Skip to content

fix: exp issues fix #483

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Sep 12, 2025
Merged

fix: exp issues fix #483

merged 4 commits into from
Sep 12, 2025

Conversation

Ravikirana-Microsoft
Copy link
Contributor

Purpose

This pull request introduces several improvements and fixes across documentation and infrastructure code, primarily focusing on standardizing environment variable names for AI project resource IDs, enhancing security and logging configurations, and updating documentation to reflect these changes. It also adds troubleshooting guidance for a common Azure deployment error.

Environment Variable Standardization and Documentation Updates:

  • Standardized the environment variable for reusing an existing AI Foundry Project from AZURE_ENV_FOUNDRY_PROJECT_ID to AZURE_EXISTING_AI_PROJECT_RESOURCE_ID throughout documentation and infrastructure parameter files, ensuring consistency and reducing potential deployment confusion. [1] [2] [3] [4]
  • Updated related documentation to use the new variable name and clarified usage instructions. [1] [2]

Security and Logging Enhancements:

  • Increased the default dailyQuotaGb for Log Analytics Workspace to 150 GB when redundancy is enabled, aligning with WAF recommendations for higher workloads.
  • Enabled host-based encryption (encryptionAtHost: true) for virtual machines to improve data security at rest.
  • Added Windows Security Audit event log collection for VMs, specifically capturing successful and failed logon events (Event IDs 4624, 4625) for improved security monitoring.
  • Enabled end-to-end encryption for web apps by setting e2eEncryptionEnabled: true in both the main and module Bicep files. [1] [2]
  • Added parameters for customer-managed keys and a list of allowed FQDNs in the WAF parameters file, supporting enhanced security and network control.

Troubleshooting Documentation:

  • Added a detailed troubleshooting section for the EncryptionAtHostFeatureNotEnabled error, providing step-by-step guidance and references for resolving Azure host encryption deployment issues.

Does this introduce a breaking change?

  • Yes
  • No

How to Test

  • Get the code
git clone [repo-address]
cd [repo-name]
git checkout [branch-name]
npm install
  • Test the code

What to Check

Verify that the following are valid

  • ...

Other Information

@Roopan-Microsoft Roopan-Microsoft merged commit 6263563 into dev Sep 12, 2025
9 checks passed
@github-actions
Copy link

🎉 This PR is included in version 2.2.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Roopan-Microsoft Roopan-Microsoft Roopan-Microsoft approved these changes

@Avijit-Microsoft Avijit-Microsoft Awaiting requested review from Avijit-Microsoft Avijit-Microsoft is a code owner

@Prajwal-Microsoft Prajwal-Microsoft Awaiting requested review from Prajwal-Microsoft Prajwal-Microsoft is a code owner

@marktayl1 marktayl1 Awaiting requested review from marktayl1 marktayl1 is a code owner

@Fr4nc3 Fr4nc3 Awaiting requested review from Fr4nc3 Fr4nc3 is a code owner

@Vinay-Microsoft Vinay-Microsoft Awaiting requested review from Vinay-Microsoft Vinay-Microsoft is a code owner

@aniaroramsft aniaroramsft Awaiting requested review from aniaroramsft aniaroramsft is a code owner

Assignees

No one assigned

Labels

released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Ravikirana-Microsoft @Roopan-Microsoft