Open source project for the development of SOE to build Azure IaaS-based solutions.
Перейти к файлу
Nick Price b214641cc7
Merge pull request #49 from Azure/gc-build-github-action
Add GH action and docs for GC build
2022-02-16 00:23:52 +11:00
.github Add GH action and docs for GC build 2022-02-15 19:27:58 +11:00
.vscode Fix #24 2021-10-14 12:46:03 +11:00
docs Add GH action and docs for GC build 2022-02-15 19:27:58 +11:00
guest-configuration Resolve malformed RegistryPolicyFile resources 2021-12-23 12:53:56 +11:00
kql Updated IPsec detection KQL snippets to use Event table source 2022-02-05 13:04:26 +11:00
policies/enable-vulnerability-assessment removing automanage and tagging references 2021-12-21 15:13:35 +11:00
workbooks Update sample workbook and ARM template 2022-02-05 14:58:07 +11:00
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2021-06-25 11:57:10 +10:00
CONTRIBUTING.MD Update CONTRIBUTING.MD 2021-08-20 16:40:57 +10:00
LICENSE LICENSE committed 2021-05-27 02:15:02 -07:00
README.md fix #41 2022-02-04 14:35:59 +11:00
SECURITY.md SECURITY.md committed 2021-05-27 02:15:03 -07:00
SUPPORT.md Updated document link 2021-07-26 22:01:05 +10:00
arm-cloudsoe-automation.json Import cloudsoe prototype 2021-06-28 17:47:05 +10:00
arm-cloudsoe-image.json Update WDACR policy name #43 2022-02-12 08:29:47 +11:00
arm-cloudsoe-la-solutions.json Remove collection of whole logs 2022-01-30 15:13:16 +11:00
arm-cloudsoe-policy-baseline.json Fixes issue #47 2022-02-12 12:48:34 +11:00
arm-cloudsoe-workbook.json Update sample workbook and ARM template 2022-02-05 14:58:07 +11:00
azureDeploy.json Set the subscription log workspace 2022-01-30 15:29:48 +11:00

README.md

CloudSOE Logo with a cloud and shield with a tick

Accelerating your IaaS deployments.

  • Windows Server 2022, 2019 and 2016 prototype
  • Infrastructure-as-Code
  • Get insights from your Azure, on-premises, and other cloud workloads

About this project

Welcome to the CloudSOE project - we're developing a community-driven, cloud-native, multi-platform Standard Operating Environment (SOE) for organisations that adopt Information Security Manual (ISM) guidelines when building information systems that use Virtual Machines.

The project uses a collection of cloud-native technologies to achieve desired outcomes for Azure (and in future, on-premises & multi-cloud) IaaS systems:

  • Azure Image Builder
  • Azure Policy & Guest Configuration
  • Azure Monitor
  • Azure Automation

The example code in this repository should be considered a functional prototype which you can learn from and apply in your own sandpit subscriptions.

Getting started

Please see getting started section of the docs for instructions on getting started

Roadmap

We hope that future development of the CloudSOE project will be community-driven. We can think of a number of enhancements that would improve the utility of the solution, such as:

  • Simplify the setup process
  • Test/build Azure Arc for on-premises and other cloud management
  • Add Linux support
  • Move to policy-based setting enforcement (i.e. not just audit)
  • ESLZ integration
  • Bicep Refactoring
  • Review and implement delta guidelines since November 2020 ISM

Contributing

This project welcomes contributions and suggestions!

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

Trademarks

This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines.

Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.