Azure · oZakari · Dec 4, 2024 · Nov 13, 2024 · Nov 15, 2024 · Nov 15, 2024
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -7,3 +7,6 @@ updates:
     labels:
       - "Type: Hygiene :broom:"
       - "Needs: Attention :wave:"
+    commit-message:
+      prefix: 'build: '
+
diff --git a/accelerator/.config/ALZ-Powershell-Auto.config.json b/accelerator/.config/ALZ-Powershell-Auto.config.json
@@ -304,6 +304,10 @@
               "Name": "parVirtualWanHubs.value[0].parHubLocation",
               "Destination": "Parameters"
             },
+            {
+              "Name": "parPrivateDnsZonesLocation.value",
+              "Destination": "Parameters"
+            },
             {
               "Name": "LOCATION",
               "Destination": "Environment"

diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep
diff --git a/...licy/assignments/alzDefaults/generateddocs/alzDefaultPolicyAssignments.bicep.md b/...licy/assignments/alzDefaults/generateddocs/alzDefaultPolicyAssignments.bicep.md
@@ -26,6 +26,7 @@ parMsDefenderForCloudEmailSecurityContact | No       | Email address for Microso
 parDdosEnabled | No       | Enable/disable DDoS Network Protection. True enforces Enable-DDoS-VNET policy; false disables.
 parDdosProtectionPlanId | No       | Resource ID of the DDoS Protection Plan for Virtual Networks.
 parPrivateDnsResourceGroupId | No       | Resource ID of the Resource Group for Private DNS Zones. Empty to skip assigning the Deploy-Private-DNS-Zones policy.
+parPrivateDnsZonesLocation | No       | Location of Private DNS Zones.
 parPrivateDnsZonesNamesToAuditInCorp | No       | List of Private DNS Zones to audit under the Corp Management Group. This overwrites default values.
 parDisableAlzDefaultPolicies | No       | Disable all default ALZ policies.
 parDisableSlzDefaultPolicies | No       | Disable all default sovereign policies.
@@ -178,6 +179,12 @@ Resource ID of the DDoS Protection Plan for Virtual Networks.
 
 Resource ID of the Resource Group for Private DNS Zones. Empty to skip assigning the Deploy-Private-DNS-Zones policy.
 
+### parPrivateDnsZonesLocation
+
+![Parameter Setting](https://img.shields.io/badge/parameter-optional-green?style=flat-square)
+
+Location of Private DNS Zones.
+
 ### parPrivateDnsZonesNamesToAuditInCorp
 
 ![Parameter Setting](https://img.shields.io/badge/parameter-optional-green?style=flat-square)
@@ -307,6 +314,9 @@ Opt out of deployment telemetry.
         "parPrivateDnsResourceGroupId": {
             "value": ""
         },
+        "parPrivateDnsZonesLocation": {
+            "value": ""
+        },
         "parPrivateDnsZonesNamesToAuditInCorp": {
             "value": []
         },

diff --git a/...policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json b/...policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json
@@ -71,6 +71,9 @@
     "parPrivateDnsResourceGroupId": {
       "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001"
     },
+    "parPrivateDnsZonesLocation": {
+      "value": "eastus"
+    },
     "parPrivateDnsZonesNamesToAuditInCorp": {
       "value": []
     },

diff --git a/...policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json b/...policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
@@ -12,19 +12,19 @@
             "value": "eastus"
         },
         "parLogAnalyticsWorkspaceResourceId": {
-            "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics"
+            "value": "/subscriptions/69ac80fe-dbff-4971-9cba-9cb384486ba5/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics"
         },
         "parDataCollectionRuleVMInsightsResourceId": {
-        "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/alz-ama-vmi-dcr"
+        "value": "/subscriptions/69ac80fe-dbff-4971-9cba-9cb384486ba5/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/alz-ama-vmi-dcr"
         },
         "parDataCollectionRuleChangeTrackingResourceId": {
-          "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/alz-ama-ct-dcr"
+          "value": "/subscriptions/69ac80fe-dbff-4971-9cba-9cb384486ba5/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/alz-ama-ct-dcr"
         },
         "parDataCollectionRuleMDFCSQLResourceId": {
-          "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/ama-mdfcsql-default-dcr"
+          "value": "/subscriptions/69ac80fe-dbff-4971-9cba-9cb384486ba5/resourceGroups/alz-logging/providers/Microsoft.Insights/dataCollectionRules/ama-mdfcsql-default-dcr"
         },
         "parUserAssignedManagedIdentityResourceId": {
-          "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/Microsoft.ManagedIdentity/userAssignedIdentities/alz-umi-identity"
+          "value": "/subscriptions/69ac80fe-dbff-4971-9cba-9cb384486ba5/resourcegroups/alz-logging/providers/Microsoft.ManagedIdentity/userAssignedIdentities/alz-umi-identity"
         },
         "parLogAnalyticsWorkspaceLogRetentionInDays": {
             "value": "365"
@@ -37,6 +37,9 @@
         },
         "parTelemetryOptOut": {
             "value": false
+        },
+        "parPrivateDnsZonesLocation": {
+          "value": "eastus"
         }
     }
 }