Skip to content

Commit 06b4f69

Browse files
PRMerger18PRMerger18
authored
Merge pull request #178907 from JnHs/jh-lh-deppolapi
update API version info
2 parents 49753be + 3798cb0 commit 06b4f69

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

articles/lighthouse/how-to/deploy-policy-remediation.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
---
22
title: Deploy a policy that can be remediated
33
description: To deploy policies that use a remediation task via Azure Lighthouse, you'll need to create a managed identity in the customer tenant.
4-
ms.date: 09/30/2021
4+
ms.date: 11/05/2021
55
ms.topic: how-to
66
---
77

@@ -43,7 +43,7 @@ Once you have created the user with the necessary permissions as described above
4343

4444
For example, let's say you wanted to enable diagnostics on Azure Key Vault resources in the customer tenant, as illustrated in this [sample](https://github.com/Azure/Azure-Lighthouse-samples/tree/master/templates/policy-enforce-keyvault-monitoring). A user in the managing tenant with the appropriate permissions (as described above) would deploy an [Azure Resource Manager template](https://github.com/Azure/Azure-Lighthouse-samples/blob/master/templates/policy-enforce-keyvault-monitoring/enforceAzureMonitoredKeyVault.json) to enable this scenario.
4545

46-
Note that creating the policy assignment to use with a delegated subscription must currently be done through APIs, not in the Azure portal. When doing so, the **apiVersion** must be set to **2020-10-01-preview**, which includes the new **delegatedManagedIdentityResourceId** property. This property allows you to include a managed identity that resides in the customer tenant (in a subscription or resource group that has been onboarded to Azure Lighthouse).
46+
Note that creating the policy assignment to use with a delegated subscription must currently be done through APIs, not in the Azure portal. When doing so, the **apiVersion** must be set to **2019-04-01-preview** or later to include the new **delegatedManagedIdentityResourceId** property. This property allows you to include a managed identity that resides in the customer tenant (in a subscription or resource group that has been onboarded to Azure Lighthouse).
4747

4848
The following example shows a role assignment with a **delegatedManagedIdentityResourceId**.
4949

0 commit comments

Comments
 (0)