Replace -assignIdentity parameters with -identityType 'SystemAssigned' Fix data collection rule for Windows and Linux monitoring
Add policy to enforce Microsoft Defender for Endpoint
Update Security Center policies to include support for extended resources (containers, AKS, DBaaS, ...). Add runbook to grant role to AXIOM app in incident response (see wiki for additional details). The runbook is present but not deployed automatically outside of DIGIT's tenant. Update policies for Azure Firewall, Azure batch accounts, Azure domain services, Azure event hubs and Azure service bus.
Removed optionnal parameter "sku" for log analytics workspace, fallback to default sku "pergb2018"
Add support for multi-region monitoring
Fix policy to deploy monitoring agents on virtual machines
Complete refactor of the code base
Refactor 'Sync-AzLandingZone' cmdlet
Update diagnostic settings for Azure AD Fix typo in "setup-policy" script
Fix typo in "Test-AzLandingZone" cmdlet
Fix typo in Azure policy name
Add policy to automatically set Azure Hybrid Benefit
Add support for Azure Monitoring Agent and Multi-homing for VM logs
Refactor "Get-AzLandingZone" cmdlet and "Test-AzLandingZone" cmdlet to be compliant with the latest version of the landing zone
Refactor "auto-update" feature to automatically create the RunAs account associated with the automation account Updated auto-update feature to use Az module instead of AzureRM which will be out of support in coming month
Add missing support for remediation in automation account Add missing AzureRM.PolicyInsights module in automation account
Create folder structure to automate hunting rules creation by SOC team Automate the deployment of all analytics rules
Move all private powershell scripts to /private/PowerShell for sake of clarity for contributors update auto-update feature to avoid bug creating multiple service principals
Add Sentinel connector for Office365 Update Connector for Azure Security Center (now Azure Defender) and Azure AD (Information Protection)
Build pipeline now uses a custom token to access Azure devops repository Update of the auto-update feature, this now includes an update of the Azure automation modules to the latest version
Add deployment pipeline
Enable usage of already existing management group refactor "Test-AzLandingZone" cmdlet to identify unique user
Refactor feature "AzAutomation" (Landing Zone auto-update)
First stable release on Github:
- support for multi-subscription using management groups
- support for Azure resources diagnostic settings using Azure policies and Azure policy definitions
- support for Azure subscription diagnostic settings, Azure security center and Azure tenant using rest-api
- support for Azure lighthouse (delegated access) and Azure Sentinel for DIGIT-S
- support for multiple log collectors (Azure storage account, Azure event-hub, Azure log analytics workspace)
Deployment pipeline using GitHub actions, package repository on Azure DevOps