last sync: 2020-Aug-07 14:05:09 UTC

Azure Policy

[Preview]: Configure code signing for training code for specified Azure Machine Learning computes

Policy DisplayName [Preview]: Configure code signing for training code for specified Azure Machine Learning computes
Policy Id 6a6f7384-63de-11ea-bc55-0242ac130003
Policy Category Machine Learning
Policy Description This policy helps provide code signing for training code in specified Azure Machine Learning computes and can be assigned at the workspace. For more information, visit https://aka.ms/amlpolicydoc.
Policy Mode Microsoft.MachineLearningServices.Data
Policy Type BuiltIn
Policy in Preview True
Policy Deprecated FALSE
Policy Effect Default: enforceSetting
Allowed: (enforceSetting,disabled)
Roles used none
Policy Changes
Date/Time (UTC ymd) (i) Change Change detail
2020-06-23 16:03:25 add: Policy 6a6f7384-63de-11ea-bc55-0242ac130003
Used in Policy Initiative(s) none
Policy Rule
{
  "properties": {
  "displayName": "[Preview]: Configure code signing for training code for specified Azure Machine Learning computes",
    "policyType": "BuiltIn",
    "mode": "Microsoft.MachineLearningServices.Data",
    "description": "This policy helps provide code signing for training code in specified Azure Machine Learning computes and can be assigned at the workspace. For more information, visit https://aka.ms/amlpolicydoc.",
    "metadata": {
      "version": "1.0.0-preview",
      "category": "Machine Learning",
      "preview": true
    },
    "parameters": {
      "computeNames": {
        "type": "Array",
        "metadata": {
        "displayName": "[Preview]: Compute names where Azure Machine Learning jobs run",
          "description": "List of compute names where this policy should be applied. Example: 'cpu-cluster;gpu-cluster'. If no value is provided to this parameter, policy is applicable to all computes."
        },
        "defaultValue": [
          
        ]
      },
      "signingKey": {
        "type": "String",
        "metadata": {
        "displayName": "[Preview]: PGP public key",
          "description": "Public key text in PGP public key format, with newline characters encoded as string literals \"\\r\" and \"\\n\"."
        }
      },
      "effect": {
        "type": "String",
        "metadata": {
        "displayName": "[Preview]: Effect",
          "description": "Enable or disable the execution of the policy."
        },
        "allowedValues": [
          "enforceSetting",
          "disabled"
        ],
        "defaultValue": "enforceSetting"
      }
    },
    "policyRule": {
      "if": {
        "anyOf": [
          {
            "field": "Microsoft.MachineLearningServices.Data/workspaces/computes/name",
          "in": "[parameters('computeNames')]"
          },
          {
          "value": "[length(parameters('computeNames'))]",
            "equals": 0
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]",
        "details": {
          "setting": {
            "name": "signingKey",
          "value": "[parameters('signingKey')]"
          }
        }
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/6a6f7384-63de-11ea-bc55-0242ac130003",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "6a6f7384-63de-11ea-bc55-0242ac130003"
}