Deployment of Azure resources failed due to a policy violation. VMSS deployments to have automatic OS upgrades enabled #219
Labels
bug
Something isn't working
Comments
|
@singhravipratap VMSS auto OS upgrades should not be enabled for AKS agent pools. AKS has different mechanisms for auto OS upgrades, and these are enabled in our bicep deployments. The policy should be modified to exclude VMSSes that are managed by AKS. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
The deployment of Azure resources failed due to a policy violation. Specifically, the subscription has a policy "MCAPSGov SFI Deny Policies" that disallowed the creation of the resource "aks-agentpool-36070728-vmss". The policy requires Virtual Machine Scale Sets (VMSS) deployments to have automatic OS upgrades enabled, which was not the case
Screenshots
Additional context
The policy "MCAPSGov SFI Deny Policies" enforces that VMSS deployments must have auto OS upgrades enabled. This policy is applied to the scope at MCAPSCore and has a default value of denied.
The text was updated successfully, but these errors were encountered: