-new.md)

@Springstone Springstone added PR: Safe to test 🧪 PRs can run more advanced tests that may deploy or access environments Area: Policy 📝 Issues / PR's related to Policy Type: Enhancement ✨ New feature or request labels Mar 19, 2024
@Springstone Springstone added this to the policy-refresh-fy24-q3 milestone Mar 19, 2024
@Springstone Springstone requested a review from a team as a code owner March 19, 2024 09:52
@jtracey93 jtracey93 merged commit 360f0a2 into Azure:policy-refresh-q3fy24 Mar 19, 2024
2 of 4 checks passed
@Springstone Springstone deleted the TrustedLaunch branch March 20, 2024 11:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jtracey93 jtracey93 jtracey93 approved these changes

Assignees
No one assigned
Labels
Area: Policy 📝 Issues / PR's related to Policy PR: Safe to test 🧪 PRs can run more advanced tests that may deploy or access environments Type: Enhancement ✨ New feature or request
Projects
None yet
Milestone
policy-refresh-fy24-h2
Development

Successfully merging this pull request may close these issues.
2 participants
@Springstone @jtracey93