diff --git a/config/identity/CanadaESLZ-main/identity.parameters.json b/config/identity/CanadaESLZ-main/identity.parameters.json deleted file mode 100644 index 8c759443..00000000 --- a/config/identity/CanadaESLZ-main/identity.parameters.json +++ /dev/null @@ -1,170 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Owner Role", - "roleDefinitionId": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635", - "securityGroupObjectIds": [ - "3a4fa072-cc14-471d-aeac-49afdbde9f7a" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tbd", - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "automation", - "networking": "networking", - "networkWatcher": "NetworkWatcherRG", - "backupRecoveryVault": "backup", - "domainControllers": "DomainControllersRG", - "dnsResolver": "dns-resolverRG", - "dnsCondionalForwarders": "dns-CondionalForwardersRG", - "privateDnsZones": "pubsec-dns" - } - }, - "automation": { - "value": { - "name": "automation" - } - }, - "backupRecoveryVault": { - "value": { - "enabled": true, - "name": "backup-vault" - } - }, - "privateDnsZones": { - "value": { - "enabled": false, - "resourceGroupName": "pubsec-dns" - } - }, - - "privateDnsResolver": { - "value": { - "enabled": true, - "name": "dns-resolver", - "inboundEndpointName": "dns-resolver-Inbound", - "outboundEndpointName": "dns-resolver-Outbound" - } - }, - - "privateDnsResolverRuleset": { - "value": { - "enabled": true, - "name": "dns-resolver-ruleset", - "linkRuleSetToVnet": true, - "linkRuleSetToVnetName": "dns-resolver-vnet-link", - "forwardingRules": [ - { - "name": "default", - "domain": "dontMakeMeThink.local", - "state": "Enabled", - "targetDnsServers": [ - { - "ipAddress": "10.99.99.100" - }, - { - "ipAddress": "10.99.99.99" - } - ] - } - ] - } - }, - - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4" - } - }, - - "network": { - "value": { - "deployVnet": true, - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "id-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.15.0.0/24" - ], - "subnets": { - "domainControllers": { - "comments": "Identity Subnet for Domain Controllers and VM-Based DNS Servers", - "name": "DomainControllers", - "addressPrefix": "10.15.0.0/27" - }, - "dnsResolverInbound": { - "comments": "Azure DNS Resolver Inbound Requests subnet", - "name": "AzureDNSResolver-Inbound", - "addressPrefix": "10.15.0.32/27" - }, - "dnsResolverOutbound": { - "comments": "Azure DNS Resolver Outbound Requests subnet", - "name": "AzureDNSResolver-Outbound", - "addressPrefix": "10.15.0.64/27" - }, - "optional": [] - } - } - } - } - } \ No newline at end of file diff --git a/config/logging/CanadaESLZ-main/logging.parameters.json b/config/logging/CanadaESLZ-main/logging.parameters.json deleted file mode 100644 index 6fdddda9..00000000 --- a/config/logging/CanadaESLZ-main/logging.parameters.json +++ /dev/null @@ -1,128 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Contributor Role", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tbd" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "logAnalyticsResourceGroupName": { - "value": "pubsec-central-logging" - }, - "logAnalyticsWorkspaceName": { - "value": "log-analytics-workspace" - }, - "logAnalyticsRetentionInDays": { - "value": 730 - }, - "logAnalyticsAutomationAccountName": { - "value": "automation-account" - }, - "dataCollectionRule": { - "value": { - "enabled": true, - "name": "DCR-AzureMonitorLogs", - "windowsEventLogs": [ - { - "streams": [ - "Microsoft-Event" - ], - "xPathQueries": [ - "Application!*[System[(Level=1 or Level=2 or Level=3)]]", - "Security!*[System[(band(Keywords,13510798882111488))]]", - "System!*[System[(Level=1 or Level=2 or Level=3)]]" - ], - "name": "eventLogsDataSource" - } - ], - "syslog": [ - { - "streams": [ - "Microsoft-Syslog" - ], - "facilityNames": [ - "auth", - "authpriv", - "cron", - "daemon", - "mark", - "kern", - "local0", - "local1", - "local2", - "local3", - "local4", - "local5", - "local6", - "local7", - "lpr", - "mail", - "news", - "syslog", - "user", - "uucp" - ], - "logLevels": [ - "Warning", - "Error", - "Critical", - "Alert", - "Emergency" - ], - "name": "sysLogsDataSource" - } - ] - } - } - } -} \ No newline at end of file diff --git a/config/networking/CanadaESLZ-main/hub-azfw-policy/azure-firewall-policy.parameters.json b/config/networking/CanadaESLZ-main/hub-azfw-policy/azure-firewall-policy.parameters.json deleted file mode 100644 index 6bf1f18e..00000000 --- a/config/networking/CanadaESLZ-main/hub-azfw-policy/azure-firewall-policy.parameters.json +++ /dev/null @@ -1,22 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroupName": { - "value": "pubsec-azure-firewall-policy" - }, - "policyName": { - "value": "pubsecAzureFirewallPolicy" - } - } -} \ No newline at end of file diff --git a/config/networking/CanadaESLZ-main/hub-azfw/hub-network.parameters.json b/config/networking/CanadaESLZ-main/hub-azfw/hub-network.parameters.json deleted file mode 100644 index c74a8ffa..00000000 --- a/config/networking/CanadaESLZ-main/hub-azfw/hub-network.parameters.json +++ /dev/null @@ -1,210 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Contributor Role", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tbd" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "privateDnsZones": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-dns" - } - }, - "ddosStandard": { - "value": { - "enabled": false, - "resourceGroupName": "pubsec-ddos", - "planName": "ddos-plan" - } - }, - "publicAccessZone": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-public-access-zone" - } - }, - "managementRestrictedZone": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-management-restricted-zone", - "network": { - "name": "management-restricted-vnet", - "addressPrefixes": [ - "10.18.4.0/22" - ], - "subnets": [ - { - "comments": "Management (Access Zone) Subnet", - "name": "MazSubnet", - "addressPrefix": "10.18.4.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Infrastructure Services (Restricted Zone) Subnet", - "name": "InfSubnet", - "addressPrefix": "10.18.4.128/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Security Services (Restricted Zone) Subnet", - "name": "SecSubnet", - "addressPrefix": "10.18.5.0/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Logging Services (Restricted Zone) Subnet", - "name": "LogSubnet", - "addressPrefix": "10.18.5.64/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Core Management Interfaces (Restricted Zone) Subnet", - "name": "MgmtSubnet", - "addressPrefix": "10.18.5.128/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - } - ] - } - } - }, - "hub": { - "value": { - "resourceGroupName": "pubsec-hub-networking", - "bastion": { - "enabled": true, - "name": "bastion", - "sku": "Standard", - "scaleUnits": 2 - }, - "azureFirewall": { - "name": "pubsecAzureFirewall", - "availabilityZones": [ - "1", - "2", - "3" - ], - "forcedTunnelingEnabled": false, - "forcedTunnelingNextHop": "10.17.1.4" - }, - "network": { - "name": "hub-vnet", - "addressPrefixes": [ - "10.18.0.0/22", - "100.60.0.0/16" - ], - "addressPrefixBastion": "192.168.0.0/16", - "subnets": { - "gateway": { - "comments": "Gateway Subnet used for VPN and/or Express Route connectivity", - "name": "GatewaySubnet", - "addressPrefix": "10.18.0.0/27" - }, - "firewall": { - "comments": "Azure Firewall", - "name": "AzureFirewallSubnet", - "addressPrefix": "10.18.1.0/24" - }, - "firewallManagement": { - "comments": "Azure Firewall Management", - "name": "AzureFirewallManagementSubnet", - "addressPrefix": "10.18.2.0/26" - }, - "bastion": { - "comments": "Azure Bastion", - "name": "AzureBastionSubnet", - "addressPrefix": "192.168.0.0/24" - }, - "publicAccess": { - "comments": "Public Access Zone (Application Gateway)", - "name": "PAZSubnet", - "addressPrefix": "100.60.1.0/24" - }, - "optional": [] - } - } - } - }, - "networkWatcher": { - "value": { - "resourceGroupName": "NetworkWatcherRG" - } - } - } -} \ No newline at end of file diff --git a/config/networking/CanadaESLZ-main/hub-nva/hub-network.parameters.json b/config/networking/CanadaESLZ-main/hub-nva/hub-network.parameters.json deleted file mode 100644 index 964a8f9d..00000000 --- a/config/networking/CanadaESLZ-main/hub-nva/hub-network.parameters.json +++ /dev/null @@ -1,297 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Contributor Role", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tbd" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "privateDnsZones": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-dns" - } - }, - "ddosStandard": { - "value": { - "enabled": false, - "resourceGroupName": "pubsec-ddos", - "planName": "ddos-plan" - } - }, - "publicAccessZone": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-public-access-zone" - } - }, - "managementRestrictedZone": { - "value": { - "enabled": true, - "resourceGroupName": "pubsec-management-restricted-zone", - "network": { - "name": "management-restricted-vnet", - "addressPrefixes": [ - "10.18.4.0/22" - ], - "subnets": [ - { - "comments": "Management (Access Zone) Subnet", - "name": "MazSubnet", - "addressPrefix": "10.18.4.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Infrastructure Services (Restricted Zone) Subnet", - "name": "InfSubnet", - "addressPrefix": "10.18.4.128/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Security Services (Restricted Zone) Subnet", - "name": "SecSubnet", - "addressPrefix": "10.18.5.0/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Logging Services (Restricted Zone) Subnet", - "name": "LogSubnet", - "addressPrefix": "10.18.5.64/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Core Management Interfaces (Restricted Zone) Subnet", - "name": "MgmtSubnet", - "addressPrefix": "10.18.5.128/26", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - } - ] - } - } - }, - "hub": { - "value": { - "resourceGroupName": "pubsec-hub-networking", - "bastion": { - "enabled": true, - "name": "bastion", - "sku": "Standard", - "scaleUnits": 2 - }, - "network": { - "name": "hub-vnet", - "addressPrefixes": [ - "10.18.0.0/22", - "100.60.0.0/16" - ], - "addressPrefixBastion": "192.168.0.0/16", - "subnets": { - "gateway": { - "comments": "Gateway Subnet used for VPN and/or Express Route connectivity", - "name": "GatewaySubnet", - "addressPrefix": "10.18.1.0/27" - }, - "bastion": { - "comments": "Azure Bastion", - "name": "AzureBastionSubnet", - "addressPrefix": "192.168.0.0/24" - }, - "public": { - "comments": "Public Subnet Name (External Facing (Internet/Ground))", - "name": "PublicSubnet", - "addressPrefix": "100.60.0.0/24" - }, - "publicAccessZone": { - "comments": "Public Access Zone (i.e. Application Gateway)", - "name": "PAZSubnet", - "addressPrefix": "100.60.1.0/24" - }, - "externalAccessNetwork": { - "comments": "External Access Network", - "name": "EanSubnet", - "addressPrefix": "10.18.0.0/27" - }, - "nonProductionInternal": { - "comments": "Non-production Internal for firewall appliances (Internal Facing Non-Production Traffic)", - "name": "DevIntSubnet", - "addressPrefix": "10.18.0.64/27" - }, - "productionInternal": { - "comments": "Production Internal for firewall appliances (Internal Facing Production Traffic)", - "name": "PrdIntSubnet", - "addressPrefix": "10.18.0.32/27" - }, - "managementRestrictedZoneInternal": { - "comments": "Management Restricted Zone", - "name": "MrzSubnet", - "addressPrefix": "10.18.0.96/27" - }, - "highAvailability": { - "comments": "High Availability (Firewall to Firewall heartbeat)", - "name": "HASubnet", - "addressPrefix": "10.18.0.128/28" - }, - "optional": [] - } - }, - "nvaFirewall": { - "image": { - "publisher": "fortinet", - "offer": "fortinet_fortigate-vm_v5", - "sku": "fortinet_fg-vm", - "version": "6.4.5", - "plan": "fortinet_fg-vm" - }, - "nonProduction": { - "internalLoadBalancer": { - "name": "pubsecDevFWILB", - "tcpProbe": { - "name": "lbprobe", - "port": 8008, - "intervalInSeconds": 5, - "numberOfProbes": 2 - }, - "internalIp": "10.18.0.68", - "externalIp": "100.60.0.7" - }, - "deployVirtualMachines": false, - "virtualMachines": [ - { - "name": "pubsecDevFW1", - "vmSku": "Standard_D8s_v4", - "internalIp": "10.18.0.69", - "externalIp": "100.60.0.8", - "mrzInternalIp": "10.18.0.104", - "highAvailabilityIp": "10.18.0.134", - "availabilityZone": "2" - }, - { - "name": "pubsecDevFW2", - "vmSku": "Standard_D8s_v4", - "internalIp": "10.18.0.70", - "externalIp": "100.60.0.9", - "mrzInternalIp": "10.18.0.105", - "highAvailabilityIp": "10.18.0.135", - "availabilityZone": "3" - } - ] - }, - "production": { - "internalLoadBalancer": { - "name": "pubsecProdFWILB", - "tcpProbe": { - "name": "lbprobe", - "port": 8008, - "intervalInSeconds": 5, - "numberOfProbes": 2 - }, - "internalIp": "10.18.0.36", - "externalIp": "100.60.0.4" - }, - "deployVirtualMachines": false, - "virtualMachines": [ - { - "name": "pubsecProdFW1", - "vmSku": "Standard_F8s_v2", - "internalIp": "10.18.0.37", - "externalIp": "100.60.0.5", - "mrzInternalIp": "10.18.0.101", - "highAvailabilityIp": "10.18.0.132", - "availabilityZone": "1" - }, - { - "name": "pubsecProdFW2", - "vmSku": "Standard_F8s_v2", - "internalIp": "10.18.0.38", - "externalIp": "100.60.0.6", - "mrzInternalIp": "10.18.0.102", - "highAvailabilityIp": "10.18.0.133", - "availabilityZone": "2" - } - ] - } - } - } - }, - "networkWatcher": { - "value": { - "resourceGroupName": "NetworkWatcherRG" - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/4f9f8765-911a-4a6d-af60-4bc0473268c0_generic-subscription_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/4f9f8765-911a-4a6d-af60-4bc0473268c0_generic-subscription_canadacentral.json deleted file mode 100644 index 28484d8f..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/4f9f8765-911a-4a6d-af60-4bc0473268c0_generic-subscription_canadacentral.json +++ /dev/null @@ -1,171 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "location": { - "value": "canadacentral" - }, - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - }, - { - "comments": "Custom Role: Landing Zone Application Owner", - "roleDefinitionId": "b4c87314-c1a1-5320-9c43-779585186bcc", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "automation", - "networking": "networking", - "networkWatcher": "NetworkWatcherRG", - "backupRecoveryVault": "backup" - } - }, - "automation": { - "value": { - "name": "automation" - } - }, - "backupRecoveryVault": { - "value": { - "enabled": true, - "name": "backup-vault" - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4" - } - }, - "network": { - "value": { - "deployVnet": true, - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.2.0.0/16" - ], - "subnets": [ - { - "comments": "App Management Zone (OZ)", - "name": "appManagement", - "addressPrefix": "10.2.1.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Presentation Zone (PAZ)", - "name": "web", - "addressPrefix": "10.2.2.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Application Zone (RZ)", - "name": "app", - "addressPrefix": "10.2.3.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Data Zone (HRZ)", - "name": "data", - "addressPrefix": "10.2.4.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "App Service", - "name": "appservice", - "addressPrefix": "10.2.5.0/25", - "nsg": { - "enabled": false - }, - "udr": { - "enabled": false - }, - "delegations": { - "serviceName": "Microsoft.Web/serverFarms" - } - } - ] - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/82f7705e-3386-427b-95b7-cbed91ab29a7_healthcare_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/82f7705e-3386-427b-95b7-cbed91ab29a7_healthcare_canadacentral.json deleted file mode 100644 index c2f72de0..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/82f7705e-3386-427b-95b7-cbed91ab29a7_healthcare_canadacentral.json +++ /dev/null @@ -1,179 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - }, - { - "comments": "Custom Role: Landing Zone Application Owner", - "roleDefinitionId": "b4c87314-c1a1-5320-9c43-779585186bcc", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "health-automation", - "compute": "health-compute", - "monitor": "health-monitor", - "networking": "health-network", - "networkWatcher": "NetworkWatcherRG", - "security": "health-security", - "storage": "health-storage" - } - }, - "useCMK": { - "value": true - }, - "keyVault": { - "value": { - "secretExpiryInDays": 3650 - } - }, - "automation": { - "value": { - "name": "automation" - } - }, - "sqldb": { - "value": { - "enabled": true, - "sqlAuthenticationUsername": "azadmin", - "aadAuthenticationOnly": false - } - }, - "synapse": { - "value": { - "aadAuthenticationOnly": true, - "aadLoginName": "az.admins", - "aadLoginObjectID": "e0357d81-55d8-44e9-9d9c-ab09dc710785", - "aadLoginType": "Group" - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4", - "privateDnsManagedByHub": true, - "privateDnsManagedByHubSubscriptionId": "ed7f4eed-9010-4227-b115-2a5e37728f27", - "privateDnsManagedByHubResourceGroupName": "pubsec-dns" - } - }, - "network": { - "value": { - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "health-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.5.0.0/16" - ], - "subnets": { - "databricksPublic": { - "comments": "Databricks Public Delegated Subnet", - "name": "databrickspublic", - "addressPrefix": "10.5.5.0/25" - }, - "databricksPrivate": { - "comments": "Databricks Private Delegated Subnet", - "name": "databricksprivate", - "addressPrefix": "10.5.6.0/25" - }, - "privateEndpoints": { - "comments": "Private Endpoints Subnet", - "name": "privateendpoints", - "addressPrefix": "10.5.7.0/25" - }, - "web": { - "comments": "Azure Web App Delegated Subnet", - "name": "webapp", - "addressPrefix": "10.5.8.0/25" - }, - "optional": [ - { - "comments": "Optional Subnet 1", - "name": "virtualMachines", - "addressPrefix": "10.5.9.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Optional Subnet 2 with delegation for NetApp Volumes", - "name": "NetappVolumes", - "addressPrefix": "10.5.10.0/25", - "nsg": { - "enabled": false - }, - "udr": { - "enabled": false - }, - "delegations": { - "serviceName": "Microsoft.NetApp/volumes" - } - } - ] - } - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/8c6e48a4-4c73-4a1f-9f95-9447804f2c98_machinelearning_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/8c6e48a4-4c73-4a1f-9f95-9447804f2c98_machinelearning_canadacentral.json deleted file mode 100644 index d86daddb..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/8c6e48a4-4c73-4a1f-9f95-9447804f2c98_machinelearning_canadacentral.json +++ /dev/null @@ -1,207 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "azmlsqlauth-automation", - "compute": "azmlsqlauth-compute", - "monitor": "azmlsqlauth-monitor", - "networking": "azmlsqlauth-networking", - "networkWatcher": "NetworkWatcherRG", - "security": "azmlsqlauth-security", - "storage": "azmlsqlauth-storage" - } - }, - "useCMK": { - "value": false - }, - "automation": { - "value": { - "name": "automation" - } - }, - "keyVault": { - "value": { - "secretExpiryInDays": 3650 - } - }, - "aks": { - "value": { - "version": "1.25.5", - "enabled": true, - "networkPlugin": "kubenet", - "networkPolicy": "calico", - "podCidr": "11.0.0.0/16", - "serviceCidr": "20.0.0.0/16", - "dnsServiceIP": "20.0.0.10", - "dockerBridgeCidr": "30.0.0.1/16" - } - }, - "appServiceLinuxContainer": { - "value": { - "enabled": true, - "skuName": "P1V2", - "skuTier": "Premium", - "enablePrivateEndpoint": true - } - }, - "sqldb": { - "value": { - "enabled": true, - "sqlAuthenticationUsername": "azadmin", - "aadAuthenticationOnly": false, - "aadLoginName": "DBA Security Group", - "aadLoginObjectID": "e0357d81-55d8-44e9-9d9c-ab09dc710785", - "aadLoginType": "Group" - } - }, - "sqlmi": { - "value": { - "enabled": false - } - }, - "aml": { - "value": { - "enableHbiWorkspace": false - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4", - "privateDnsManagedByHub": true, - "privateDnsManagedByHubSubscriptionId": "ed7f4eed-9010-4227-b115-2a5e37728f27", - "privateDnsManagedByHubResourceGroupName": "pubsec-dns" - } - }, - "network": { - "value": { - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "azmlsqlauth-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.6.0.0/16" - ], - "subnets": { - "sqlmi": { - "comments": "SQL Managed Instances Delegated Subnet", - "name": "sqlmi", - "addressPrefix": "10.6.5.0/25" - }, - "databricksPublic": { - "comments": "Databricks Public Delegated Subnet", - "name": "databrickspublic", - "addressPrefix": "10.6.6.0/25" - }, - "databricksPrivate": { - "comments": "Databricks Private Delegated Subnet", - "name": "databricksprivate", - "addressPrefix": "10.6.7.0/25" - }, - "privateEndpoints": { - "comments": "Private Endpoints Subnet", - "name": "privateendpoints", - "addressPrefix": "10.6.8.0/25" - }, - "aks": { - "comments": "AKS Subnet", - "name": "aks", - "addressPrefix": "10.6.9.0/25" - }, - "appService": { - "comments": "App Service Subnet", - "name": "appService", - "addressPrefix": "10.6.10.0/25" - }, - "optional": [ - { - "comments": "Optional Subnet 1", - "name": "virtualMachines", - "addressPrefix": "10.6.11.0/25", - "nsg": { - "enabled": true - }, - "udr": { - "enabled": true - } - }, - { - "comments": "Optional Subnet 2 with delegation for NetApp Volumes", - "name": "NetappVolumes", - "addressPrefix": "10.6.12.0/25", - "nsg": { - "enabled": false - }, - "udr": { - "enabled": false - }, - "delegations": { - "serviceName": "Microsoft.NetApp/volumes" - } - } - ] - } - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/ec6c5689-db04-4f1e-b76d-834a51dd0e27_machinelearning_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/ec6c5689-db04-4f1e-b76d-834a51dd0e27_machinelearning_canadacentral.json deleted file mode 100644 index 7860236e..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/ec6c5689-db04-4f1e-b76d-834a51dd0e27_machinelearning_canadacentral.json +++ /dev/null @@ -1,185 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - }, - { - "comments": "Custom Role: Landing Zone Application Owner", - "roleDefinitionId": "b4c87314-c1a1-5320-9c43-779585186bcc", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "azmlcmk-automation", - "compute": "azmlcmk-compute", - "monitor": "azmlcmk-monitor", - "networking": "azmlcmk-networking", - "networkWatcher": "NetworkWatcherRG", - "security": "azmlcmk-security", - "storage": "azmlcmk-storage" - } - }, - "useCMK": { - "value": true - }, - "automation": { - "value": { - "name": "automation" - } - }, - "keyVault": { - "value": { - "secretExpiryInDays": 3650 - } - }, - "aks": { - "value": { - "version": "1.25.5", - "enabled": true, - "networkPlugin": "kubenet", - "networkPolicy": "calico", - "podCidr": "11.0.0.0/16", - "serviceCidr": "20.0.0.0/16", - "dnsServiceIP": "20.0.0.10", - "dockerBridgeCidr": "30.0.0.1/16" - } - }, - "appServiceLinuxContainer": { - "value": { - "enabled": true, - "skuName": "P1V2", - "skuTier": "Premium", - "enablePrivateEndpoint": true - } - }, - "sqldb": { - "value": { - "enabled": true, - "sqlAuthenticationUsername": "azadmin", - "aadAuthenticationOnly": false - } - }, - "sqlmi": { - "value": { - "enabled": false - } - }, - "aml": { - "value": { - "enableHbiWorkspace": false - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4", - "privateDnsManagedByHub": true, - "privateDnsManagedByHubSubscriptionId": "ed7f4eed-9010-4227-b115-2a5e37728f27", - "privateDnsManagedByHubResourceGroupName": "pubsec-dns" - } - }, - "network": { - "value": { - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "azmlcmk-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.1.0.0/16" - ], - "subnets": { - "sqlmi": { - "comments": "SQL Managed Instances Delegated Subnet", - "name": "sqlmi", - "addressPrefix": "10.1.5.0/25" - }, - "databricksPublic": { - "comments": "Databricks Public Delegated Subnet", - "name": "databrickspublic", - "addressPrefix": "10.1.6.0/25" - }, - "databricksPrivate": { - "comments": "Databricks Private Delegated Subnet", - "name": "databricksprivate", - "addressPrefix": "10.1.7.0/25" - }, - "privateEndpoints": { - "comments": "Private Endpoints Subnet", - "name": "privateendpoints", - "addressPrefix": "10.1.8.0/25" - }, - "aks": { - "comments": "AKS Subnet", - "name": "aks", - "addressPrefix": "10.1.9.0/25" - }, - "appService": { - "comments": "App Service Subnet", - "name": "appService", - "addressPrefix": "10.1.10.0/25" - }, - "optional": [] - } - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f08c3057-1713-4a6f-b7e6-0df355b60c30_machinelearning_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f08c3057-1713-4a6f-b7e6-0df355b60c30_machinelearning_canadacentral.json deleted file mode 100644 index f1d4ffd8..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f08c3057-1713-4a6f-b7e6-0df355b60c30_machinelearning_canadacentral.json +++ /dev/null @@ -1,185 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - }, - { - "comments": "Custom Role: Landing Zone Application Owner", - "roleDefinitionId": "b4c87314-c1a1-5320-9c43-779585186bcc", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "azmlnocmk-automation", - "compute": "azmlnocmk-compute", - "monitor": "azmlnocmk-monitor", - "networking": "azmlnocmk-networking", - "networkWatcher": "NetworkWatcherRG", - "security": "azmlnocmk-security", - "storage": "azmlnocmk-storage" - } - }, - "useCMK": { - "value": false - }, - "automation": { - "value": { - "name": "automation" - } - }, - "keyVault": { - "value": { - "secretExpiryInDays": 3650 - } - }, - "aks": { - "value": { - "version": "1.25.5", - "enabled": true, - "networkPlugin": "kubenet", - "networkPolicy": "calico", - "podCidr": "11.0.0.0/16", - "serviceCidr": "20.0.0.0/16", - "dnsServiceIP": "20.0.0.10", - "dockerBridgeCidr": "30.0.0.1/16" - } - }, - "appServiceLinuxContainer": { - "value": { - "enabled": true, - "skuName": "P1V2", - "skuTier": "Premium", - "enablePrivateEndpoint": true - } - }, - "sqldb": { - "value": { - "enabled": true, - "sqlAuthenticationUsername": "azadmin", - "aadAuthenticationOnly": false - } - }, - "sqlmi": { - "value": { - "enabled": false - } - }, - "aml": { - "value": { - "enableHbiWorkspace": false - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4", - "privateDnsManagedByHub": true, - "privateDnsManagedByHubSubscriptionId": "ed7f4eed-9010-4227-b115-2a5e37728f27", - "privateDnsManagedByHubResourceGroupName": "pubsec-dns" - } - }, - "network": { - "value": { - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "azmlnocmk-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.3.0.0/16" - ], - "subnets": { - "sqlmi": { - "comments": "SQL Managed Instances Delegated Subnet", - "name": "sqlmi", - "addressPrefix": "10.3.5.0/25" - }, - "databricksPublic": { - "comments": "Databricks Public Delegated Subnet", - "name": "databrickspublic", - "addressPrefix": "10.3.6.0/25" - }, - "databricksPrivate": { - "comments": "Databricks Private Delegated Subnet", - "name": "databricksprivate", - "addressPrefix": "10.3.7.0/25" - }, - "privateEndpoints": { - "comments": "Private Endpoints Subnet", - "name": "privateendpoints", - "addressPrefix": "10.3.8.0/25" - }, - "aks": { - "comments": "AKS Subnet", - "name": "aks", - "addressPrefix": "10.3.9.0/25" - }, - "appService": { - "comments": "App Service Subnet", - "name": "appService", - "addressPrefix": "10.3.10.0/25" - }, - "optional": [] - } - } - } - } -} \ No newline at end of file diff --git a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f459218a-e8bb-49c9-b768-ee6828a144aa_machinelearning_canadacentral.json b/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f459218a-e8bb-49c9-b768-ee6828a144aa_machinelearning_canadacentral.json deleted file mode 100644 index dfc39874..00000000 --- a/config/subscriptions/CanadaESLZ-main/pubsec/LandingZones/DevTest/f459218a-e8bb-49c9-b768-ee6828a144aa_machinelearning_canadacentral.json +++ /dev/null @@ -1,186 +0,0 @@ -{ - "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#", - "contentVersion": "1.0.0.0", - "parameters": { - "serviceHealthAlerts": { - "value": { - "resourceGroupName": "service-health", - "incidentTypes": [ "Incident", "Security" ], - "regions": [ "Global", "Canada East", "Canada Central" ], - "receivers": { - "app": [ "alzcanadapubsec@microsoft.com" ], - "email": [ "alzcanadapubsec@microsoft.com" ], - "sms": [ { "countryCode": "1", "phoneNumber": "6045555555" } ], - "voice": [ { "countryCode": "1", "phoneNumber": "6045555555" } ] - }, - "actionGroupName": "Service health action group", - "actionGroupShortName": "health-alert", - "alertRuleName": "Incidents and Security", - "alertRuleDescription": "Service Health: Incidents and Security" - } - }, - "securityCenter": { - "value": { - "email": "alzcanadapubsec@microsoft.com", - "phone": "6045555555" - } - }, - "subscriptionRoleAssignments": { - "value": [ - { - "comments": "Built-in Role: Contributor", - "roleDefinitionId": "b24988ac-6180-42a0-ab88-20f7382dd24c", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - }, - { - "comments": "Custom Role: Landing Zone Application Owner", - "roleDefinitionId": "b4c87314-c1a1-5320-9c43-779585186bcc", - "securityGroupObjectIds": [ - "38f33f7e-a471-4630-8ce9-c6653495a2ee" - ] - } - ] - }, - "subscriptionBudget": { - "value": { - "createBudget": false - } - }, - "subscriptionTags": { - "value": { - "ISSO": "isso-tag" - } - }, - "resourceTags": { - "value": { - "ClientOrganization": "client-organization-tag", - "CostCenter": "cost-center-tag", - "DataSensitivity": "data-sensitivity-tag", - "ProjectContact": "project-contact-tag", - "ProjectName": "project-name-tag", - "TechnicalContact": "technical-contact-tag" - } - }, - "resourceGroups": { - "value": { - "automation": "azmlcmksqlmi-automation", - "compute": "azmlcmksqlmi-compute", - "monitor": "azmlcmksqlmi-monitor", - "networking": "azmlcmksqlmi-networking", - "networkWatcher": "NetworkWatcherRG", - "security": "azmlcmksqlmi-security", - "storage": "azmlcmksqlmi-storage" - } - }, - "useCMK": { - "value": true - }, - "automation": { - "value": { - "name": "automation" - } - }, - "keyVault": { - "value": { - "secretExpiryInDays": 3650 - } - }, - "aks": { - "value": { - "version": "1.25.5", - "enabled": true, - "networkPlugin": "kubenet", - "networkPolicy": "calico", - "podCidr": "11.0.0.0/16", - "serviceCidr": "20.0.0.0/16", - "dnsServiceIP": "20.0.0.10", - "dockerBridgeCidr": "30.0.0.1/16" - } - }, - "appServiceLinuxContainer": { - "value": { - "enabled": true, - "skuName": "P1V2", - "skuTier": "Premium", - "enablePrivateEndpoint": true - } - }, - "sqldb": { - "value": { - "enabled": true, - "sqlAuthenticationUsername": "azadmin", - "aadAuthenticationOnly": false - } - }, - "sqlmi": { - "value": { - "enabled": true, - "username": "azadmin" - } - }, - "aml": { - "value": { - "enableHbiWorkspace": false - } - }, - "hubNetwork": { - "value": { - "virtualNetworkId": "/subscriptions/ed7f4eed-9010-4227-b115-2a5e37728f27/resourceGroups/pubsec-hub-networking/providers/Microsoft.Network/virtualNetworks/hub-vnet", - "rfc1918IPRange": "10.18.0.0/22", - "rfc6598IPRange": "100.60.0.0/16", - "egressVirtualApplianceIp": "10.18.1.4", - "privateDnsManagedByHub": true, - "privateDnsManagedByHubSubscriptionId": "ed7f4eed-9010-4227-b115-2a5e37728f27", - "privateDnsManagedByHubResourceGroupName": "pubsec-dns" - } - }, - "network": { - "value": { - "peerToHubVirtualNetwork": true, - "useRemoteGateway": false, - "name": "azmlcmksqlmi-vnet", - "dnsServers": [ - "10.18.1.4" - ], - "addressPrefixes": [ - "10.4.0.0/16" - ], - "subnets": { - "sqlmi": { - "comments": "SQL Managed Instances Delegated Subnet", - "name": "sqlmi", - "addressPrefix": "10.4.5.0/25" - }, - "databricksPublic": { - "comments": "Databricks Public Delegated Subnet", - "name": "databrickspublic", - "addressPrefix": "10.4.6.0/25" - }, - "databricksPrivate": { - "comments": "Databricks Private Delegated Subnet", - "name": "databricksprivate", - "addressPrefix": "10.4.7.0/25" - }, - "privateEndpoints": { - "comments": "Private Endpoints Subnet", - "name": "privateendpoints", - "addressPrefix": "10.4.8.0/25" - }, - "aks": { - "comments": "AKS Subnet", - "name": "aks", - "addressPrefix": "10.4.9.0/25" - }, - "appService": { - "comments": "App Service Subnet", - "name": "appService", - "addressPrefix": "10.4.10.0/25" - }, - "optional": [] - } - } - } - } -} \ No newline at end of file diff --git a/config/variables/CanadaESLZ-main.yml b/config/variables/CanadaESLZ-main.yml deleted file mode 100644 index 2e020d24..00000000 --- a/config/variables/CanadaESLZ-main.yml +++ /dev/null @@ -1,86 +0,0 @@ -# ---------------------------------------------------------------------------------- -# Copyright (c) Microsoft Corporation. -# Licensed under the MIT license. -# -# THIS CODE AND INFORMATION ARE PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND, -# EITHER EXPRESSED OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES -# OF MERCHANTABILITY AND/OR FITNESS FOR A PARTICULAR PURPOSE. -# ---------------------------------------------------------------------------------- - -# Environment YAML files can be used to supplement -# the variables specified in 'config/variables/common.yml'. You can: -# * Override existing common-vars.yml variable value settings, and -# * Create new variable values not present in common-vars.yml -# -# The naming convention for these YAML files is: -# {organization}-{branch}.yml -# -# where {organization} is the organization variable from the -# common.yml file -# and {branch} is the Azure Repos branch name used by the -# currently executing pipeline. - -variables: - deploymentRegion: canadacentral - - # Management Groups - var-managementgroup-hierarchy: > - { - "name": "Tenant Root Group", - "id": "343ddfdb-bef5-46d9-99cf-ed67d5948783", - "children": [ - { - "name": "Azure Landing Zones for Canadian Public Sector", - "id": "pubsec", - "children": [ - { - "name": "Platform", "id": "pubsecPlatform", - "children": [ - { "name": "Identity", "id": "pubsecPlatformIdentity", "children": [] }, - { "name": "Connectivity", "id": "pubsecPlatformConnectivity", "children": [] }, - { "name": "Management", "id": "pubsecPlatformManagement", "children": [] } - ] - }, - { - "name": "LandingZones", "id": "pubsecLandingZones", - "children": [ - { "name": "DevTest", "id": "pubsecLandingZonesDevTest", "children": [] }, - { "name": "QA", "id": "pubsecLandingZonesQA", "children": [] }, - { "name": "Prod", "id": "pubsecLandingZonesProd", "children": [] } - ] - }, - { - "name": "Sandbox", "id": "pubsecSandbox", - "children": [] - } - ] - } - ] - } - - # Logging - var-logging-region: canadacentral - var-logging-managementGroupId: pubsecPlatformManagement - var-logging-subscriptionId: bc0a4f9f-07fa-4284-b1bd-fbad38578d3a - var-logging-configurationFileName: logging.parameters.json - - ## This parameter is only used for HIPAA/HITRUST Policy Assignment - var-logging-diagnosticSettingsforNetworkSecurityGroupsStoragePrefix: pubsecnsg - - # Platform Identity - var-identity-region: canadacentral - var-identity-managementGroupId: pubsecPlatformIdentity - var-identity-subscriptionId: b357bf7b-3328-4d21-b94b-4bfa84af97b1 - var-identity-configurationFileName: identity.parameters.json - - # Hub Networking - var-hubnetwork-region: canadacentral - var-hubnetwork-managementGroupId: pubsecPlatformConnectivity - var-hubnetwork-subscriptionId: ed7f4eed-9010-4227-b115-2a5e37728f27 - - ## Hub Network configuration using Azure Firewall - required when Azure Firewall is used - var-hubnetwork-azfwPolicy-configurationFileName: hub-azfw-policy/azure-firewall-policy.parameters.json - var-hubnetwork-azfw-configurationFileName: hub-azfw/hub-network.parameters.json - - ## Hub Network configuration using Network Virtual Appliance (NVA) - required when Network Virtual Appliance (NVA) like Fortigate Firewalls are used - var-hubnetwork-nva-configurationFileName: hub-nva/hub-network.parameters.json \ No newline at end of file