Policies from the Azure Monitor Baseline Alerts project extracted for use in EPAC.
The definitions files are updated weekly around Thursday by deploying the solution and then extracting all the policies.
-
If you are following the ALZ deployment methodology use the files below to assign alerting policies to the correct scopes
- alerting-connectivity-policySet.jsonc
- alerting-identity-policySet.jsonc
- alerting-management-policySet.jsonc
- alerting-servicehealth-policySet.jsonc
- notification-assets-policySet.jsonc
-
All other files are designed to be scoped to the landing zones management group in your environment.
-
Copy the files from the
Definitionsfolder to your own EPAC repo. -
Adjust the following fields in the assignment files to suit your environment.
scopemanagedIdentityLocationsparameters
-
If you are not following the ALZ structure and want to deploy alerts for a single group of services e.g. Key Vault - then deploy the matching policy assignment. In the case of Key Vault you would deploy
alerting-keymanagement-policySet.jsonc
- Policies are tested by the owners of the AMBA repositories - for issues with the policies or assignments please refer to the original project.
- Eventually these policies will be integrated into the ALZ project and this repo will no longer be maintained.
- The assignment files assumes an ALZ recommended management group structure - as described in this link.