en-GB/about_PSRule_Azure_Configuration.help.txt

TOPIC
    about_psrule_azure_configuration
 
SHORT DESCRIPTION
    Describes PSRule configuration options specific to `PSRule.Rules.Azure`.
 
LONG DESCRIPTION
    PSRule exposes configuration options that can be used to customize execution
    of `PSRule.Rules.Azure`. This topic describes what configuration options are available.
    PSRule configuration options can be specified by setting the configuration
    option in `ps-rule.yaml`. Additionally, configuration options can be
    configured in a baseline or set at runtime. For details of setting
    configuration options see [PSRule options][options]
    The following configurations options are available for use:
    -
    Azure_AKSMinimumVersion
    -
    Azure_AKSNodeMinimumMaxPods
    -
    Azure_AllowedRegions
    -
    Azure_MinimumCertificateLifetime
 
    AZURE_AKSMINIMUMVERSION
    This configuration option determines the minimum version of Kubernetes for
    AKS clusters and node pools. Rules that check the Kubernetes version fail
    when the version is older than the version specified.
    Syntax:
 
    configuration:
      Azure_AKSMinimumVersion: string # A version string
 
    Default:
 
    # YAML: The default Azure_AKSMinimumVersion configuration option
    configuration:
      Azure_AKSMinimumVersion: 1.16.7
 
    Example:
 
    # YAML: Set the Azure_AKSMinimumVersion configuration option to 1.17.0
    configuration:
      Azure_AKSMinimumVersion: 1.17.0
 
    AZURE_AKSNODEMINIMUMMAXPODS
    This configuration option determines the minimum allowed max pods setting
    per node pool. When an AKS cluster node pool is created, a `maxPods` option
    is used to determine the maximum number of pods for each node in the node pool.
    Syntax:
 
    configuration:
      Azure_AKSNodeMinimumMaxPods: integer
 
    Default:
 
    # YAML: The default Azure_AKSNodeMinimumMaxPods configuration option
    configuration:
      Azure_AKSNodeMinimumMaxPods: 50
 
    Example:
 
    # YAML: Set the Azure_AKSNodeMinimumMaxPods configuration option to 30
    configuration:
      Azure_AKSNodeMinimumMaxPods: 30
 
    AZURE_ALLOWEDREGIONS
    This configuration option specifies a list of allowed locations that
    resources can be deployed to. Rules that check the location of Azure
    resources fail when a resource or resource group is created in a different region.
    By default, `Azure_AllowedRegions` is not configured. The rule
    `Azure.Resource.AllowedRegions` is skipped when no allowed locations are configured.
    Syntax:
 
    configuration:
      Azure_AllowedRegions: array # An array of regions
 
    Default:
 
    # YAML: The default Azure_AllowedRegions configuration option
    configuration:
      Azure_AllowedRegions: []
 
    Example:
 
    # YAML: Set the Azure_AllowedRegions configuration option to Australia East, Australia South East
    configuration:
      Azure_AllowedRegions:
      - 'australiaeast'
      - 'australiasoutheast'
 
    AZURE_MINIMUMCERTIFICATELIFETIME
    This configuration option determines the minimum number of days allowed
    before certificate expiry. Rules that check certificate lifetime fail when
    the days remaining before expiry drop below this number.
    Syntax:
 
    configuration:
      Azure_MinimumCertificateLifetime: integer
 
    Default:
 
    # YAML: The default Azure_MinimumCertificateLifetime configuration option
    configuration:
      Azure_MinimumCertificateLifetime: 30
 
    Example:
 
    # YAML: Set the Azure_MinimumCertificateLifetime configuration option to 90
    configuration:
      Azure_MinimumCertificateLifetime: 90
 
NOTE
    An online version of this document is available at
    https://github.com/Microsoft/PSRule.Rules.Azure/blob/master/docs/concepts/PSRule.Rules.Azure/en-US/about_PSRule_Azure_Configuration.md.
 
KEYWORDS
    - Configuration
    - Rule
    [options]:
    https://microsoft.github.io/PSRule/concepts/PSRule/en-US/about_PSRule_Options.html