| Json |
{
"properties": {
"displayName": "[Preview]: Configure code signing for training code for specified Azure Machine Learning computes",
"policyType": "BuiltIn",
"mode": "Microsoft.MachineLearningServices.Data",
"description": "This policy helps provide code signing for training code in specified Azure Machine Learning computes and can be assigned at the workspace. For more information, visit https://aka.ms/amlpolicydoc.",
"metadata": {
"version": "1.0.0-preview",
"category": "Machine Learning",
"preview": true
},
"parameters": {
"computeNames": {
"type": "Array",
"metadata": {
"displayName": "[Preview]: Compute names where Azure Machine Learning jobs run",
"description": "List of compute names where this policy should be applied. Example: 'cpu-cluster;gpu-cluster'. If no value is provided to this parameter, policy is applicable to all computes."
},
"defaultValue": [
]
},
"signingKey": {
"type": "String",
"metadata": {
"displayName": "[Preview]: PGP public key",
"description": "Public key text in PGP public key format, with newline characters encoded as string literals \"\\r\" and \"\\n\"."
}
},
"effect": {
"type": "String",
"metadata": {
"displayName": "[Preview]: Effect",
"description": "Enable or disable the execution of the policy."
},
"allowedValues": [
"enforceSetting",
"disabled"
],
"defaultValue": "enforceSetting"
}
},
"policyRule": {
"if": {
"anyOf": [
{
"field": "Microsoft.MachineLearningServices.Data/workspaces/computes/name",
"in": "[parameters('computeNames')]"
},
{
"value": "[length(parameters('computeNames'))]",
"equals": 0
}
]
},
"then": {
"effect": "[parameters('effect')]",
"details": {
"setting": {
"name": "signingKey",
"value": "[parameters('signingKey')]"
}
}
}
}
},
"id": "/providers/Microsoft.Authorization/policyDefinitions/6a6f7384-63de-11ea-bc55-0242ac130003",
"type": "Microsoft.Authorization/policyDefinitions",
"name": "6a6f7384-63de-11ea-bc55-0242ac130003"
}
|