c718f31206
Archive Repo Notice ( #462 )
2024-01-02 16:31:40 -05:00
d8ef9d786a
releasing v1.1.8 ( #460 )
2023-11-09 13:44:02 -07:00
879b972f7f
update backend.ps1 ( #459 )
2023-11-09 12:47:47 -07:00
cbabaf82f9
update tag.json ( #457 )
2023-11-08 14:36:37 -07:00
6207ec25c2
update backend.ps1 ( #456 )
2023-11-08 13:35:02 -07:00
57f995d6be
Update main.ps1 ( #454 )
...
Fix automation account detection
2023-11-08 07:31:07 -07:00
11fd7f82b6
Updated the control name in GR1 to maintain consistency ( #450 )
...
* Added a new acronym to be used in the msgTable
* Added french version of the acronym
2023-10-26 16:08:54 -04:00
c321f3ad56
Removed definition column from all guardrail controls and added ITSG-33 links in Information tab ( #452 )
...
* Removed definition column from guardrails and added ITSG-33 links in Information tab
* Updated workbook file
2023-10-26 13:25:36 -06:00
c914c0e46a
Fetch runtime config from keyvault to set AZ context to correct subscription ( #453 )
2023-10-24 13:54:16 -06:00
eecbf92f88
Fixworkbook447 ( #449 )
...
* Updates for 3 changes
* updated workbook for central view
2023-09-11 13:44:48 -04:00
79a59eb902
Hiding principal user email from the comments section of guardrails ( #446 )
...
* Add a Hide-Email function to hide email passed in comments
* Updated module version
* Updated GR-Common module version
* Added the hiddenUserPrincipalName param in cmmts
* Updated the modules version
* New versions not being accepted
---------
Co-authored-by: Islam Gomaa <igomaa@users.noreply.github.com>
2023-09-11 13:41:47 -04:00
e30308346e
Removed check for MOU for GR11 ( #448 )
2023-09-11 13:40:52 -04:00
ae8eb83631
Release v1.1.6 ( #445 )
...
* Updates for 3 changes
* added module 4 new module
* zip update
* modules.json update
* updating bicep
* adding "SSCReadOnlyServicePrincipalNameAPPID" to param validation
* make SSCReadOnlyServicePrincipalNameAPPID required
* update tag
* zipped and signed modules
---------
Co-authored-by: Jose Fehse <jose@fehse.ca>
2023-08-28 13:38:13 -04:00
944f06cd2a
Param validation ssc read only service principal name appid ( #444 )
...
* Updates for 3 changes
* added module 4 new module
* zip update
* modules.json update
* updating bicep
* adding "SSCReadOnlyServicePrincipalNameAPPID" to param validation
* make SSCReadOnlyServicePrincipalNameAPPID required
---------
Co-authored-by: Jose Fehse <jose@fehse.ca>
2023-08-28 13:37:51 -04:00
28ba1f723a
Gr4 app id new logic ( #443 )
...
* Updates for 3 changes
* added module 4 new module
* zip update
* modules.json update
* updating bicep
2023-08-28 10:45:04 -06:00
dd110c294e
Fixes Version Info bug by sorting then pulling latest information and sets N/A for fields not present ( #440 )
...
1. DeployedVersion, AvailableVersion, UpdatedNeeded, CheckDate information reported was old instead of being based on latest execution.
2. Added 'N/A' values for some fields if not found to allow older client versions and newer client versions to report back to the aggregation without errors. If there is no value, it will put 'N/A' instead of error
Co-authored-by: Jose Fehse <jose@fehse.ca>
2023-08-17 15:56:32 -04:00
23d69978a2
GR3 Control AC2 switched to 'Recommended' and added MFA control to GR3 ( #439 )
2023-08-17 15:55:05 -04:00
c212e915e0
Revert central runbook workspace change ( #438 )
...
* Updates for 3 changes
* reverted to filter workspaces by rg
2023-08-09 14:14:00 -06:00
010b1c0c44
fixed 434 and 435 ( #436 )
...
* fixed 434 and 435
* minor workbook correction
2023-08-08 19:43:22 -04:00
81dadf2c6f
Config param validation tweaks ( #433 )
...
* updated tags.json
* zipped and signed modules
* #429-#431-tweaks
2023-08-08 13:55:50 -04:00
eb59a33bf2
Release v1.1.5.1 ( #432 )
...
* updated tags.json
* zipped and signed modules
2023-08-01 13:55:45 -04:00
d4d52e4752
Fix health and security logic ( #428 )
...
* Updates for 3 changes
* Logic change and verbose log
* updated workbook in relation to issue 427
2023-07-24 14:26:25 -04:00
d9f7105fd5
Release v1.1.5 ( #425 )
...
* v1.1.5 tag
* zipped signed modules
* resigned modules
2023-07-20 12:51:33 -04:00
cd4fe76c36
Update central appfields ( #424 )
...
* Updates for 3 changes
* fixing multiple issues along with #420
2023-07-17 11:50:42 -06:00
f2fa51b739
Update central app SKU and cipher config ( #423 )
...
* Updates for 3 changes
* updated app sku and Cipher
* tls update and setting function minimum cipher level
2023-07-14 09:49:14 -04:00
5f7e600f48
add missing -cloudUsageProfiles param to Add-TenantInfo ( #422 )
...
* add missing -cloudUsageProfiles param to Add-TenantInfo
* add backend rb error check
* add backend rb error check
* add backend rb error check
2023-07-10 07:38:21 -06:00
28ab7047d2
Register the Microsoft.Storage and Microsoft.KeyVault Resource Providers ( #419 )
...
* register storage rg, move before name checks
* wait for storage and kv RP
2023-06-29 14:05:26 -06:00
2e3d40a8f8
Cloud Usage Profiles - Fix Config Passthrough ( #418 )
...
* initial commit cloud usage profiles
* add workbook section title
* add workbook section title
* default value
* add cloud usage profile link
* rezipped
* removed setup zips
* cloudprofileintest
* cloudusageporfiles missing from configparamdepl
2023-06-29 14:03:22 -06:00
06ceb7aeb0
#398 config value checks ( #417 )
...
* wip: params table
* escape pipe
* config value validation
* config value validation
* cloudusageporfiles param validation
* docs fix
2023-06-29 14:01:52 -06:00
6dfaf77d84
Fix logic gr11 ( #416 )
...
* Updates for 3 changes
* fixed logic in GR11
2023-06-29 12:30:49 -06:00
579cc5e7c8
GR9-Check-VNetComplianceStatus-Issue ( #407 )
...
* GR9-Check-VNetComplianceStatus-Issue
* GR9-Check-VNetComplianceStatus-Issue
* GR9-Check-VNetComplianceStatus-Issue Zips Updated
---------
Co-authored-by: precog90 <ammyamazing@gmail.com>
Co-authored-by: Matthew Bratschun <25390936+mbrat2005@users.noreply.github.com>
2023-06-26 12:07:34 -06:00
404b0c934c
Update debugging.md ( #415 )
2023-06-26 12:04:08 -06:00
1c410ad12a
Central view updates ( #402 )
...
* Updates for 3 changes
* mostly done with 390, 391 and 388
2023-06-12 14:24:00 -04:00
04e30ba333
Fix Check-DeprecatedAccounts to Include OnPremisesSyncEnabled ( #401 )
...
* fix query to include OnPremisesSyncEnabled
* update zip
2023-06-12 10:39:38 -04:00
9b6baa697b
Release v1.1.4 ( #396 )
...
* v1.1.4 tag
* v1.1.4 zipped and signed
2023-06-06 13:01:51 -04:00
3705dac71f
release pipeline add securityRetentionDays": "730" ( #394 )
...
Co-authored-by: Islam Gomaa <igomaa@users.noreply.github.com>
2023-06-05 15:49:47 -04:00
b1647f8423
FIX Variales ( #395 )
2023-06-05 12:45:19 -06:00
72aea8674e
validate BreakGlass Accounts ( #392 )
...
* INclude setection to validate BreakGlass Account
* increased module number
* Update src/GUARDRAIL 1 PROTECT ROOT GLOBAL ADMINS ACCOUNT/Audit/Validate-BreakGlassAccount.psm1
---------
Co-authored-by: Matthew Bratschun <25390936+mbrat2005@users.noreply.github.com>
2023-06-02 12:49:10 -06:00
8183319f46
Add Cloud Usage Profiles to Config and Workbook ( #389 )
...
* initial commit cloud usage profiles
* add workbook section title
* add workbook section title
* default value
* add cloud usage profile link
* rezipped
* removed setup zips
2023-06-01 15:56:50 -04:00
2da7e270dd
JsonTelemtry ( #387 )
...
* remove additional commnet from mocule
* tokenized telemetry tracking
---------
Co-authored-by: Jose Fehse <jose@fehse.ca>
2023-05-30 08:30:56 -04:00
0a4ea67c69
Fixing issue #368 ( #386 )
2023-05-26 16:21:48 -04:00
ae4412ce1f
#376 Log VNET and Subnet Compliance Exclusion by Tag or Param ( #382 )
...
* delete setup module zips
* subnet and vnet exclusion logging
* fix spelling, module versions
* module zips
* correct zipping pipeline to exclude setup
* remove setup zip
2023-05-19 10:05:29 -06:00
0d58e8b0b9
Fix gr11opencloselogic ( #383 )
...
* first commit after changes
* added a parameter to Verify-AllowedLocationPolicy
2023-05-19 08:22:31 -06:00
d3f32337b7
#377 remove role assignment waits ( #380 )
...
* removed role assignment waits in core setup
* added gr 11 files from v1.1.3
* role assignment names to guids
* move secrets to bicep
* move secrets to bicep - bga
* correct admin role assignment to kv
* remove commented kv secret code
---------
Co-authored-by: Islam Gomaa <igomaa@users.noreply.github.com>
2023-05-17 08:54:51 -06:00
eb3aa1bc93
Fix Signature Cleanup Bogle on GR11 an GR4 ( #379 )
...
* added gr 11 files from v1.1.3
* added gr 4 files from v1.1.3
2023-05-17 10:53:24 -04:00
404fbcfbac
removed all signatures from /src ( #375 )
2023-05-15 12:57:58 -04:00
908ec4cdef
Release v1.1.3 ( #367 )
...
* v1.1.3 tag update
* add "securityRetentionDays": "730" to pipeline
* zipped and signed modules
2023-05-02 11:19:23 -06:00
cd57ab94df
securityretentionasparameter - Fixed Zips ( #366 )
...
* first try with retention parameter
* renamedParameter
* pull subnet complaince module from main
* reverted zips to main
* reverted zips to main 2
* subnet zip
* vnet zip
* gr-common zip
---------
Co-authored-by: Jose Fehse <jose@fehse.ca>
2023-04-24 13:02:09 -04:00
3b37b45a62
Revert "Securityretentionasparameter ( #362 )" ( #365 )
...
This reverts commit 73fd294c20
2023-04-18 12:56:37 -04:00
73fd294c20
Securityretentionasparameter ( #362 )
...
* first try with retention parameter
* renamedParameter
* updated modules
2023-04-18 12:47:11 -04:00
Matthew Bratschun
singhgss
TeamDman
Ali Alvi
Jose Fehse
amrinderssc
Islam Gomaa