From f4de35c1a27a67bc3b44ac28677c178e883fd9b3 Mon Sep 17 00:00:00 2001
From: Jesse Loudon <gitbao@outlook.com>
Date: Sun, 8 Aug 2021 21:17:13 +1000
Subject: [PATCH] update

---
 examples/default/README.md | 63 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 63 insertions(+)

diff --git a/examples/default/README.md b/examples/default/README.md
index e69de29..3c0e77b 100644
--- a/examples/default/README.md
+++ b/examples/default/README.md
@@ -0,0 +1,63 @@
+# Terraform AzureRM Policy Exemptions
+
+Leverges Terraform's [resource group template deployment](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/resource_group_template_deployment) for managing [policy exemptions](https://docs.microsoft.com/en-us/azure/templates/microsoft.authorization/policyexemptions).
+
+Learn more about [Azure Policy Exemptions](https://docs.microsoft.com/en-us/azure/governance/policy/concepts/exemption-structure)
+
+# Example Usage
+
+* Create 3 policy exemptions with only 'exemption1' referencing select policies to be exempted (via policyDefinitionReferenceIds).
+
+```hcl
+module "policy_exemptions" {
+  source = "../.."
+  policyExemptions = {
+    exemption1 = {
+      deploymentMode     = "Incremental"
+      name               = "exemption1"
+      displayName        = "exemption1 for Insert-Your-RG-Name1"
+      description        = "exemption1 waives compliance on an resource group"
+      resourceGroupName  = "Insert-Your-RG-Name1"
+      policyAssignmentId = "/providers/Microsoft.Management/managementGroups/production/providers/Microsoft.Authorization/policyAssignments/2f97de7d41f348529e23d8ae"
+      policyDefinitionReferenceIds = [
+        "installLogAnalyticsAgentOnVmMonitoring",
+        "installLogAnalyticsAgentOnVmssMonitoring",
+        "windowsDefenderExploitGuardMonitoring",
+        "useRbacRulesMonitoring"
+      ]
+      exemptionCategory = "Waiver"
+      expiresOn         = "2025-12-30"
+      metadata = {
+        "requestedBy" : "RG team",
+        "approvedBy" : "DrGovernance",
+        "approvedOn" : "2021-07-26",
+        "ticketRef" : "123456"
+      }
+    },
+    exemption2 = {
+      deploymentMode     = "Incremental"
+      name               = "exemption2"
+      displayName        = "exemption2 for Insert-Your-RG-Name2"
+      description        = "exemption2 waives compliance on an resource group"
+      resourceGroupName  = "Insert-Your-RG-Name2"
+      policyAssignmentId = "/providers/Microsoft.Management/managementGroups/production/providers/Microsoft.Authorization/policyAssignments/2f97de7d41f348529e23d8ae"
+      policyDefinitionReferenceIds = []
+      exemptionCategory = "Mitigated"
+      expiresOn         = "2025-12-31"
+      metadata = {}
+    },
+    exemption3 = {
+      deploymentMode     = "Incremental"
+      name               = "exemption3"
+      displayName        = "exemption3 for Insert-Your-RG-Name3"
+      description        = "exemption3 waives compliance on an resource group"
+      resourceGroupName  = "Insert-Your-RG-Name3"
+      policyAssignmentId = "/providers/Microsoft.Management/managementGroups/production/providers/Microsoft.Authorization/policyAssignments/2f97de7d41f348529e23d8ae"
+      policyDefinitionReferenceIds = []
+      exemptionCategory = "Waiver"
+      expiresOn         = "2025-12-29"
+      metadata = {}
+    }
+  }
+}
+```
\ No newline at end of file