AzPolicyAdvertizer

last sync: 2020-Oct-23 19:29:54 UTC

Azure Policy

[Preview]: Configure allowed registries for specified Azure Machine Learning computes

Name [Preview]: Configure allowed registries for specified Azure Machine Learning computes
Id 5853517a-63de-11ea-bc55-0242ac130003
Version 1.0.0-preview
details on versioning
Category Machine Learning
Description This policy helps provide registries that are allowed in specified Azure Machine Learning computes and can be assigned at the workspace. For more information, visit https://aka.ms/amlpolicydoc.
Mode Microsoft.MachineLearningServices.Data
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default: enforceSetting
Allowed: (enforceSetting,disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2020-05-13 05:56:52 add 5853517a-63de-11ea-bc55-0242ac130003
Used in Initiatives none
Json 
{
  "properties": {
  "displayName": "[Preview]: Configure allowed registries for specified Azure Machine Learning computes",
    "policyType": "BuiltIn",
    "mode": "Microsoft.MachineLearningServices.Data",
    "description": "This policy helps provide registries that are allowed in specified Azure Machine Learning computes and can be assigned at the workspace. For more information, visit https://aka.ms/amlpolicydoc.",
    "metadata": {
      "version": "1.0.0-preview",
      "category": "Machine Learning",
      "preview": true
    },
    "parameters": {
      "computeNames": {
        "type": "Array",
        "metadata": {
        "displayName": "[Preview]: Compute names where Azure ML jobs run",
          "description": "List of compute names where this policy should be applied. Ex. cpu-cluster;gpu-cluster. If no value is provided to this parameter then policy is applicable to all computes."
        },
        "defaultValue": [
          
        ]
      },
      "allowedACRs": {
        "type": "Array",
        "metadata": {
        "displayName": "[Preview]: Azure Container Registries",
          "description": "List of Azure Container Registries that can be used with Azure ML. Ex. amlrepo.azurecr.io;amlrepo.azurecr.io/foo"
        },
        "defaultValue": [
          
        ]
      },
      "effect": {
        "type": "String",
        "metadata": {
        "displayName": "[Preview]: Effect",
          "description": "Enable or disable the execution of the policy."
        },
        "allowedValues": [
          "enforceSetting",
          "disabled"
        ],
        "defaultValue": "enforceSetting"
      }
    },
    "policyRule": {
      "if": {
        "anyOf": [
          {
            "field": "Microsoft.MachineLearningServices.Data/workspaces/computes/name",
          "in": "[parameters('computeNames')]"
          },
          {
          "value": "[length(parameters('computeNames'))]",
            "equals": 0
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]",
        "details": {
          "setting": {
            "name": "allowedACRs",
          "value": "[parameters('allowedACRs')]"
          }
        }
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/5853517a-63de-11ea-bc55-0242ac130003",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "5853517a-63de-11ea-bc55-0242ac130003"
}