Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] Export-AzPolicyAssignmentRuleData unable to export Azure policy as PSRule (The function "field" was not found) [Microsoft policy ID: fbb99e8e-e444-4da0-9ff1-75c92f5a85b2] #2725

Closed
Marc013 opened this issue Mar 5, 2024 · 1 comment · Fixed by #2740
Closed

[BUG] Export-AzPolicyAssignmentRuleData unable to export Azure policy as PSRule (The function "field" was not found) [Microsoft policy ID: fbb99e8e-e444-4da0-9ff1-75c92f5a85b2] #2725

Marc013 opened this issue Mar 5, 2024 · 1 comment · Fixed by #2740
Assignees
@BernieWhite
Labels
bug Something isn't working feature: policy-as-rules Issues that related to exporting policy as rules.
Milestone
v1.34.1

Comments

@Marc013
Copy link

Marc013 commented Mar 5, 2024

Existing rule

No response

Description of the issue

Unable to export policy assignment data to PSRule.

PolicyDefinitionId: /providers/Microsoft.Authorization/policyDefinitions/fbb99e8e-e444-4da0-9ff1-75c92f5a85b2
DisplayName: Storage account containing the container with activity logs must be encrypted with BYOK

Error messages

An error occurred evaluating expression '[contains(field('Microsoft.Insights/logProfiles/storageAccountId'), subscription().Id)]' line 11105. The function "field" was not found.

Reproduction

Exporting policy assignment data of Microsoft policy /providers/Microsoft.Authorization/policyDefinitions/fbb99e8e-e444-4da0-9ff1-75c92f5a85b2

Version of PSRule

2.9.0

Version of PSRule for Azure

1.33.2

Additional context

This bug is related to #1323
@Marc013 Marc013 added bug Something isn't working Needs: Triage 🔍 Needs attention from the team. labels Mar 5, 2024
@BernieWhite BernieWhite added feature: policy-as-rules Issues that related to exporting policy as rules. and removed Needs: Triage 🔍 Needs attention from the team. labels Mar 6, 2024
@BernieWhite
Copy link
Collaborator

@Marc013 Currently it's not possible for PSRule to coordinate over different resources, so this is not enforceable in code.

We will add this policy definition to the ignore list so that there is no error and a warning will be generated instead as the fix.

In the interim you can set the AZURE_POLICY_IGNORE_LIST configuration option.

@BernieWhite BernieWhite added this to the v1.34.1 milestone Mar 6, 2024
@BernieWhite BernieWhite self-assigned this Mar 6, 2024
BernieWhite added a commit to BernieWhite/PSRule.Rules.Azure that referenced this issue Mar 6, 2024
@BernieWhite
Fixes for policy as rules export issues Azure#2724 Azure#2725 Azure#2726
2ced009
@BernieWhite BernieWhite mentioned this issue Mar 6, 2024
Merged
7 tasks
BernieWhite added a commit that referenced this issue Mar 6, 2024
@BernieWhite
Fixes for policy as rules export issues #2724 #2725 #2726 (#2740)
79e659a 
* Fixes for policy as rules export issues #2724 #2725 #2726

* Additional fixes
@BernieWhite BernieWhite mentioned this issue Mar 6, 2024
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@BernieWhite BernieWhite

Labels
bug Something isn't working feature: policy-as-rules Issues that related to exporting policy as rules.
Projects
None yet
Milestone
v1.34.1
Development

Successfully merging a pull request may close this issue.

Fixes for policy as rules export issues #2724 #2725 #2726 BernieWhite/PSRule.Rules.Azure
2 participants
@BernieWhite @Marc013