Deploy-VM-Backup optional parameters for exclusion tag

[stalejohnsen]

Overview/Summary

The ALZ default policy 'Deploy-VM-Backup' has the name 'Configure backup on virtual machines without a given tag to a new recovery services vault with a default policy'. In the current implementation of alzDefaultPolicyAssignments module it is not possible to set an exclusion tag as parameter, hence it is not possible to do what the policy name is describing as functionality.

This PR fixes/adds/changes/removes

1. Adds two need parameters in alzDefaultPolicyAssignments.bicep
2. Add optional blank parameters as example in alzDefaultPolicyAssignments.parameters.all.json
3. Adds some more flexibility which is requested in 💡 Feature Request - Flexibility to exclude individual ALZ default policy assignments #481

Breaking Changes

No breaking changes, this is optional parameters

Testing Evidence

Id                      : /providers/Microsoft.Management/managementGroups/alz/
                          providers/Microsoft.Resources/deployments/alz-Default
                          PolicyAssignmentsDeployment-20230324T1003058531Z
DeploymentName          : alz-DefaultPolicyAssignmentsDeployment-20230324T10030
                          58531Z
ManagementGroupId       : alz
Location                : westeurope
ProvisioningState       : Succeeded
Timestamp               : 03/24/2023 10:27:51
Mode                    : Incremental
TemplateLink            : 
Parameters              : 
                          Name                                                 
                             Type                       Value     
                          =====================================================
                          =  =========================  ==========
                          parTopLevelManagementGroupPrefix                     
                             String                     "alz"     
                          parTopLevelManagementGroupSuffix                     
                             String                     ""        
                          parLogAnalyticsWorkSpaceAndAutomationAccountLocation 
                             String                     ""
                          parLogAnalyticsWorkspaceResourceId                   
                             String                     ""
                          parLogAnalyticsWorkspaceLogRetentionInDays           
                             String                     "30"      
                          parAutomationAccountName                             
                             String                     "alz-automation-account
"
                          parMsDefenderForCloudEmailSecurityContact            
                             String                     ""
                          parDdosProtectionPlanId                              
                             String                     ""        
                          parPrivateDnsResourceGroupId                         
                             String                     ""
                          parDisableAlzDefaultPolicies                         
                             Bool                       false     
                          parVmBackupExclusionTagName                        
                             String                     "Backup"  
                          parVmBackupExclusionTagValue                         
                             Array                      ["false"] 
                          parTelemetryOptOut                                   
                             Bool                       false     
                          
Outputs                 : 
DeploymentDebugLogLevel :

As part of this Pull Request I have

• Read the Contribution Guide and ensured this PR is compliant with the guide
• Ensured the resource API versions in .bicep file/s I am adding/editing are using the latest API version possible
• Checked for duplicate Pull Requests
• Associated it with relevant GitHub Issues
• (ALZ Bicep Core Team Only) Associated it with relevant ADO Items
• Ensured my code/branch is up-to-date with the latest changes in the main branch
• Performed testing and provided evidence.
• Updated one or more of the following tests (if required)
  • Unit
  • Linting
  • E2E (End-To-End)
  • ValidateAzCloud (Base validation in Azure Cloud)
  • ValidateMcCloud (Base validation in Azure China Cloud)
• Updated relevant and associated documentation (e.g. Contribution Guide, Module READMEs, Wiki Docs etc.)
• If relevant, created or updated Code Tours here

[jtracey93]

Looking great @stalejohnsen, thanks for the contribution and effort here.

Can I ask that you manually generate the parameter docs updates and push the changes into your branch by following: https://github.com/Azure/ALZ-Bicep/wiki/Contributing#manually-generating-the-parameter-markdown-files

Thanks

Jack

[jtracey93]

/azp run validateazcloud

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[jtracey93]

LGTM, will finish tests and then merge

[stalejohnsen]

Looking great @stalejohnsen, thanks for the contribution and effort here.

Can I ask that you manually generate the parameter docs updates and push the changes into your branch by following: https://github.com/Azure/ALZ-Bicep/wiki/Contributing#manually-generating-the-parameter-markdown-files

Thanks

Jack

Updated Markdown generated for alzDefaultPolicyAssignments.bicep and included in this branch.