From c006ea2f4341efdc7b832ed4db2c71a8b0471a2c Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Mon, 2 Oct 2023 21:48:43 +0100
Subject: [PATCH 01/21] bicepparam files

---
 ...mRoleDefinitions.parameters.all.bicepparam |   5 +
 ...mRoleDefinitions.parameters.min.bicepparam |   5 +
 ...mRoleDefinitions.parameters.all.bicepparam |   5 +
 ...mRoleDefinitions.parameters.min.bicepparam |   5 +
 .../hubNetworking.parameters.all.bicepparam   | 201 ++++++++++++++++++
 .../hubNetworking.parameters.min.bicepparam   |  94 ++++++++
 ...mc-hubNetworking.parameters.all.bicepparam | 163 ++++++++++++++
 ...mc-hubNetworking.parameters.min.bicepparam | 128 +++++++++++
 .../logging.parameters.all.bicepparam         |  40 ++++
 .../logging.parameters.min.bicepparam         |  22 ++
 .../mc-logging.parameters.all.bicepparam      |  36 ++++
 .../mc-logging.parameters.min.bicepparam      |  22 ++
 ...managementGroups.parameters.all.bicepparam |  21 ++
 ...managementGroups.parameters.min.bicepparam |   3 +
 .../mgDiagSettings.parameters.all.bicepparam  |   5 +
 .../mgDiagSettings.parameters.min.bicepparam  |   5 +
 ...olicyAssignments.parameters.all.bicepparam |  31 +++
 ...olicyAssignments.parameters.min.bicepparam |  15 ++
 ...gementGroup.dine.parameters.all.bicepparam |  54 +++++
 ...gementGroup.dine.parameters.min.bicepparam |  36 ++++
 ...gementGroup.deny.parameters.all.bicepparam |  31 +++
 ...gementGroup.deny.parameters.min.bicepparam |  17 ++
 ...gementGroup.dine.parameters.all.bicepparam |  78 +++++++
 ...gementGroup.dine.parameters.min.bicepparam |  60 ++++++
 ...olicyDefinitions.parameters.all.bicepparam |   5 +
 ...olicyDefinitions.parameters.min.bicepparam |   3 +
 ...olicyDefinitions.parameters.all.bicepparam |   5 +
 ...olicyDefinitions.parameters.min.bicepparam |   3 +
 ...vateDnsZoneLinks.parameters.all.bicepparam |   5 +
 ...vateDnsZoneLinks.parameters.min.bicepparam |   5 +
 ...-privateDnsZones.parameters.all.bicepparam |  45 ++++
 ...-privateDnsZones.parameters.min.bicepparam |  39 ++++
 .../privateDnsZones.parameters.all.bicepparam |  85 ++++++++
 .../privateDnsZones.parameters.min.bicepparam |  75 +++++++
 .../publicIp.parameters.all.bicepparam        |  25 +++
 .../publicIp.parameters.min.bicepparam        |  17 ++
 .../resourceGroup.parameters.all.bicepparam   |  11 +
 .../resourceGroup.parameters.min.bicepparam   |   7 +
 ....managedIdentity.parameters.all.bicepparam |  11 +
 ....managedIdentity.parameters.min.bicepparam |   9 +
 ...up.securityGroup.parameters.all.bicepparam |  11 +
 ...up.securityGroup.parameters.min.bicepparam |   9 +
 ...servicePrincipal.parameters.all.bicepparam |  11 +
 ...servicePrincipal.parameters.min.bicepparam |   9 +
 ....managedIdentity.parameters.all.bicepparam |  14 ++
 ....managedIdentity.parameters.min.bicepparam |  14 ++
 ...ny.securityGroup.parameters.all.bicepparam |  14 ++
 ...ny.securityGroup.parameters.min.bicepparam |  14 ++
 ...servicePrincipal.parameters.all.bicepparam |  14 ++
 ...servicePrincipal.parameters.min.bicepparam |  14 ++
 ....managedIdentity.parameters.all.bicepparam |  11 +
 ....managedIdentity.parameters.min.bicepparam |   9 +
 ...up.securityGroup.parameters.all.bicepparam |  11 +
 ...up.securityGroup.parameters.min.bicepparam |   9 +
 ...servicePrincipal.parameters.all.bicepparam |  11 +
 ...servicePrincipal.parameters.min.bicepparam |   9 +
 ....managedIdentity.parameters.all.bicepparam |  14 ++
 ....managedIdentity.parameters.min.bicepparam |  14 ++
 ...ny.securityGroup.parameters.all.bicepparam |  14 ++
 ...ny.securityGroup.parameters.min.bicepparam |  14 ++
 ...servicePrincipal.parameters.all.bicepparam |  14 ++
 ...servicePrincipal.parameters.min.bicepparam |  14 ++
 ....managedIdentity.parameters.all.bicepparam |  11 +
 ....managedIdentity.parameters.min.bicepparam |   9 +
 ...on.securityGroup.parameters.all.bicepparam |  11 +
 ...on.securityGroup.parameters.min.bicepparam |   9 +
 ...servicePrincipal.parameters.all.bicepparam |  11 +
 ...servicePrincipal.parameters.min.bicepparam |   9 +
 ....managedIdentity.parameters.all.bicepparam |  14 ++
 ....managedIdentity.parameters.min.bicepparam |  14 ++
 ...ny.securityGroup.parameters.all.bicepparam |  14 ++
 ...ny.securityGroup.parameters.min.bicepparam |  14 ++
 ...servicePrincipal.parameters.all.bicepparam |  14 ++
 ...servicePrincipal.parameters.min.bicepparam |  14 ++
 .../spokeNetworking.parameters.all.bicepparam |  23 ++
 .../spokeNetworking.parameters.min.bicepparam |  13 ++
 ...riptionPlacement.parameters.all.bicepparam |   9 +
 ...riptionPlacement.parameters.min.bicepparam |   9 +
 .../vnetPeering.parameters.all.bicepparam     |  17 ++
 .../vnetPeering.parameters.min.bicepparam     |  17 ++
 .../vnetPeeringVwan.parameters.all.bicepparam |  13 ++
 .../vnetPeeringVwan.parameters.min.bicepparam |   7 +
 ...vwanConnectivity.parameters.all.bicepparam |  92 ++++++++
 ...vwanConnectivity.parameters.min.bicepparam |  70 ++++++
 ...vwanConnectivity.parameters.all.bicepparam | 132 ++++++++++++
 ...vwanConnectivity.parameters.min.bicepparam |  36 ++++
 .../hubPeeredSpoke.parameters.all.bicepparam  |  45 ++++
 ...PeeredSpoke.vwan.parameters.all.bicepparam |  43 ++++
 ...gDiagSettingsAll.parameters.all.bicepparam |  19 ++
 ...gDiagSettingsAll.parameters.min.bicepparam |   7 +
 .../subPlacementAll.parameters.all.bicepparam |  35 +++
 .../subPlacementAll.parameters.min.bicepparam |  19 ++
 92 files changed, 2450 insertions(+)
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
 create mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
new file mode 100644
index 000000000..a5de26770
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../customRoleDefinitions.bicep'
+
+param parAssignableScopeManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.bicepparam b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.bicepparam
new file mode 100644
index 000000000..e56428daf
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.bicepparam
@@ -0,0 +1,5 @@
+using '../customRoleDefinitions.bicep'
+
+param parAssignableScopeManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.all.bicepparam
new file mode 100644
index 000000000..272ae084a
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../mc-customRoleDefinitions.bicep'
+
+param parAssignableScopeManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.min.bicepparam b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.min.bicepparam
new file mode 100644
index 000000000..272ae084a
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/mc-customRoleDefinitions.parameters.min.bicepparam
@@ -0,0 +1,5 @@
+using '../mc-customRoleDefinitions.bicep'
+
+param parAssignableScopeManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
new file mode 100644
index 000000000..015c5e1bf
--- /dev/null
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
@@ -0,0 +1,201 @@
+using '../hubNetworking.bicep'
+
+param parLocation = 'eastus'
+
+param parCompanyPrefix = 'alz'
+
+param parHubNetworkName = 'alz-hub-eastus'
+
+param parHubNetworkAddressPrefix = '10.20.0.0/16'
+
+param parSubnets = [
+  {
+    name: 'AzureBastionSubnet'
+    ipAddressRange: '10.20.0.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'GatewaySubnet'
+    ipAddressRange: '10.20.254.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallSubnet'
+    ipAddressRange: '10.20.255.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallManagementSubnet'
+    ipAddressRange: '10.20.253.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+]
+
+param parDnsServerIps = []
+
+param parPublicIpSku = 'Standard'
+
+param parPublicIpPrefix = ''
+
+param parPublicIpSuffix = '-PublicIP'
+
+param parAzBastionEnabled = true
+
+param parAzBastionName = 'alz-bastion'
+
+param parAzBastionSku = 'Standard'
+
+param parAzBastionTunneling = false
+
+param parAzBastionNsgName = 'nsg-AzureBastionSubnet'
+
+param parDdosEnabled = true
+
+param parDdosPlanName = 'alz-ddos-plan'
+
+param parAzFirewallEnabled = true
+
+param parAzFirewallName = 'alz-azfw-eastus'
+
+param parAzFirewallPoliciesName = 'alz-azfwpolicy-eastus'
+
+param parAzFirewallTier = 'Standard'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzErGatewayAvailabilityZones = []
+
+param parAzVpnGatewayAvailabilityZones = []
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallDnsServers = []
+
+param parHubRouteTableName = 'alz-hub-routetable'
+
+param parDisableBgpRoutePropagation = false
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.xxxxxx.azmk8s.io'
+  'privatelink.xxxxxx.batch.azure.com'
+  'privatelink.xxxxxx.kusto.windows.net'
+  'privatelink.xxxxxx.backup.windowsazure.com'
+  'privatelink.adf.azure.com'
+  'privatelink.afs.azure.net'
+  'privatelink.agentsvc.azure-automation.net'
+  'privatelink.analysis.windows.net'
+  'privatelink.api.azureml.ms'
+  'privatelink.azconfig.io'
+  'privatelink.azure-api.net'
+  'privatelink.azure-automation.net'
+  'privatelink.azurecr.io'
+  'privatelink.azure-devices.net'
+  'privatelink.azure-devices-provisioning.net'
+  'privatelink.azurehdinsight.net'
+  'privatelink.azurehealthcareapis.com'
+  'privatelink.azurestaticapps.net'
+  'privatelink.azuresynapse.net'
+  'privatelink.azurewebsites.net'
+  'privatelink.batch.azure.com'
+  'privatelink.blob.core.windows.net'
+  'privatelink.cassandra.cosmos.azure.com'
+  'privatelink.cognitiveservices.azure.com'
+  'privatelink.database.windows.net'
+  'privatelink.datafactory.azure.net'
+  'privatelink.dev.azuresynapse.net'
+  'privatelink.dfs.core.windows.net'
+  'privatelink.dicom.azurehealthcareapis.com'
+  'privatelink.digitaltwins.azure.net'
+  'privatelink.directline.botframework.com'
+  'privatelink.documents.azure.com'
+  'privatelink.eventgrid.azure.net'
+  'privatelink.file.core.windows.net'
+  'privatelink.gremlin.cosmos.azure.com'
+  'privatelink.guestconfiguration.azure.com'
+  'privatelink.his.arc.azure.com'
+  'privatelink.kubernetesconfiguration.azure.com'
+  'privatelink.managedhsm.azure.net'
+  'privatelink.mariadb.database.azure.com'
+  'privatelink.media.azure.net'
+  'privatelink.mongo.cosmos.azure.com'
+  'privatelink.monitor.azure.com'
+  'privatelink.mysql.database.azure.com'
+  'privatelink.notebooks.azure.net'
+  'privatelink.ods.opinsights.azure.com'
+  'privatelink.oms.opinsights.azure.com'
+  'privatelink.pbidedicated.windows.net'
+  'privatelink.postgres.database.azure.com'
+  'privatelink.prod.migration.windowsazure.com'
+  'privatelink.purview.azure.com'
+  'privatelink.purviewstudio.azure.com'
+  'privatelink.queue.core.windows.net'
+  'privatelink.redis.cache.windows.net'
+  'privatelink.redisenterprise.cache.azure.net'
+  'privatelink.search.windows.net'
+  'privatelink.service.signalr.net'
+  'privatelink.servicebus.windows.net'
+  'privatelink.siterecovery.windowsazure.com'
+  'privatelink.sql.azuresynapse.net'
+  'privatelink.table.core.windows.net'
+  'privatelink.table.cosmos.azure.com'
+  'privatelink.tip1.powerquery.microsoft.com'
+  'privatelink.token.botframework.com'
+  'privatelink.vaultcore.azure.net'
+  'privatelink.web.core.windows.net'
+  'privatelink.webpubsub.azure.com'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parVpnGatewayConfig = {
+  name: 'alz-Vpn-Gateway'
+  gatewayType: 'Vpn'
+  sku: 'VpnGw1'
+  vpnType: 'RouteBased'
+  generation: 'Generation1'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parExpressRouteGatewayConfig = {
+  name: 'alz-ExpressRoute-Gateway'
+  gatewayType: 'ExpressRoute'
+  sku: 'Standard'
+  vpnType: 'RouteBased'
+  generation: 'None'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
+
+param parBastionOutboundSshRdpPorts = [
+  '22'
+  '3389'
+]
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
new file mode 100644
index 000000000..45857d01a
--- /dev/null
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
@@ -0,0 +1,94 @@
+using '../hubNetworking.bicep'
+
+param parHubNetworkAddressPrefix = '10.20.0.0/16'
+
+param parSubnets = [
+  {
+    name: 'AzureBastionSubnet'
+    ipAddressRange: '10.20.0.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'GatewaySubnet'
+    ipAddressRange: '10.20.254.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallSubnet'
+    ipAddressRange: '10.20.255.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallManagementSubnet'
+    ipAddressRange: '10.20.253.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+]
+
+param parDnsServerIps = []
+
+param parPublicIpSku = 'Standard'
+
+param parAzBastionEnabled = true
+
+param parAzBastionSku = 'Standard'
+
+param parDdosEnabled = true
+
+param parAzFirewallEnabled = true
+
+param parAzFirewallTier = 'Standard'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzErGatewayAvailabilityZones = []
+
+param parAzVpnGatewayAvailabilityZones = []
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parDisableBgpRoutePropagation = false
+
+param parPrivateDnsZonesEnabled = true
+
+param parVpnGatewayConfig = {
+  name: 'alz-Vpn-Gateway'
+  gatewayType: 'Vpn'
+  sku: 'VpnGw1'
+  vpnType: 'RouteBased'
+  generation: 'Generation1'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parExpressRouteGatewayConfig = {
+  name: 'alz-ExpressRoute-Gateway'
+  gatewayType: 'ExpressRoute'
+  sku: 'Standard'
+  vpnType: 'RouteBased'
+  generation: 'None'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
new file mode 100644
index 000000000..a3174611b
--- /dev/null
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
@@ -0,0 +1,163 @@
+using '../hubNetworking.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parCompanyPrefix = 'alz'
+
+param parHubNetworkName = 'alz-hub-chinaeast2'
+
+param parHubNetworkAddressPrefix = '10.20.0.0/16'
+
+param parSubnets = [
+  {
+    name: 'AzureBastionSubnet'
+    ipAddressRange: '10.20.0.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'GatewaySubnet'
+    ipAddressRange: '10.20.254.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallSubnet'
+    ipAddressRange: '10.20.255.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallManagementSubnet'
+    ipAddressRange: '10.20.253.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+]
+
+param parDnsServerIps = []
+
+param parPublicIpSku = 'Standard'
+
+param parPublicIpPrefix = ''
+
+param parPublicIpSuffix = '-PublicIP'
+
+param parAzBastionEnabled = true
+
+param parAzBastionName = 'alz-bastion'
+
+param parAzBastionSku = 'Standard'
+
+param parAzBastionTunneling = false
+
+param parAzBastionNsgName = 'nsg-AzureBastionSubnet'
+
+param parDdosEnabled = false
+
+param parDdosPlanName = 'alz-ddos-plan'
+
+param parAzFirewallEnabled = true
+
+param parAzFirewallName = 'alz-azfw-chinaeast2'
+
+param parAzFirewallPoliciesName = 'alz-azfwpolicy-chinaeast2'
+
+param parAzFirewallTier = 'Standard'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzErGatewayAvailabilityZones = []
+
+param parAzVpnGatewayAvailabilityZones = []
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallDnsServers = []
+
+param parHubRouteTableName = 'alz-hub-routetable'
+
+param parDisableBgpRoutePropagation = false
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parVpnGatewayConfig = {
+  name: 'alz-Vpn-Gateway'
+  gatewayType: 'Vpn'
+  sku: 'VpnGw1'
+  vpnType: 'RouteBased'
+  generation: 'Generation1'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parExpressRouteGatewayConfig = {
+  name: 'alz-ExpressRoute-Gateway'
+  gatewayType: 'ExpressRoute'
+  sku: 'Standard'
+  vpnType: 'RouteBased'
+  generation: 'None'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
+
+param parBastionOutboundSshRdpPorts = [
+  '22'
+  '3389'
+]
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
new file mode 100644
index 000000000..bd8ee8b60
--- /dev/null
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
@@ -0,0 +1,128 @@
+using '../hubNetworking.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parHubNetworkAddressPrefix = '10.20.0.0/16'
+
+param parSubnets = [
+  {
+    name: 'AzureBastionSubnet'
+    ipAddressRange: '10.20.0.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'GatewaySubnet'
+    ipAddressRange: '10.20.254.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallSubnet'
+    ipAddressRange: '10.20.255.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+  {
+    name: 'AzureFirewallManagementSubnet'
+    ipAddressRange: '10.20.253.0/24'
+    networkSecurityGroupId: ''
+    routeTableId: ''
+  }
+]
+
+param parDnsServerIps = []
+
+param parPublicIpSku = 'Standard'
+
+param parAzBastionEnabled = true
+
+param parAzBastionSku = 'Standard'
+
+param parDdosEnabled = false
+
+param parAzFirewallEnabled = true
+
+param parAzFirewallTier = 'Standard'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzErGatewayAvailabilityZones = []
+
+param parAzVpnGatewayAvailabilityZones = []
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parDisableBgpRoutePropagation = false
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parVpnGatewayConfig = {
+  name: 'alz-Vpn-Gateway'
+  gatewayType: 'Vpn'
+  sku: 'VpnGw1'
+  vpnType: 'RouteBased'
+  generation: 'Generation1'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parExpressRouteGatewayConfig = {
+  name: 'alz-ExpressRoute-Gateway'
+  gatewayType: 'ExpressRoute'
+  sku: 'Standard'
+  vpnType: 'RouteBased'
+  generation: 'None'
+  enableBgp: false
+  activeActive: false
+  enableBgpRouteTranslationForNat: false
+  enableDnsForwarding: false
+  bgpPeeringAddress: ''
+  bgpsettings: {
+    asn: '65515'
+    bgpPeeringAddress: ''
+    peerWeight: '5'
+  }
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
new file mode 100644
index 000000000..ba4990133
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
@@ -0,0 +1,40 @@
+using '../logging.bicep'
+
+param parLogAnalyticsWorkspaceName = 'alz-log-analytics'
+
+param parLogAnalyticsWorkspaceLocation = 'eastus'
+
+param parLogAnalyticsWorkspaceSkuName = 'PerGB2018'
+
+param parLogAnalyticsWorkspaceCapacityReservationLevel = 100
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = 365
+
+param parLogAnalyticsWorkspaceSolutions = [
+  'AgentHealthAssessment'
+  'AntiMalware'
+  'ChangeTracking'
+  'Security'
+  'SecurityInsights'
+  'SQLAdvancedThreatProtection'
+  'SQLVulnerabilityAssessment'
+  'SQLAssessment'
+  'Updates'
+  'VMInsights'
+]
+
+param parLogAnalyticsWorkspaceLinkAutomationAccount = true
+
+param parAutomationAccountName = 'alz-automation-account'
+
+param parAutomationAccountLocation = 'eastus2'
+
+param parAutomationAccountUseManagedIdentity = true
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parUseSentinelClassicPricingTiers = false
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
new file mode 100644
index 000000000..de01d172f
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
@@ -0,0 +1,22 @@
+using '../logging.bicep'
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = 365
+
+param parLogAnalyticsWorkspaceLocation = 'eastus'
+
+param parLogAnalyticsWorkspaceSolutions = [
+  'AgentHealthAssessment'
+  'AntiMalware'
+  'ChangeTracking'
+  'Security'
+  'SecurityInsights'
+  'SQLAdvancedThreatProtection'
+  'SQLVulnerabilityAssessment'
+  'SQLAssessment'
+  'Updates'
+  'VMInsights'
+]
+
+param parAutomationAccountLocation = 'eastus2'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
new file mode 100644
index 000000000..73dc944ab
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
@@ -0,0 +1,36 @@
+using '../logging.bicep'
+
+param parLogAnalyticsWorkspaceName = 'alz-log-analytics'
+
+param parLogAnalyticsWorkspaceLocation = 'chinaeast2'
+
+param parLogAnalyticsWorkspaceSkuName = 'PerGB2018'
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = 365
+
+param parLogAnalyticsWorkspaceSolutions = [
+  'AgentHealthAssessment'
+  'AntiMalware'
+  'ChangeTracking'
+  'Security'
+  'SecurityInsights'
+  'SQLAdvancedThreatProtection'
+  'SQLVulnerabilityAssessment'
+  'SQLAssessment'
+  'Updates'
+  'VMInsights'
+]
+
+param parLogAnalyticsWorkspaceLinkAutomationAccount = true
+
+param parAutomationAccountName = 'alz-automation-account'
+
+param parAutomationAccountLocation = 'chinaeast2'
+
+param parAutomationAccountUseManagedIdentity = true
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
new file mode 100644
index 000000000..165bf2ee7
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
@@ -0,0 +1,22 @@
+using '../logging.bicep'
+
+param parLogAnalyticsWorkspaceLocation = 'chinaeast2'
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = 365
+
+param parLogAnalyticsWorkspaceSolutions = [
+  'AgentHealthAssessment'
+  'AntiMalware'
+  'ChangeTracking'
+  'Security'
+  'SecurityInsights'
+  'SQLAdvancedThreatProtection'
+  'SQLVulnerabilityAssessment'
+  'SQLAssessment'
+  'Updates'
+  'VMInsights'
+]
+
+param parAutomationAccountLocation = 'chinaeast2'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
new file mode 100644
index 000000000..a38e7dccb
--- /dev/null
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
@@ -0,0 +1,21 @@
+using '../managementGroups.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parTopLevelManagementGroupDisplayName = 'Azure Landing Zones'
+
+param parTopLevelManagementGroupParentId = ''
+
+param parLandingZoneMgAlzDefaultsEnable = true
+
+param parPlatformMgAlzDefaultsEnable = true
+
+param parLandingZoneMgConfidentialEnable = false
+
+param parLandingZoneMgChildren = {}
+
+param parPlatformMgChildren = {}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
new file mode 100644
index 000000000..d30a83eff
--- /dev/null
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
@@ -0,0 +1,3 @@
+using '../managementGroups.bicep'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
new file mode 100644
index 000000000..cda04d361
--- /dev/null
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../mgDiagSettings.bicep'
+
+param parLogAnalyticsWorkspaceResourceId = ''
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
new file mode 100644
index 000000000..cda04d361
--- /dev/null
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
@@ -0,0 +1,5 @@
+using '../mgDiagSettings.bicep'
+
+param parLogAnalyticsWorkspaceResourceId = ''
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
new file mode 100644
index 000000000..c8369b0e6
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
@@ -0,0 +1,31 @@
+using '../alzDefaultPolicyAssignments.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parLogAnalyticsWorkSpaceAndAutomationAccountLocation = 'eastus'
+
+param parLogAnalyticsWorkspaceResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics'
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = '365'
+
+param parAutomationAccountName = 'alz-automation-account'
+
+param parMsDefenderForCloudEmailSecurityContact = 'security_contact@replace_me.com'
+
+param parDdosProtectionPlanId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001/providers/Microsoft.Network/ddosProtectionPlans/alz-ddos-plan'
+
+param parPrivateDnsResourceGroupId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001'
+
+param parPrivateDnsZonesNamesToAuditInCorp = []
+
+param parDisableAlzDefaultPolicies = false
+
+param parVmBackupExclusionTagName = ''
+
+param parVmBackupExclusionTagValue = []
+
+param parExcludedPolicyAssignments = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
new file mode 100644
index 000000000..73f0888fa
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
@@ -0,0 +1,15 @@
+using '../alzDefaultPolicyAssignments.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parLogAnalyticsWorkSpaceAndAutomationAccountLocation = 'eastus'
+
+param parLogAnalyticsWorkspaceResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics'
+
+param parLogAnalyticsWorkspaceLogRetentionInDays = '365'
+
+param parAutomationAccountName = 'alz-automation-account'
+
+param parMsDefenderForCloudEmailSecurityContact = 'security_contact@replace_me.com'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
new file mode 100644
index 000000000..24b42196d
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
@@ -0,0 +1,54 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deploy-ASCDF-Config'
+
+param parPolicyAssignmentDisplayName = 'Deploy Microsoft Defender for Cloud configuration'
+
+param parPolicyAssignmentDescription = 'Deploy Microsoft Defender for Cloud and Security Contacts'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config'
+
+param parPolicyAssignmentParameters = {
+  emailSecurityContact: {
+    value: 'security_contact@replace_me'
+  }
+  logAnalytics: {
+    value: 'alz-log-analytics'
+  }
+  ascExportResourceGroupName: {
+    value: 'alz-asc-export'
+  }
+  ascExportResourceGroupLocation: {
+    value: '\${parDefaultRegion}'
+  }
+  enableAscForServers: {
+    value: 'Disabled'
+  }
+  enableAscForSql: {
+    value: 'Disabled'
+  }
+}
+
+param parPolicyAssignmentParameterOverrides = {}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parPolicyAssignmentEnforcementMode = 'Default'
+
+param parPolicyAssignmentIdentityType = 'SystemAssigned'
+
+param parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs = [
+  'alz-platform'
+]
+
+param parPolicyAssignmentIdentityRoleAssignmentsSubs = []
+
+param parPolicyAssignmentIdentityRoleAssignmentsResourceGroups = []
+
+param parPolicyAssignmentIdentityRoleDefinitionIds = [
+  '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
+]
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
new file mode 100644
index 000000000..b5c69f4a6
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
@@ -0,0 +1,36 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deploy-ASCDF-Config'
+
+param parPolicyAssignmentDisplayName = 'Deploy Microsoft Defender for Cloud configuration'
+
+param parPolicyAssignmentDescription = 'Deploy Microsoft Defender for Cloud and Security Contacts'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config'
+
+param parPolicyAssignmentParameters = {
+  emailSecurityContact: {
+    value: 'security_contact@replace_me'
+  }
+  logAnalytics: {
+    value: 'alz-log-analytics'
+  }
+  ascExportResourceGroupName: {
+    value: 'alz-asc-export'
+  }
+  ascExportResourceGroupLocation: {
+    value: '\${parDefaultRegion}'
+  }
+  enableAscForServers: {
+    value: 'Disabled'
+  }
+  enableAscForSql: {
+    value: 'Disabled'
+  }
+}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
new file mode 100644
index 000000000..029c2a8e7
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
@@ -0,0 +1,31 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deny-PublicIP'
+
+param parPolicyAssignmentDisplayName = 'Deny the creation of public IP'
+
+param parPolicyAssignmentDescription = 'This policy denies creation of Public IPs under the assigned scope.'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP'
+
+param parPolicyAssignmentParameters = {}
+
+param parPolicyAssignmentParameterOverrides = {}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parPolicyAssignmentEnforcementMode = 'Default'
+
+param parPolicyAssignmentIdentityType = 'None'
+
+param parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs = []
+
+param parPolicyAssignmentIdentityRoleAssignmentsSubs = []
+
+param parPolicyAssignmentIdentityRoleAssignmentsResourceGroups = []
+
+param parPolicyAssignmentIdentityRoleDefinitionIds = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
new file mode 100644
index 000000000..c8bbce797
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
@@ -0,0 +1,17 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deny-PublicIP'
+
+param parPolicyAssignmentDisplayName = 'Deny the creation of public IP'
+
+param parPolicyAssignmentDescription = 'This policy denies creation of Public IPs under the assigned scope.'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP'
+
+param parPolicyAssignmentParameters = {}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
new file mode 100644
index 000000000..fed53de25
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
@@ -0,0 +1,78 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deploy-MDFC-Config'
+
+param parPolicyAssignmentDisplayName = 'Deploy Microsoft Defender for Cloud configuration'
+
+param parPolicyAssignmentDescription = 'Deploy Microsoft Defender for Cloud configuration and Security Contacts'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config'
+
+param parPolicyAssignmentParameters = {
+  emailSecurityContact: {
+    value: 'security_contact@replace_me'
+  }
+  logAnalytics: {
+    value: 'alz-la'
+  }
+  ascExportResourceGroupName: {
+    value: 'alz-asc-export'
+  }
+  ascExportResourceGroupLocation: {
+    value: '\${parDefaultRegion}'
+  }
+  enableAscForServers: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForSql: {
+    value: 'Disabled'
+  }
+  enableAscForAppServices: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForStorage: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForContainers: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForKeyVault: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForSqlOnVm: {
+    value: 'Disabled'
+  }
+  enableAscForArm: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForDns: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForOssDb: {
+    value: 'Disabled'
+  }
+}
+
+param parPolicyAssignmentParameterOverrides = {}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parPolicyAssignmentEnforcementMode = 'Default'
+
+param parPolicyAssignmentIdentityType = 'SystemAssigned'
+
+param parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs = [
+  'alz-platform'
+]
+
+param parPolicyAssignmentIdentityRoleAssignmentsSubs = []
+
+param parPolicyAssignmentIdentityRoleAssignmentsResourceGroups = []
+
+param parPolicyAssignmentIdentityRoleDefinitionIds = [
+  '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
+]
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
new file mode 100644
index 000000000..c397a4851
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
@@ -0,0 +1,60 @@
+using '../policyAssignmentManagementGroup.bicep'
+
+param parPolicyAssignmentName = 'Deploy-MDFC-Config'
+
+param parPolicyAssignmentDisplayName = 'Deploy Microsoft Defender for Cloud configuration'
+
+param parPolicyAssignmentDescription = 'Deploy Microsoft Defender for Cloud configuration and Security Contacts'
+
+param parPolicyAssignmentDefinitionId = '/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config'
+
+param parPolicyAssignmentParameters = {
+  emailSecurityContact: {
+    value: 'security_contact@replace_me'
+  }
+  logAnalytics: {
+    value: 'alz-la'
+  }
+  ascExportResourceGroupName: {
+    value: 'alz-asc-export'
+  }
+  ascExportResourceGroupLocation: {
+    value: '\${parDefaultRegion}'
+  }
+  enableAscForServers: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForSql: {
+    value: 'Disabled'
+  }
+  enableAscForAppServices: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForStorage: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForContainers: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForKeyVault: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForSqlOnVm: {
+    value: 'Disabled'
+  }
+  enableAscForArm: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForDns: {
+    value: 'DeployIfNotExists'
+  }
+  enableAscForOssDb: {
+    value: 'Disabled'
+  }
+}
+
+param parPolicyAssignmentNonComplianceMessages = []
+
+param parPolicyAssignmentNotScopes = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
new file mode 100644
index 000000000..d49d82dd2
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../customPolicyDefinitions.bicep'
+
+param parTargetManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
new file mode 100644
index 000000000..4deb1585e
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
@@ -0,0 +1,3 @@
+using '../customPolicyDefinitions.bicep'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.all.bicepparam
new file mode 100644
index 000000000..cfbf40b2f
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../mc-customPolicyDefinitions.bicep'
+
+param parTargetManagementGroupId = 'alz'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.min.bicepparam
new file mode 100644
index 000000000..9a490e73d
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/mc-customPolicyDefinitions.parameters.min.bicepparam
@@ -0,0 +1,3 @@
+using '../mc-customPolicyDefinitions.bicep'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
new file mode 100644
index 000000000..5ca4a1db9
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
@@ -0,0 +1,5 @@
+using '../privateDnsZoneLinks.bicep'
+
+param parSpokeVirtualNetworkResourceId = ''
+
+param parPrivateDnsZoneResourceIds = []
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
new file mode 100644
index 000000000..5ca4a1db9
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
@@ -0,0 +1,5 @@
+using '../privateDnsZoneLinks.bicep'
+
+param parSpokeVirtualNetworkResourceId = ''
+
+param parPrivateDnsZoneResourceIds = []
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
new file mode 100644
index 000000000..0f48f4a9a
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
@@ -0,0 +1,45 @@
+using '../privateDnsZones.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
new file mode 100644
index 000000000..40ce5267f
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
@@ -0,0 +1,39 @@
+using '../privateDnsZones.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
new file mode 100644
index 000000000..5cd9dd8e3
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
@@ -0,0 +1,85 @@
+using '../privateDnsZones.bicep'
+
+param parLocation = 'eastus'
+
+param parPrivateDnsZones = [
+  'privatelink.xxxxxx.azmk8s.io'
+  'privatelink.xxxxxx.batch.azure.com'
+  'privatelink.xxxxxx.kusto.windows.net'
+  'privatelink.xxxxxx.backup.windowsazure.com'
+  'privatelink.adf.azure.com'
+  'privatelink.afs.azure.net'
+  'privatelink.agentsvc.azure-automation.net'
+  'privatelink.analysis.windows.net'
+  'privatelink.api.azureml.ms'
+  'privatelink.azconfig.io'
+  'privatelink.azure-api.net'
+  'privatelink.azure-automation.net'
+  'privatelink.azurecr.io'
+  'privatelink.azure-devices.net'
+  'privatelink.azure-devices-provisioning.net'
+  'privatelink.azurehdinsight.net'
+  'privatelink.azurehealthcareapis.com'
+  'privatelink.azurestaticapps.net'
+  'privatelink.azuresynapse.net'
+  'privatelink.azurewebsites.net'
+  'privatelink.batch.azure.com'
+  'privatelink.blob.core.windows.net'
+  'privatelink.cassandra.cosmos.azure.com'
+  'privatelink.cognitiveservices.azure.com'
+  'privatelink.database.windows.net'
+  'privatelink.datafactory.azure.net'
+  'privatelink.dev.azuresynapse.net'
+  'privatelink.dfs.core.windows.net'
+  'privatelink.dicom.azurehealthcareapis.com'
+  'privatelink.digitaltwins.azure.net'
+  'privatelink.directline.botframework.com'
+  'privatelink.documents.azure.com'
+  'privatelink.eventgrid.azure.net'
+  'privatelink.file.core.windows.net'
+  'privatelink.gremlin.cosmos.azure.com'
+  'privatelink.guestconfiguration.azure.com'
+  'privatelink.his.arc.azure.com'
+  'privatelink.kubernetesconfiguration.azure.com'
+  'privatelink.managedhsm.azure.net'
+  'privatelink.mariadb.database.azure.com'
+  'privatelink.media.azure.net'
+  'privatelink.mongo.cosmos.azure.com'
+  'privatelink.monitor.azure.com'
+  'privatelink.mysql.database.azure.com'
+  'privatelink.notebooks.azure.net'
+  'privatelink.ods.opinsights.azure.com'
+  'privatelink.oms.opinsights.azure.com'
+  'privatelink.pbidedicated.windows.net'
+  'privatelink.postgres.database.azure.com'
+  'privatelink.prod.migration.windowsazure.com'
+  'privatelink.purview.azure.com'
+  'privatelink.purviewstudio.azure.com'
+  'privatelink.queue.core.windows.net'
+  'privatelink.redis.cache.windows.net'
+  'privatelink.redisenterprise.cache.azure.net'
+  'privatelink.search.windows.net'
+  'privatelink.service.signalr.net'
+  'privatelink.servicebus.windows.net'
+  'privatelink.siterecovery.windowsazure.com'
+  'privatelink.sql.azuresynapse.net'
+  'privatelink.table.core.windows.net'
+  'privatelink.table.cosmos.azure.com'
+  'privatelink.tip1.powerquery.microsoft.com'
+  'privatelink.token.botframework.com'
+  'privatelink.vaultcore.azure.net'
+  'privatelink.web.core.windows.net'
+  'privatelink.webpubsub.azure.com'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
+
+param parVirtualNetworkIdToLinkFailover = ''
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
new file mode 100644
index 000000000..26d11f779
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
@@ -0,0 +1,75 @@
+using '../privateDnsZones.bicep'
+
+param parPrivateDnsZones = [
+  'privatelink.xxxxxx.azmk8s.io'
+  'privatelink.xxxxxx.batch.azure.com'
+  'privatelink.xxxxxx.kusto.windows.net'
+  'privatelink.xxxxxx.backup.windowsazure.com'
+  'privatelink.adf.azure.com'
+  'privatelink.afs.azure.net'
+  'privatelink.agentsvc.azure-automation.net'
+  'privatelink.analysis.windows.net'
+  'privatelink.api.azureml.ms'
+  'privatelink.azconfig.io'
+  'privatelink.azure-api.net'
+  'privatelink.azure-automation.net'
+  'privatelink.azurecr.io'
+  'privatelink.azure-devices.net'
+  'privatelink.azure-devices-provisioning.net'
+  'privatelink.azurehdinsight.net'
+  'privatelink.azurehealthcareapis.com'
+  'privatelink.azurestaticapps.net'
+  'privatelink.azuresynapse.net'
+  'privatelink.azurewebsites.net'
+  'privatelink.batch.azure.com'
+  'privatelink.blob.core.windows.net'
+  'privatelink.cassandra.cosmos.azure.com'
+  'privatelink.cognitiveservices.azure.com'
+  'privatelink.database.windows.net'
+  'privatelink.datafactory.azure.net'
+  'privatelink.dev.azuresynapse.net'
+  'privatelink.dfs.core.windows.net'
+  'privatelink.dicom.azurehealthcareapis.com'
+  'privatelink.digitaltwins.azure.net'
+  'privatelink.directline.botframework.com'
+  'privatelink.documents.azure.com'
+  'privatelink.eventgrid.azure.net'
+  'privatelink.file.core.windows.net'
+  'privatelink.gremlin.cosmos.azure.com'
+  'privatelink.guestconfiguration.azure.com'
+  'privatelink.his.arc.azure.com'
+  'privatelink.kubernetesconfiguration.azure.com'
+  'privatelink.managedhsm.azure.net'
+  'privatelink.mariadb.database.azure.com'
+  'privatelink.media.azure.net'
+  'privatelink.mongo.cosmos.azure.com'
+  'privatelink.monitor.azure.com'
+  'privatelink.mysql.database.azure.com'
+  'privatelink.notebooks.azure.net'
+  'privatelink.ods.opinsights.azure.com'
+  'privatelink.oms.opinsights.azure.com'
+  'privatelink.pbidedicated.windows.net'
+  'privatelink.postgres.database.azure.com'
+  'privatelink.prod.migration.windowsazure.com'
+  'privatelink.purview.azure.com'
+  'privatelink.purviewstudio.azure.com'
+  'privatelink.queue.core.windows.net'
+  'privatelink.redis.cache.windows.net'
+  'privatelink.redisenterprise.cache.azure.net'
+  'privatelink.search.windows.net'
+  'privatelink.service.signalr.net'
+  'privatelink.servicebus.windows.net'
+  'privatelink.siterecovery.windowsazure.com'
+  'privatelink.sql.azuresynapse.net'
+  'privatelink.table.core.windows.net'
+  'privatelink.table.cosmos.azure.com'
+  'privatelink.tip1.powerquery.microsoft.com'
+  'privatelink.token.botframework.com'
+  'privatelink.vaultcore.azure.net'
+  'privatelink.web.core.windows.net'
+  'privatelink.webpubsub.azure.com'
+]
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
new file mode 100644
index 000000000..05384d66f
--- /dev/null
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
@@ -0,0 +1,25 @@
+using '../publicIp.bicep'
+
+param parLocation = 'eastus'
+
+param parPublicIpName = 'alz'
+
+param parPublicIpSku = {
+  name: 'Standard'
+  tier: 'Regional'
+}
+
+param parPublicIpProperties = {
+  publicIpAddressVersion: 'IPv4'
+  publicIpAllocationMethod: 'Dynamic'
+  deleteOption: 'Delete'
+  idleTimeoutInMinutes: 4
+}
+
+param parAvailabilityZones = []
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
new file mode 100644
index 000000000..2f7f48963
--- /dev/null
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
@@ -0,0 +1,17 @@
+using '../publicIp.bicep'
+
+param parPublicIpName = 'alz'
+
+param parPublicIpSku = {
+  name: 'Standard'
+  tier: 'Regional'
+}
+
+param parPublicIpProperties = {
+  publicIpAddressVersion: 'IPv4'
+  publicIpAllocationMethod: 'Dynamic'
+  deleteOption: 'Delete'
+  idleTimeoutInMinutes: 4
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..9e97e759b
--- /dev/null
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../resourceGroup.bicep'
+
+param parLocation = 'eastus'
+
+param parResourceGroupName = 'alz-rg'
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..330746fd1
--- /dev/null
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
@@ -0,0 +1,7 @@
+using '../resourceGroup.bicep'
+
+param parLocation = 'eastus'
+
+param parResourceGroupName = 'alz-rg'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..220e4fa50
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..6e03bff97
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..9cf99ebb3
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..e7199c6ae
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..220e4fa50
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..6e03bff97
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentManagementGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..e9ae7af01
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..e9ae7af01
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..7817dc5ca
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..7817dc5ca
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..e9ae7af01
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..e9ae7af01
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentManagementGroupMany.bicep'
+
+param parManagementGroupIds = [
+  'alz-platform-connectivity'
+  'alz-platform-identity'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..9bf1e669e
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..8d9c69c3d
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..4272e7030
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..9ca34e17f
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..9bf1e669e
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..8d9c69c3d
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentResourceGroup.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..753f38535
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..753f38535
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..f30012246
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..f30012246
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..753f38535
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..753f38535
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentResourceGroupMany.bicep'
+
+param parResourceGroupIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..65a44627c
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..88e2f3bff
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..0c33d5aa3
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..e807cc9cd
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..65a44627c
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,11 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleAssignmentNameGuid = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..88e2f3bff
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../roleAssignmentSubscription.bicep'
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
new file mode 100644
index 000000000..a39f35a49
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
new file mode 100644
index 000000000..a39f35a49
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
new file mode 100644
index 000000000..ea527dafb
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
new file mode 100644
index 000000000..ea527dafb
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'Group'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
new file mode 100644
index 000000000..a39f35a49
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
new file mode 100644
index 000000000..a39f35a49
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
@@ -0,0 +1,14 @@
+using '../roleAssignmentSubscriptionMany.bicep'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parRoleDefinitionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parAssigneePrincipalType = 'ServicePrincipal'
+
+param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
new file mode 100644
index 000000000..6e5aeae53
--- /dev/null
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
@@ -0,0 +1,23 @@
+using '../spokeNetworking.bicep'
+
+param parLocation = 'eastus'
+
+param parDisableBgpRoutePropagation = false
+
+param parDdosProtectionPlanId = ''
+
+param parSpokeNetworkAddressPrefix = '10.11.0.0/16'
+
+param parSpokeNetworkName = 'vnet-spoke'
+
+param parDnsServerIps = []
+
+param parNextHopIpAddress = ''
+
+param parSpokeToHubRouteTableName = 'rtb-spoke-to-hub'
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
new file mode 100644
index 000000000..9693cda8b
--- /dev/null
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
@@ -0,0 +1,13 @@
+using '../spokeNetworking.bicep'
+
+param parDisableBgpRoutePropagation = false
+
+param parDdosProtectionPlanId = ''
+
+param parSpokeNetworkAddressPrefix = '10.11.0.0/16'
+
+param parDnsServerIps = []
+
+param parNextHopIpAddress = ''
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
new file mode 100644
index 000000000..8a33303f9
--- /dev/null
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
@@ -0,0 +1,9 @@
+using '../subscriptionPlacement.bicep'
+
+param parTargetManagementGroupId = 'alz-platform-connectivity'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
new file mode 100644
index 000000000..8a33303f9
--- /dev/null
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
@@ -0,0 +1,9 @@
+using '../subscriptionPlacement.bicep'
+
+param parTargetManagementGroupId = 'alz-platform-connectivity'
+
+param parSubscriptionIds = [
+  'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+]
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
new file mode 100644
index 000000000..0bb280fd5
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
@@ -0,0 +1,17 @@
+using '../vnetPeering.bicep'
+
+param parDestinationVirtualNetworkId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parSourceVirtualNetworkName = 'vnet-spoke'
+
+param parDestinationVirtualNetworkName = 'alz-hub-eastus'
+
+param parAllowVirtualNetworkAccess = true
+
+param parAllowForwardedTraffic = true
+
+param parAllowGatewayTransit = false
+
+param parUseRemoteGateways = false
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
new file mode 100644
index 000000000..0bb280fd5
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
@@ -0,0 +1,17 @@
+using '../vnetPeering.bicep'
+
+param parDestinationVirtualNetworkId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parSourceVirtualNetworkName = 'vnet-spoke'
+
+param parDestinationVirtualNetworkName = 'alz-hub-eastus'
+
+param parAllowVirtualNetworkAccess = true
+
+param parAllowForwardedTraffic = true
+
+param parAllowGatewayTransit = false
+
+param parUseRemoteGateways = false
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
new file mode 100644
index 000000000..f44f4ba03
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
@@ -0,0 +1,13 @@
+using '../vnetPeeringVwan.bicep'
+
+param parVirtualWanHubResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus'
+
+param parRemoteVirtualNetworkResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke'
+
+param parVirtualHubConnectionPrefix = ''
+
+param parVirtualHubConnectionSuffix = '-vhc'
+
+param parEnableInternetSecurity = false
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
new file mode 100644
index 000000000..ff31a3ad5
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
@@ -0,0 +1,7 @@
+using '../vnetPeeringVwan.bicep'
+
+param parVirtualWanHubResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus'
+
+param parRemoteVirtualNetworkResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
new file mode 100644
index 000000000..cbaebcd54
--- /dev/null
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
@@ -0,0 +1,92 @@
+using '../vwanConnectivity.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parCompanyPrefix = 'alz'
+
+param parAzFirewallTier = 'Standard'
+
+param parVirtualHubEnabled = true
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallDnsServers = []
+
+param parVirtualWanName = 'alz-vwan-chinaeast2'
+
+param parVirtualWanHubName = 'alz-vhub'
+
+param parVpnGatewayName = 'alz-vpngw'
+
+param parExpressRouteGatewayName = 'alz-ergw'
+
+param parAzFirewallName = 'alz-fw'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzFirewallPoliciesName = 'alz-azfwpolicy-chinaeast2'
+
+param parVirtualWanHubs = [
+  {
+    parVpnGatewayEnabled: true
+    parExpressRouteGatewayEnabled: true
+    parAzFirewallEnabled: true
+    parVirtualHubAddressPrefix: '10.100.0.0/23'
+    parHubLocation: 'chinaeast2'
+    parHubRoutingPreference: 'ExpressRoute'
+    parVirtualRouterAutoScaleConfiguration: 2
+    parVirtualHubRoutingIntentDestinations: []
+  }
+]
+
+param parVpnGatewayScaleUnit = 1
+
+param parExpressRouteGatewayScaleUnit = 1
+
+param parDdosEnabled = false
+
+param parDdosPlanName = 'alz-ddos-plan'
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
new file mode 100644
index 000000000..179b69c02
--- /dev/null
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
@@ -0,0 +1,70 @@
+using '../vwanConnectivity.bicep'
+
+param parLocation = 'chinaeast2'
+
+param parCompanyPrefix = 'alz'
+
+param parAzFirewallTier = 'Standard'
+
+param parVirtualHubEnabled = true
+
+param parVirtualWanHubs = [
+  {
+    parVpnGatewayEnabled: true
+    parExpressRouteGatewayEnabled: true
+    parAzFirewallEnabled: true
+    parVirtualHubAddressPrefix: '10.100.0.0/23'
+    parHubLocation: 'chinaeast2'
+    parHubRoutingPreference: 'ExpressRoute'
+    parVirtualRouterAutoScaleConfiguration: 2
+    parVirtualHubRoutingIntentDestinations: []
+  }
+]
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallAvailabilityZones = []
+
+param parVpnGatewayScaleUnit = 1
+
+param parExpressRouteGatewayScaleUnit = 1
+
+param parDdosEnabled = false
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.azure-automation.cn'
+  'privatelink.database.chinacloudapi.cn'
+  'privatelink.blob.core.chinacloudapi.cn'
+  'privatelink.table.core.chinacloudapi.cn'
+  'privatelink.queue.core.chinacloudapi.cn'
+  'privatelink.file.core.chinacloudapi.cn'
+  'privatelink.web.core.chinacloudapi.cn'
+  'privatelink.dfs.core.chinacloudapi.cn'
+  'privatelink.documents.azure.cn'
+  'privatelink.mongo.cosmos.azure.cn'
+  'privatelink.cassandra.cosmos.azure.cn'
+  'privatelink.gremlin.cosmos.azure.cn'
+  'privatelink.table.cosmos.azure.cn'
+  'privatelink.postgres.database.chinacloudapi.cn'
+  'privatelink.mysql.database.chinacloudapi.cn'
+  'privatelink.mariadb.database.chinacloudapi.cn'
+  'privatelink.vaultcore.azure.cn'
+  'privatelink.servicebus.chinacloudapi.cn'
+  'privatelink.azure-devices.cn'
+  'privatelink.eventgrid.azure.cn'
+  'privatelink.chinacloudsites.cn'
+  'privatelink.api.ml.azure.cn'
+  'privatelink.notebooks.chinacloudapi.cn'
+  'privatelink.signalr.azure.cn'
+  'privatelink.azurehdinsight.cn'
+  'privatelink.afs.azure.cn'
+  'privatelink.datafactory.azure.cn'
+  'privatelink.adf.azure.cn'
+  'privatelink.redis.cache.chinacloudapi.cn'
+]
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
new file mode 100644
index 000000000..755cbd2ee
--- /dev/null
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
@@ -0,0 +1,132 @@
+using '../vwanConnectivity.bicep'
+
+param parLocation = 'eastus'
+
+param parCompanyPrefix = 'alz'
+
+param parAzFirewallTier = 'Standard'
+
+param parVirtualHubEnabled = true
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallDnsServers = []
+
+param parVirtualWanName = 'alz-vwan-eastus'
+
+param parVirtualWanHubName = 'alz-vhub'
+
+param parVpnGatewayName = 'alz-vpngw'
+
+param parExpressRouteGatewayName = 'alz-ergw'
+
+param parAzFirewallName = 'alz-fw'
+
+param parAzFirewallAvailabilityZones = []
+
+param parAzFirewallPoliciesName = 'alz-azfwpolicy-eastus'
+
+param parVirtualWanHubs = [
+  {
+    parVpnGatewayEnabled: true
+    parExpressRouteGatewayEnabled: true
+    parAzFirewallEnabled: true
+    parVirtualHubAddressPrefix: '10.100.0.0/23'
+    parHubLocation: 'eastus'
+    parHubRoutingPreference: 'ExpressRoute'
+    parVirtualRouterAutoScaleConfiguration: 2
+    parVirtualHubRoutingIntentDestinations: []
+  }
+]
+
+param parVpnGatewayScaleUnit = 1
+
+param parExpressRouteGatewayScaleUnit = 1
+
+param parDdosEnabled = true
+
+param parDdosPlanName = 'alz-ddos-plan'
+
+param parPrivateDnsZonesEnabled = true
+
+param parPrivateDnsZones = [
+  'privatelink.xxxxxx.azmk8s.io'
+  'privatelink.xxxxxx.batch.azure.com'
+  'privatelink.xxxxxx.kusto.windows.net'
+  'privatelink.xxxxxx.backup.windowsazure.com'
+  'privatelink.adf.azure.com'
+  'privatelink.afs.azure.net'
+  'privatelink.agentsvc.azure-automation.net'
+  'privatelink.analysis.windows.net'
+  'privatelink.api.azureml.ms'
+  'privatelink.azconfig.io'
+  'privatelink.azure-api.net'
+  'privatelink.azure-automation.net'
+  'privatelink.azurecr.io'
+  'privatelink.azure-devices.net'
+  'privatelink.azure-devices-provisioning.net'
+  'privatelink.azurehdinsight.net'
+  'privatelink.azurehealthcareapis.com'
+  'privatelink.azurestaticapps.net'
+  'privatelink.azuresynapse.net'
+  'privatelink.azurewebsites.net'
+  'privatelink.batch.azure.com'
+  'privatelink.blob.core.windows.net'
+  'privatelink.cassandra.cosmos.azure.com'
+  'privatelink.cognitiveservices.azure.com'
+  'privatelink.database.windows.net'
+  'privatelink.datafactory.azure.net'
+  'privatelink.dev.azuresynapse.net'
+  'privatelink.dfs.core.windows.net'
+  'privatelink.dicom.azurehealthcareapis.com'
+  'privatelink.digitaltwins.azure.net'
+  'privatelink.directline.botframework.com'
+  'privatelink.documents.azure.com'
+  'privatelink.eventgrid.azure.net'
+  'privatelink.file.core.windows.net'
+  'privatelink.gremlin.cosmos.azure.com'
+  'privatelink.guestconfiguration.azure.com'
+  'privatelink.his.arc.azure.com'
+  'privatelink.kubernetesconfiguration.azure.com'
+  'privatelink.managedhsm.azure.net'
+  'privatelink.mariadb.database.azure.com'
+  'privatelink.media.azure.net'
+  'privatelink.mongo.cosmos.azure.com'
+  'privatelink.monitor.azure.com'
+  'privatelink.mysql.database.azure.com'
+  'privatelink.notebooks.azure.net'
+  'privatelink.ods.opinsights.azure.com'
+  'privatelink.oms.opinsights.azure.com'
+  'privatelink.pbidedicated.windows.net'
+  'privatelink.postgres.database.azure.com'
+  'privatelink.prod.migration.windowsazure.com'
+  'privatelink.purview.azure.com'
+  'privatelink.purviewstudio.azure.com'
+  'privatelink.queue.core.windows.net'
+  'privatelink.redis.cache.windows.net'
+  'privatelink.redisenterprise.cache.azure.net'
+  'privatelink.search.windows.net'
+  'privatelink.service.signalr.net'
+  'privatelink.servicebus.windows.net'
+  'privatelink.siterecovery.windowsazure.com'
+  'privatelink.sql.azuresynapse.net'
+  'privatelink.table.core.windows.net'
+  'privatelink.table.cosmos.azure.com'
+  'privatelink.tip1.powerquery.microsoft.com'
+  'privatelink.token.botframework.com'
+  'privatelink.vaultcore.azure.net'
+  'privatelink.web.core.windows.net'
+  'privatelink.webpubsub.azure.com'
+]
+
+param parPrivateDnsZoneAutoMergeAzureBackupZone = true
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parVirtualNetworkIdToLinkFailover = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus-failover'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
new file mode 100644
index 000000000..27074a19b
--- /dev/null
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
@@ -0,0 +1,36 @@
+using '../vwanConnectivity.bicep'
+
+param parCompanyPrefix = 'alz'
+
+param parAzFirewallTier = 'Standard'
+
+param parVirtualHubEnabled = true
+
+param parVirtualWanHubs = [
+  {
+    parVpnGatewayEnabled: true
+    parExpressRouteGatewayEnabled: true
+    parAzFirewallEnabled: true
+    parVirtualHubAddressPrefix: '10.100.0.0/23'
+    parHubLocation: 'eastus'
+    parHubRoutingPreference: 'ExpressRoute'
+    parVirtualRouterAutoScaleConfiguration: 2
+    parVirtualHubRoutingIntentDestinations: []
+  }
+]
+
+param parAzFirewallDnsProxyEnabled = true
+
+param parAzFirewallAvailabilityZones = []
+
+param parVpnGatewayScaleUnit = 1
+
+param parExpressRouteGatewayScaleUnit = 1
+
+param parDdosEnabled = true
+
+param parPrivateDnsZonesEnabled = true
+
+param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
new file mode 100644
index 000000000..5559dc3a7
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
@@ -0,0 +1,45 @@
+using '../hubPeeredSpoke.bicep'
+
+param parLocation = 'westeurope'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parPeeredVnetSubscriptionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parPeeredVnetSubscriptionMgPlacement = 'alz-platform-connectivity'
+
+param parDdosProtectionPlanId = ''
+
+param parSpokeNetworkName = 'vnet-spoke'
+
+param parSpokeNetworkAddressPrefix = '10.202.0.0/24'
+
+param parDnsServerIps = []
+
+param parPrivateDnsZoneResourceIds = []
+
+param parNextHopIpAddress = '10.20.255.4'
+
+param parDisableBgpRoutePropagation = false
+
+param parSpoketoHubRouteTableName = 'rtb-spoke-to-hub'
+
+param parHubVirtualNetworkId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualNetworks/alz-hub-westeurope'
+
+param parAllowSpokeForwardedTraffic = false
+
+param parAllowHubVPNGatewayTransit = true
+
+param parVirtualHubConnectionPrefix = ''
+
+param parVirtualHubConnectionSuffix = '-vhc'
+
+param parEnableInternetSecurity = false
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
new file mode 100644
index 000000000..6aae7019f
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
@@ -0,0 +1,43 @@
+using '../hubPeeredSpoke.bicep'
+
+param parLocation = 'westeurope'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parPeeredVnetSubscriptionId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
+
+param parPeeredVnetSubscriptionMgPlacement = 'alz-platform-connectivity'
+
+param parDdosProtectionPlanId = ''
+
+param parSpokeNetworkName = 'vnet-spoke'
+
+param parSpokeNetworkAddressPrefix = '10.202.0.0/24'
+
+param parDnsServerIps = []
+
+param parNextHopIpAddress = '10.20.255.4'
+
+param parDisableBgpRoutePropagation = false
+
+param parSpoketoHubRouteTableName = 'rtb-spoke-to-hub'
+
+param parHubVirtualNetworkId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualHubs/alz-vhub-westeurope'
+
+param parAllowSpokeForwardedTraffic = false
+
+param parAllowHubVPNGatewayTransit = true
+
+param parVirtualHubConnectionPrefix = ''
+
+param parVirtualHubConnectionSuffix = '-vhc'
+
+param parEnableInternetSecurity = false
+
+param parTags = {
+  Environment: 'Live'
+}
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
new file mode 100644
index 000000000..f5d163113
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
@@ -0,0 +1,19 @@
+using '../mgDiagSettingsAll.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parLandingZoneMgAlzDefaultsEnable = true
+
+param parPlatformMgAlzDefaultsEnable = true
+
+param parLandingZoneMgConfidentialEnable = false
+
+param parLogAnalyticsWorkspaceResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics'
+
+param parLandingZoneMgChildren = []
+
+param parPlatformMgChildren = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
new file mode 100644
index 000000000..9daa743f1
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
@@ -0,0 +1,7 @@
+using '../mgDiagSettingsAll.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parLogAnalyticsWorkspaceResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics'
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
new file mode 100644
index 000000000..6467d0003
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
@@ -0,0 +1,35 @@
+using '../subPlacementAll.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parTopLevelManagementGroupSuffix = ''
+
+param parIntRootMgSubs = []
+
+param parPlatformMgSubs = []
+
+param parPlatformManagementMgSubs = []
+
+param parPlatformConnectivityMgSubs = []
+
+param parPlatformIdentityMgSubs = []
+
+param parLandingZonesMgSubs = []
+
+param parLandingZonesCorpMgSubs = []
+
+param parLandingZonesOnlineMgSubs = []
+
+param parLandingZonesConfidentialCorpMgSubs = []
+
+param parLandingZonesConfidentialOnlineMgSubs = []
+
+param parLandingZoneMgChildrenSubs = {}
+
+param parPlatformMgChildrenSubs = {}
+
+param parDecommissionedMgSubs = []
+
+param parSandboxMgSubs = []
+
+param parTelemetryOptOut = false
\ No newline at end of file
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam
new file mode 100644
index 000000000..6419cfa6a
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam
@@ -0,0 +1,19 @@
+using '../subPlacementAll.bicep'
+
+param parTopLevelManagementGroupPrefix = 'alz'
+
+param parPlatformManagementMgSubs = []
+
+param parPlatformConnectivityMgSubs = []
+
+param parPlatformIdentityMgSubs = []
+
+param parLandingZonesCorpMgSubs = []
+
+param parLandingZonesOnlineMgSubs = []
+
+param parDecommissionedMgSubs = []
+
+param parSandboxMgSubs = []
+
+param parTelemetryOptOut = false
\ No newline at end of file

From 326089916ca5ec828b1a613188fa63429f2f5c5f Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 08:42:43 +0100
Subject: [PATCH 02/21] remove json

---
 .../customRoleDefinitions.parameters.all.json |  12 -
 .../customRoleDefinitions.parameters.min.json |  12 -
 .../hubNetworking.parameters.all.json         | 241 ------------------
 .../hubNetworking.parameters.min.json         | 117 ---------
 .../mc-hubNetworking.parameters.all.json      | 203 ---------------
 .../mc-hubNetworking.parameters.min.json      | 153 -----------
 .../parameters/logging.parameters.all.json    |  58 -----
 .../parameters/logging.parameters.min.json    |  32 ---
 .../parameters/mc-logging.parameters.all.json |  52 ----
 .../parameters/mc-logging.parameters.min.json |  32 ---
 .../managementGroups.parameters.all.json      |  36 ---
 .../managementGroups.parameters.min.json      |   9 -
 .../mgDiagSettings.parameters.all.json        |  12 -
 .../mgDiagSettings.parameters.min.json        |  12 -
 ...faultPolicyAssignments.parameters.all.json |  51 ----
 ...faultPolicyAssignments.parameters.min.json |  27 --
 ...ntManagementGroup.dine.parameters.all.json |  74 ------
 ...ntManagementGroup.dine.parameters.min.json |  49 ----
 ...ntManagementGroup.deny.parameters.all.json |  51 ----
 ...ntManagementGroup.deny.parameters.min.json |  30 ---
 ...ntManagementGroup.dine.parameters.all.json |  98 -------
 ...ntManagementGroup.dine.parameters.min.json |  73 ------
 ...ustomPolicyDefinitions.parameters.all.json |  12 -
 ...ustomPolicyDefinitions.parameters.min.json |   9 -
 .../privateDnsZoneLinks.parameters.all.json   |  12 -
 .../privateDnsZoneLinks.parameters.min.json   |  12 -
 .../mc-privateDnsZones.parameters.all.json    |  56 ----
 .../mc-privateDnsZones.parameters.min.json    |  48 ----
 .../privateDnsZones.parameters.all.json       |  97 -------
 .../privateDnsZones.parameters.min.json       |  83 ------
 .../parameters/publicIp.parameters.all.json   |  37 ---
 .../parameters/publicIp.parameters.min.json   |  26 --
 .../resourceGroup.parameters.all.json         |  20 --
 .../resourceGroup.parameters.min.json         |  15 --
 ...tGroup.managedIdentity.parameters.all.json |  21 --
 ...tGroup.managedIdentity.parameters.min.json |  18 --
 ...entGroup.securityGroup.parameters.all.json |  21 --
 ...entGroup.securityGroup.parameters.min.json |  18 --
 ...Group.servicePrincipal.parameters.all.json |  21 --
 ...Group.servicePrincipal.parameters.min.json |  18 --
 ...upMany.managedIdentity.parameters.all.json |  24 --
 ...upMany.managedIdentity.parameters.min.json |  24 --
 ...roupMany.securityGroup.parameters.all.json |  24 --
 ...roupMany.securityGroup.parameters.min.json |  24 --
 ...pMany.servicePrincipal.parameters.all.json |  24 --
 ...pMany.servicePrincipal.parameters.min.json |  24 --
 ...eGroup.managedIdentity.parameters.all.json |  21 --
 ...eGroup.managedIdentity.parameters.min.json |  18 --
 ...rceGroup.securityGroup.parameters.all.json |  21 --
 ...rceGroup.securityGroup.parameters.min.json |  18 --
 ...Group.servicePrincipal.parameters.all.json |  21 --
 ...Group.servicePrincipal.parameters.min.json |  18 --
 ...upMany.managedIdentity.parameters.all.json |  24 --
 ...upMany.managedIdentity.parameters.min.json |  24 --
 ...roupMany.securityGroup.parameters.all.json |  24 --
 ...roupMany.securityGroup.parameters.min.json |  24 --
 ...pMany.servicePrincipal.parameters.all.json |  24 --
 ...pMany.servicePrincipal.parameters.min.json |  24 --
 ...iption.managedIdentity.parameters.all.json |  21 --
 ...iption.managedIdentity.parameters.min.json |  18 --
 ...cription.securityGroup.parameters.all.json |  21 --
 ...cription.securityGroup.parameters.min.json |  18 --
 ...ption.servicePrincipal.parameters.all.json |  21 --
 ...ption.servicePrincipal.parameters.min.json |  18 --
 ...onMany.managedIdentity.parameters.all.json |  24 --
 ...onMany.managedIdentity.parameters.min.json |  24 --
 ...tionMany.securityGroup.parameters.all.json |  24 --
 ...tionMany.securityGroup.parameters.min.json |  24 --
 ...nMany.servicePrincipal.parameters.all.json |  24 --
 ...nMany.servicePrincipal.parameters.min.json |  24 --
 .../spokeNetworking.parameters.all.json       |  38 ---
 .../spokeNetworking.parameters.min.json       |  24 --
 .../subscriptionPlacement.parameters.all.json |  17 --
 .../subscriptionPlacement.parameters.min.json |  17 --
 .../vnetPeering.parameters.all.json           |  30 ---
 .../vnetPeering.parameters.min.json           |  30 ---
 .../vnetPeeringVwan.parameters.all.json       |  24 --
 .../vnetPeeringVwan.parameters.min.json       |  15 --
 .../mc-vwanConnectivity.parameters.all.json   | 121 ---------
 .../mc-vwanConnectivity.parameters.min.json   |  89 -------
 .../vwanConnectivity.parameters.all.json      | 162 ------------
 .../vwanConnectivity.parameters.min.json      |  53 ----
 82 files changed, 3264 deletions(-)
 delete mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.json
 delete mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json
 delete mode 100644 infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.json

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
deleted file mode 100644
index c0c35c39e..000000000
--- a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parAssignableScopeManagementGroupId": {
-      "value": "alz"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
deleted file mode 100644
index c0c35c39e..000000000
--- a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parAssignableScopeManagementGroupId": {
-      "value": "alz"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json
deleted file mode 100644
index 8e0908b17..000000000
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json
+++ /dev/null
@@ -1,241 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parHubNetworkName": {
-      "value": "alz-hub-eastus"
-    },
-    "parHubNetworkAddressPrefix": {
-      "value": "10.20.0.0/16"
-    },
-    "parSubnets": {
-      "value": [
-        {
-          "name": "AzureBastionSubnet",
-          "ipAddressRange": "10.20.0.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "GatewaySubnet",
-          "ipAddressRange": "10.20.254.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallSubnet",
-          "ipAddressRange": "10.20.255.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallManagementSubnet",
-          "ipAddressRange": "10.20.253.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        }
-      ]
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parPublicIpSku": {
-      "value": "Standard"
-    },
-    "parPublicIpPrefix": {
-      "value": ""
-    },
-    "parPublicIpSuffix": {
-      "value": "-PublicIP"
-    },
-    "parAzBastionEnabled": {
-      "value": true
-    },
-    "parAzBastionName": {
-      "value": "alz-bastion"
-    },
-    "parAzBastionSku": {
-      "value": "Standard"
-    },
-    "parAzBastionTunneling": {
-      "value": false
-    },
-    "parAzBastionNsgName": {
-      "value": "nsg-AzureBastionSubnet"
-    },
-    "parDdosEnabled": {
-      "value": true
-    },
-    "parDdosPlanName": {
-      "value": "alz-ddos-plan"
-    },
-    "parAzFirewallEnabled": {
-      "value": true
-    },
-    "parAzFirewallName": {
-      "value": "alz-azfw-eastus"
-    },
-    "parAzFirewallPoliciesName": {
-      "value": "alz-azfwpolicy-eastus"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzErGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzVpnGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsServers": {
-      "value": []
-    },
-    "parHubRouteTableName": {
-      "value": "alz-hub-routetable"
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.xxxxxx.azmk8s.io", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.batch.azure.com", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.kusto.windows.net", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.backup.windowsazure.com", // Replace xxxxxx with target region geo code (i.e. for eastus, the geo code is eus)
-        "privatelink.adf.azure.com",
-        "privatelink.afs.azure.net",
-        "privatelink.agentsvc.azure-automation.net",
-        "privatelink.analysis.windows.net",
-        "privatelink.api.azureml.ms",
-        "privatelink.azconfig.io",
-        "privatelink.azure-api.net",
-        "privatelink.azure-automation.net",
-        "privatelink.azurecr.io",
-        "privatelink.azure-devices.net",
-        "privatelink.azure-devices-provisioning.net",
-        "privatelink.azurehdinsight.net",
-        "privatelink.azurehealthcareapis.com",
-        "privatelink.azurestaticapps.net",
-        "privatelink.azuresynapse.net",
-        "privatelink.azurewebsites.net",
-        "privatelink.batch.azure.com",
-        "privatelink.blob.core.windows.net",
-        "privatelink.cassandra.cosmos.azure.com",
-        "privatelink.cognitiveservices.azure.com",
-        "privatelink.database.windows.net",
-        "privatelink.datafactory.azure.net",
-        "privatelink.dev.azuresynapse.net",
-        "privatelink.dfs.core.windows.net",
-        "privatelink.dicom.azurehealthcareapis.com",
-        "privatelink.digitaltwins.azure.net",
-        "privatelink.directline.botframework.com",
-        "privatelink.documents.azure.com",
-        "privatelink.eventgrid.azure.net",
-        "privatelink.file.core.windows.net",
-        "privatelink.gremlin.cosmos.azure.com",
-        "privatelink.guestconfiguration.azure.com",
-        "privatelink.his.arc.azure.com",
-        "privatelink.kubernetesconfiguration.azure.com",
-        "privatelink.managedhsm.azure.net",
-        "privatelink.mariadb.database.azure.com",
-        "privatelink.media.azure.net",
-        "privatelink.mongo.cosmos.azure.com",
-        "privatelink.monitor.azure.com",
-        "privatelink.mysql.database.azure.com",
-        "privatelink.notebooks.azure.net",
-        "privatelink.ods.opinsights.azure.com",
-        "privatelink.oms.opinsights.azure.com",
-        "privatelink.pbidedicated.windows.net",
-        "privatelink.postgres.database.azure.com",
-        "privatelink.prod.migration.windowsazure.com",
-        "privatelink.purview.azure.com",
-        "privatelink.purviewstudio.azure.com",
-        "privatelink.queue.core.windows.net",
-        "privatelink.redis.cache.windows.net",
-        "privatelink.redisenterprise.cache.azure.net",
-        "privatelink.search.windows.net",
-        "privatelink.service.signalr.net",
-        "privatelink.servicebus.windows.net",
-        "privatelink.siterecovery.windowsazure.com",
-        "privatelink.sql.azuresynapse.net",
-        "privatelink.table.core.windows.net",
-        "privatelink.table.cosmos.azure.com",
-        "privatelink.tip1.powerquery.microsoft.com",
-        "privatelink.token.botframework.com",
-        "privatelink.vaultcore.azure.net",
-        "privatelink.web.core.windows.net",
-        "privatelink.webpubsub.azure.com"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parVpnGatewayConfig": {
-      "value": {
-        "name": "alz-Vpn-Gateway",
-        "gatewayType": "Vpn",
-        "sku": "VpnGw1",
-        "vpnType": "RouteBased",
-        "generation": "Generation1",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parExpressRouteGatewayConfig": {
-      "value": {
-        "name": "alz-ExpressRoute-Gateway",
-        "gatewayType": "ExpressRoute",
-        "sku": "Standard",
-        "vpnType": "RouteBased",
-        "generation": "None",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    },
-    "parBastionOutboundSshRdpPorts": {
-      "value": [
-        "22",
-        "3389"
-      ]
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.json b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.json
deleted file mode 100644
index d0ea43f5e..000000000
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.json
+++ /dev/null
@@ -1,117 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parHubNetworkAddressPrefix": {
-      "value": "10.20.0.0/16"
-    },
-    "parSubnets": {
-      "value": [
-        {
-          "name": "AzureBastionSubnet",
-          "ipAddressRange": "10.20.0.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "GatewaySubnet",
-          "ipAddressRange": "10.20.254.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallSubnet",
-          "ipAddressRange": "10.20.255.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallManagementSubnet",
-          "ipAddressRange": "10.20.253.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        }
-      ]
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parPublicIpSku": {
-      "value": "Standard"
-    },
-    "parAzBastionEnabled": {
-      "value": true
-    },
-    "parAzBastionSku": {
-      "value": "Standard"
-    },
-    "parDdosEnabled": {
-      "value": true
-    },
-    "parAzFirewallEnabled": {
-      "value": true
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzErGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzVpnGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parVpnGatewayConfig": {
-      "value": {
-        "name": "alz-Vpn-Gateway",
-        "gatewayType": "Vpn",
-        "sku": "VpnGw1",
-        "vpnType": "RouteBased",
-        "generation": "Generation1",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parExpressRouteGatewayConfig": {
-      "value": {
-        "name": "alz-ExpressRoute-Gateway",
-        "gatewayType": "ExpressRoute",
-        "sku": "Standard",
-        "vpnType": "RouteBased",
-        "generation": "None",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json
deleted file mode 100644
index 2abd81ea3..000000000
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json
+++ /dev/null
@@ -1,203 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parHubNetworkName": {
-      "value": "alz-hub-chinaeast2"
-    },
-    "parHubNetworkAddressPrefix": {
-      "value": "10.20.0.0/16"
-    },
-    "parSubnets": {
-      "value": [
-        {
-          "name": "AzureBastionSubnet",
-          "ipAddressRange": "10.20.0.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "GatewaySubnet",
-          "ipAddressRange": "10.20.254.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallSubnet",
-          "ipAddressRange": "10.20.255.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallManagementSubnet",
-          "ipAddressRange": "10.20.253.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        }
-      ]
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parPublicIpSku": {
-      "value": "Standard"
-    },
-    "parPublicIpPrefix": {
-      "value": ""
-    },
-    "parPublicIpSuffix": {
-      "value": "-PublicIP"
-    },
-    "parAzBastionEnabled": {
-      "value": true
-    },
-    "parAzBastionName": {
-      "value": "alz-bastion"
-    },
-    "parAzBastionSku": {
-      "value": "Standard"
-    },
-    "parAzBastionTunneling": {
-      "value": false
-    },
-    "parAzBastionNsgName": {
-      "value": "nsg-AzureBastionSubnet"
-    },
-    "parDdosEnabled": {
-      "value": false
-    },
-    "parDdosPlanName": {
-      "value": "alz-ddos-plan"
-    },
-    "parAzFirewallEnabled": {
-      "value": true
-    },
-    "parAzFirewallName": {
-      "value": "alz-azfw-chinaeast2"
-    },
-    "parAzFirewallPoliciesName": {
-      "value": "alz-azfwpolicy-chinaeast2"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzErGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzVpnGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsServers": {
-      "value": []
-    },
-    "parHubRouteTableName": {
-      "value": "alz-hub-routetable"
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parVpnGatewayConfig": {
-      "value": {
-        "name": "alz-Vpn-Gateway",
-        "gatewayType": "Vpn",
-        "sku": "VpnGw1",
-        "vpnType": "RouteBased",
-        "generation": "Generation1",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parExpressRouteGatewayConfig": {
-      "value": {
-        "name": "alz-ExpressRoute-Gateway",
-        "gatewayType": "ExpressRoute",
-        "sku": "Standard",
-        "vpnType": "RouteBased",
-        "generation": "None",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    },
-    "parBastionOutboundSshRdpPorts": {
-      "value": [
-        "22",
-        "3389"
-      ]
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.json b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.json
deleted file mode 100644
index c16d37ab6..000000000
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.json
+++ /dev/null
@@ -1,153 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parHubNetworkAddressPrefix": {
-      "value": "10.20.0.0/16"
-    },
-    "parSubnets": {
-      "value": [
-        {
-          "name": "AzureBastionSubnet",
-          "ipAddressRange": "10.20.0.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "GatewaySubnet",
-          "ipAddressRange": "10.20.254.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallSubnet",
-          "ipAddressRange": "10.20.255.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        },
-        {
-          "name": "AzureFirewallManagementSubnet",
-          "ipAddressRange": "10.20.253.0/24",
-          "networkSecurityGroupId": "",
-          "routeTableId": ""
-        }
-      ]
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parPublicIpSku": {
-      "value": "Standard"
-    },
-    "parAzBastionEnabled": {
-      "value": true
-    },
-    "parAzBastionSku": {
-      "value": "Standard"
-    },
-    "parDdosEnabled": {
-      "value": false
-    },
-    "parAzFirewallEnabled": {
-      "value": true
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzErGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzVpnGatewayAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parVpnGatewayConfig": {
-      "value": {
-        "name": "alz-Vpn-Gateway",
-        "gatewayType": "Vpn",
-        "sku": "VpnGw1",
-        "vpnType": "RouteBased",
-        "generation": "Generation1",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parExpressRouteGatewayConfig": {
-      "value": {
-        "name": "alz-ExpressRoute-Gateway",
-        "gatewayType": "ExpressRoute",
-        "sku": "Standard",
-        "vpnType": "RouteBased",
-        "generation": "None",
-        "enableBgp": false,
-        "activeActive": false,
-        "enableBgpRouteTranslationForNat": false,
-        "enableDnsForwarding": false,
-        "bgpPeeringAddress": "",
-        "bgpsettings": {
-          "asn": "65515",
-          "bgpPeeringAddress": "",
-          "peerWeight": "5"
-        }
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
deleted file mode 100644
index 51abbf1c0..000000000
--- a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
+++ /dev/null
@@ -1,58 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceName": {
-      "value": "alz-log-analytics"
-    },
-    "parLogAnalyticsWorkspaceLocation": {
-      "value": "eastus"
-    },
-    "parLogAnalyticsWorkspaceSkuName": {
-      "value": "PerGB2018"
-    },
-    "parLogAnalyticsWorkspaceCapacityReservationLevel": {
-      "value": 100
-    },
-    "parLogAnalyticsWorkspaceLogRetentionInDays": {
-      "value": 365
-    },
-    "parLogAnalyticsWorkspaceSolutions": {
-      "value": [
-        "AgentHealthAssessment",
-        "AntiMalware",
-        "ChangeTracking",
-        "Security",
-        "SecurityInsights",
-        "SQLAdvancedThreatProtection",
-        "SQLVulnerabilityAssessment",
-        "SQLAssessment",
-        "Updates",
-        "VMInsights"
-      ]
-    },
-    "parLogAnalyticsWorkspaceLinkAutomationAccount": {
-      "value": true
-    },
-    "parAutomationAccountName": {
-      "value": "alz-automation-account"
-    },
-    "parAutomationAccountLocation": {
-      "value": "eastus2"
-    },
-    "parAutomationAccountUseManagedIdentity": {
-      "value": true
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parUseSentinelClassicPricingTiers": {
-      "value": false
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
deleted file mode 100644
index a962c9a3f..000000000
--- a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
+++ /dev/null
@@ -1,32 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceLogRetentionInDays": {
-      "value": 365
-    },
-    "parLogAnalyticsWorkspaceLocation": {
-      "value": "eastus"
-    },
-    "parLogAnalyticsWorkspaceSolutions": {
-      "value": [
-        "AgentHealthAssessment",
-        "AntiMalware",
-        "ChangeTracking",
-        "Security",
-        "SecurityInsights",
-        "SQLAdvancedThreatProtection",
-        "SQLVulnerabilityAssessment",
-        "SQLAssessment",
-        "Updates",
-        "VMInsights"
-      ]
-    },
-    "parAutomationAccountLocation": {
-      "value": "eastus2"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
deleted file mode 100644
index 5881fbcd0..000000000
--- a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
+++ /dev/null
@@ -1,52 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceName": {
-      "value": "alz-log-analytics"
-    },
-    "parLogAnalyticsWorkspaceLocation": {
-      "value": "chinaeast2"
-    },
-    "parLogAnalyticsWorkspaceSkuName": {
-      "value": "PerGB2018"
-    },
-    "parLogAnalyticsWorkspaceLogRetentionInDays": {
-      "value": 365
-    },
-    "parLogAnalyticsWorkspaceSolutions": {
-      "value": [
-        "AgentHealthAssessment",
-        "AntiMalware",
-        "ChangeTracking",
-        "Security",
-        "SecurityInsights",
-        "SQLAdvancedThreatProtection",
-        "SQLVulnerabilityAssessment",
-        "SQLAssessment",
-        "Updates",
-        "VMInsights"
-      ]
-    },
-    "parLogAnalyticsWorkspaceLinkAutomationAccount": {
-      "value": true
-    },
-    "parAutomationAccountName": {
-      "value": "alz-automation-account"
-    },
-    "parAutomationAccountLocation": {
-      "value": "chinaeast2"
-    },
-    "parAutomationAccountUseManagedIdentity": {
-      "value": true
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
deleted file mode 100644
index 04d9b40d4..000000000
--- a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
+++ /dev/null
@@ -1,32 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceLocation": {
-      "value": "chinaeast2"
-    },
-    "parLogAnalyticsWorkspaceLogRetentionInDays": {
-      "value": 365
-    },
-    "parLogAnalyticsWorkspaceSolutions": {
-      "value": [
-        "AgentHealthAssessment",
-        "AntiMalware",
-        "ChangeTracking",
-        "Security",
-        "SecurityInsights",
-        "SQLAdvancedThreatProtection",
-        "SQLVulnerabilityAssessment",
-        "SQLAssessment",
-        "Updates",
-        "VMInsights"
-      ]
-    },
-    "parAutomationAccountLocation": {
-      "value": "chinaeast2"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
deleted file mode 100644
index 1111b9469..000000000
--- a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
+++ /dev/null
@@ -1,36 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parTopLevelManagementGroupDisplayName": {
-      "value": "Azure Landing Zones"
-    },
-    "parTopLevelManagementGroupParentId": {
-      "value": ""
-    },
-    "parLandingZoneMgAlzDefaultsEnable": {
-      "value": true
-    },
-    "parPlatformMgAlzDefaultsEnable": {
-      "value": true
-    },
-    "parLandingZoneMgConfidentialEnable": {
-      "value": false
-    },
-    "parLandingZoneMgChildren": {
-      "value": {}
-    },
-    "parPlatformMgChildren": {
-      "value": {}
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
deleted file mode 100644
index 04dfd1df2..000000000
--- a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
+++ /dev/null
@@ -1,9 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
deleted file mode 100644
index e20f3a315..000000000
--- a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceResourceId": {
-      "value": ""
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
deleted file mode 100644
index e20f3a315..000000000
--- a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLogAnalyticsWorkspaceResourceId": {
-      "value": ""
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json
deleted file mode 100644
index d5b4e7ea4..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json
+++ /dev/null
@@ -1,51 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parLogAnalyticsWorkSpaceAndAutomationAccountLocation": {
-      "value": "eastus"
-    },
-    "parLogAnalyticsWorkspaceResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics"
-    },
-    "parLogAnalyticsWorkspaceLogRetentionInDays": {
-      "value": "365"
-    },
-    "parAutomationAccountName": {
-      "value": "alz-automation-account"
-    },
-    "parMsDefenderForCloudEmailSecurityContact": {
-      "value": "security_contact@replace_me.com"
-    },
-    "parDdosProtectionPlanId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001/providers/Microsoft.Network/ddosProtectionPlans/alz-ddos-plan"
-    },
-    "parPrivateDnsResourceGroupId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001"
-    },
-    "parPrivateDnsZonesNamesToAuditInCorp": {
-      "value": []
-    },
-    "parDisableAlzDefaultPolicies": {
-      "value": false
-    },
-    "parVmBackupExclusionTagName": {
-      "value": ""
-    },
-    "parVmBackupExclusionTagValue": {
-      "value": []
-    },
-    "parExcludedPolicyAssignments": {
-      "value": []
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
deleted file mode 100644
index 515ac1130..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
+++ /dev/null
@@ -1,27 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parTopLevelManagementGroupPrefix": {
-            "value": "alz"
-        },
-        "parLogAnalyticsWorkSpaceAndAutomationAccountLocation": {
-            "value": "eastus"
-        },
-        "parLogAnalyticsWorkspaceResourceId": {
-            "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics"
-        },
-        "parLogAnalyticsWorkspaceLogRetentionInDays": {
-            "value": "365"
-        },
-        "parAutomationAccountName": {
-            "value": "alz-automation-account"
-        },
-        "parMsDefenderForCloudEmailSecurityContact": {
-            "value": "security_contact@replace_me.com"
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
deleted file mode 100644
index 148103cbd..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
+++ /dev/null
@@ -1,74 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deploy-ASCDF-Config"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deploy Microsoft Defender for Cloud configuration"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "Deploy Microsoft Defender for Cloud and Security Contacts"
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {
-                "emailSecurityContact": {
-                    "value": "security_contact@replace_me"
-                },
-                "logAnalytics": {
-                    "value": "alz-log-analytics"
-                },
-                "ascExportResourceGroupName": {
-                    "value": "alz-asc-export"
-                },
-                "ascExportResourceGroupLocation": {
-                    "value": "${parDefaultRegion}"
-                },
-                "enableAscForServers": {
-                    "value": "Disabled"
-                },
-                "enableAscForSql": {
-                    "value": "Disabled"
-                }
-            }
-        },
-        "parPolicyAssignmentParameterOverrides": {
-            "value": {}
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parPolicyAssignmentEnforcementMode": {
-            "value": "Default"
-        },
-        "parPolicyAssignmentIdentityType": {
-            "value": "SystemAssigned"
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
-            "value": [
-                "alz-platform"
-            ]
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
-            "value": []
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
-          "value": []
-        },
-        "parPolicyAssignmentIdentityRoleDefinitionIds": {
-            "value": [
-                "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
-            ]
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
deleted file mode 100644
index 9a4f27e29..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
+++ /dev/null
@@ -1,49 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deploy-ASCDF-Config"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deploy Microsoft Defender for Cloud configuration"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "Deploy Microsoft Defender for Cloud and Security Contacts"
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {
-                "emailSecurityContact": {
-                    "value": "security_contact@replace_me"
-                },
-                "logAnalytics": {
-                    "value": "alz-log-analytics"
-                },
-                "ascExportResourceGroupName": {
-                    "value": "alz-asc-export"
-                },
-                "ascExportResourceGroupLocation": {
-                    "value": "${parDefaultRegion}"
-                },
-                "enableAscForServers": {
-                    "value": "Disabled"
-                },
-                "enableAscForSql": {
-                    "value": "Disabled"
-                }
-            }
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
deleted file mode 100644
index a6dc700da..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
+++ /dev/null
@@ -1,51 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deny-PublicIP"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deny the creation of public IP"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "This policy denies creation of Public IPs under the assigned scope."
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {}
-        },
-        "parPolicyAssignmentParameterOverrides": {
-            "value": {}
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parPolicyAssignmentEnforcementMode": {
-            "value": "Default"
-        },
-        "parPolicyAssignmentIdentityType": {
-            "value": "None"
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
-            "value": []
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
-            "value": []
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
-          "value": []
-        },
-        "parPolicyAssignmentIdentityRoleDefinitionIds": {
-            "value": []
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
deleted file mode 100644
index 6025094e5..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
+++ /dev/null
@@ -1,30 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deny-PublicIP"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deny the creation of public IP"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "This policy denies creation of Public IPs under the assigned scope."
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {}
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
deleted file mode 100644
index 314325ac1..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
+++ /dev/null
@@ -1,98 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deploy-MDFC-Config"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deploy Microsoft Defender for Cloud configuration"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "Deploy Microsoft Defender for Cloud configuration and Security Contacts"
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {
-                "emailSecurityContact": {
-                    "value": "security_contact@replace_me"
-                },
-                "logAnalytics": {
-                    "value": "alz-la"
-                },
-                "ascExportResourceGroupName": {
-                    "value": "alz-asc-export"
-                },
-                "ascExportResourceGroupLocation": {
-                    "value": "${parDefaultRegion}"
-                },
-                "enableAscForServers": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForSql": {
-                    "value": "Disabled"
-                },
-                "enableAscForAppServices": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForStorage": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForContainers": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForKeyVault": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForSqlOnVm": {
-                    "value": "Disabled"
-                },
-                "enableAscForArm": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForDns": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForOssDb": {
-                    "value": "Disabled"
-                }
-            }
-        },
-        "parPolicyAssignmentParameterOverrides": {
-            "value": {}
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parPolicyAssignmentEnforcementMode": {
-            "value": "Default"
-        },
-        "parPolicyAssignmentIdentityType": {
-            "value": "SystemAssigned"
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
-            "value": [
-                "alz-platform"
-            ]
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
-            "value": []
-        },
-        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
-          "value": []
-        },
-        "parPolicyAssignmentIdentityRoleDefinitionIds": {
-            "value": [
-                "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
-            ]
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
deleted file mode 100644
index fc8572a5d..000000000
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
+++ /dev/null
@@ -1,73 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPolicyAssignmentName": {
-            "value": "Deploy-MDFC-Config"
-        },
-        "parPolicyAssignmentDisplayName": {
-            "value": "Deploy Microsoft Defender for Cloud configuration"
-        },
-        "parPolicyAssignmentDescription": {
-            "value": "Deploy Microsoft Defender for Cloud configuration and Security Contacts"
-        },
-        "parPolicyAssignmentDefinitionId": {
-            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config"
-        },
-        "parPolicyAssignmentParameters": {
-            "value": {
-                "emailSecurityContact": {
-                    "value": "security_contact@replace_me"
-                },
-                "logAnalytics": {
-                    "value": "alz-la"
-                },
-                "ascExportResourceGroupName": {
-                    "value": "alz-asc-export"
-                },
-                "ascExportResourceGroupLocation": {
-                    "value": "${parDefaultRegion}"
-                },
-                "enableAscForServers": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForSql": {
-                    "value": "Disabled"
-                },
-                "enableAscForAppServices": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForStorage": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForContainers": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForKeyVault": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForSqlOnVm": {
-                    "value": "Disabled"
-                },
-                "enableAscForArm": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForDns": {
-                    "value": "DeployIfNotExists"
-                },
-                "enableAscForOssDb": {
-                    "value": "Disabled"
-                }
-            }
-        },
-        "parPolicyAssignmentNonComplianceMessages": {
-            "value": []
-        },
-        "parPolicyAssignmentNotScopes": {
-            "value": []
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
deleted file mode 100644
index d30044fcd..000000000
--- a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parTargetManagementGroupId": {
-            "value": "alz"
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
deleted file mode 100644
index fc8925036..000000000
--- a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
+++ /dev/null
@@ -1,9 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
deleted file mode 100644
index f0bb9fd41..000000000
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSpokeVirtualNetworkResourceId": {
-      "value": ""
-    },
-    "parPrivateDnsZoneResourceIds":{
-      "value": []
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
deleted file mode 100644
index f0bb9fd41..000000000
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
+++ /dev/null
@@ -1,12 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSpokeVirtualNetworkResourceId": {
-      "value": ""
-    },
-    "parPrivateDnsZoneResourceIds":{
-      "value": []
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
deleted file mode 100644
index e387e2596..000000000
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
+++ /dev/null
@@ -1,56 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
deleted file mode 100644
index ff3ebeee2..000000000
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
+++ /dev/null
@@ -1,48 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json
deleted file mode 100644
index 2f84bdac0..000000000
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json
+++ /dev/null
@@ -1,97 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.xxxxxx.azmk8s.io", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.batch.azure.com", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.kusto.windows.net", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.backup.windowsazure.com", // Replace xxxxxx with target region geo code (i.e. for eastus, the geo code is eus)
-        "privatelink.adf.azure.com",
-        "privatelink.afs.azure.net",
-        "privatelink.agentsvc.azure-automation.net",
-        "privatelink.analysis.windows.net",
-        "privatelink.api.azureml.ms",
-        "privatelink.azconfig.io",
-        "privatelink.azure-api.net",
-        "privatelink.azure-automation.net",
-        "privatelink.azurecr.io",
-        "privatelink.azure-devices.net",
-        "privatelink.azure-devices-provisioning.net",
-        "privatelink.azurehdinsight.net",
-        "privatelink.azurehealthcareapis.com",
-        "privatelink.azurestaticapps.net",
-        "privatelink.azuresynapse.net",
-        "privatelink.azurewebsites.net",
-        "privatelink.batch.azure.com",
-        "privatelink.blob.core.windows.net",
-        "privatelink.cassandra.cosmos.azure.com",
-        "privatelink.cognitiveservices.azure.com",
-        "privatelink.database.windows.net",
-        "privatelink.datafactory.azure.net",
-        "privatelink.dev.azuresynapse.net",
-        "privatelink.dfs.core.windows.net",
-        "privatelink.dicom.azurehealthcareapis.com",
-        "privatelink.digitaltwins.azure.net",
-        "privatelink.directline.botframework.com",
-        "privatelink.documents.azure.com",
-        "privatelink.eventgrid.azure.net",
-        "privatelink.file.core.windows.net",
-        "privatelink.gremlin.cosmos.azure.com",
-        "privatelink.guestconfiguration.azure.com",
-        "privatelink.his.arc.azure.com",
-        "privatelink.kubernetesconfiguration.azure.com",
-        "privatelink.managedhsm.azure.net",
-        "privatelink.mariadb.database.azure.com",
-        "privatelink.media.azure.net",
-        "privatelink.mongo.cosmos.azure.com",
-        "privatelink.monitor.azure.com",
-        "privatelink.mysql.database.azure.com",
-        "privatelink.notebooks.azure.net",
-        "privatelink.ods.opinsights.azure.com",
-        "privatelink.oms.opinsights.azure.com",
-        "privatelink.pbidedicated.windows.net",
-        "privatelink.postgres.database.azure.com",
-        "privatelink.prod.migration.windowsazure.com",
-        "privatelink.purview.azure.com",
-        "privatelink.purviewstudio.azure.com",
-        "privatelink.queue.core.windows.net",
-        "privatelink.redis.cache.windows.net",
-        "privatelink.redisenterprise.cache.azure.net",
-        "privatelink.search.windows.net",
-        "privatelink.service.signalr.net",
-        "privatelink.servicebus.windows.net",
-        "privatelink.siterecovery.windowsazure.com",
-        "privatelink.sql.azuresynapse.net",
-        "privatelink.table.core.windows.net",
-        "privatelink.table.cosmos.azure.com",
-        "privatelink.tip1.powerquery.microsoft.com",
-        "privatelink.token.botframework.com",
-        "privatelink.vaultcore.azure.net",
-        "privatelink.web.core.windows.net",
-        "privatelink.webpubsub.azure.com"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
-    },
-    "parVirtualNetworkIdToLinkFailover": {
-      "value": ""
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.json
deleted file mode 100644
index 3f3a46316..000000000
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.json
+++ /dev/null
@@ -1,83 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.xxxxxx.azmk8s.io", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.batch.azure.com", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.kusto.windows.net", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.backup.windowsazure.com", // Replace xxxxxx with target region geo code (i.e. for eastus, the geo code is eus)
-        "privatelink.adf.azure.com",
-        "privatelink.afs.azure.net",
-        "privatelink.agentsvc.azure-automation.net",
-        "privatelink.analysis.windows.net",
-        "privatelink.api.azureml.ms",
-        "privatelink.azconfig.io",
-        "privatelink.azure-api.net",
-        "privatelink.azure-automation.net",
-        "privatelink.azurecr.io",
-        "privatelink.azure-devices.net",
-        "privatelink.azure-devices-provisioning.net",
-        "privatelink.azurehdinsight.net",
-        "privatelink.azurehealthcareapis.com",
-        "privatelink.azurestaticapps.net",
-        "privatelink.azuresynapse.net",
-        "privatelink.azurewebsites.net",
-        "privatelink.batch.azure.com",
-        "privatelink.blob.core.windows.net",
-        "privatelink.cassandra.cosmos.azure.com",
-        "privatelink.cognitiveservices.azure.com",
-        "privatelink.database.windows.net",
-        "privatelink.datafactory.azure.net",
-        "privatelink.dev.azuresynapse.net",
-        "privatelink.dfs.core.windows.net",
-        "privatelink.dicom.azurehealthcareapis.com",
-        "privatelink.digitaltwins.azure.net",
-        "privatelink.directline.botframework.com",
-        "privatelink.documents.azure.com",
-        "privatelink.eventgrid.azure.net",
-        "privatelink.file.core.windows.net",
-        "privatelink.gremlin.cosmos.azure.com",
-        "privatelink.guestconfiguration.azure.com",
-        "privatelink.his.arc.azure.com",
-        "privatelink.kubernetesconfiguration.azure.com",
-        "privatelink.managedhsm.azure.net",
-        "privatelink.mariadb.database.azure.com",
-        "privatelink.media.azure.net",
-        "privatelink.mongo.cosmos.azure.com",
-        "privatelink.monitor.azure.com",
-        "privatelink.mysql.database.azure.com",
-        "privatelink.notebooks.azure.net",
-        "privatelink.ods.opinsights.azure.com",
-        "privatelink.oms.opinsights.azure.com",
-        "privatelink.pbidedicated.windows.net",
-        "privatelink.postgres.database.azure.com",
-        "privatelink.prod.migration.windowsazure.com",
-        "privatelink.purview.azure.com",
-        "privatelink.purviewstudio.azure.com",
-        "privatelink.queue.core.windows.net",
-        "privatelink.redis.cache.windows.net",
-        "privatelink.redisenterprise.cache.azure.net",
-        "privatelink.search.windows.net",
-        "privatelink.service.signalr.net",
-        "privatelink.servicebus.windows.net",
-        "privatelink.siterecovery.windowsazure.com",
-        "privatelink.sql.azuresynapse.net",
-        "privatelink.table.core.windows.net",
-        "privatelink.table.cosmos.azure.com",
-        "privatelink.tip1.powerquery.microsoft.com",
-        "privatelink.token.botframework.com",
-        "privatelink.vaultcore.azure.net",
-        "privatelink.web.core.windows.net",
-        "privatelink.webpubsub.azure.com"
-      ]
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
deleted file mode 100644
index 40de9e5ec..000000000
--- a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
+++ /dev/null
@@ -1,37 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parPublicIpName": {
-      "value": "alz"
-    },
-    "parPublicIpSku": {
-      "value": {
-        "name": "Standard",
-        "tier": "Regional"
-      }
-    },
-    "parPublicIpProperties": {
-      "value": {
-        "publicIpAddressVersion": "IPv4",
-        "publicIpAllocationMethod": "Dynamic",
-        "deleteOption": "Delete",
-        "idleTimeoutInMinutes": 4
-      }
-    },
-    "parAvailabilityZones": {
-      "value": []
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
deleted file mode 100644
index 85fc1f5e6..000000000
--- a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
+++ /dev/null
@@ -1,26 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parPublicIpName": {
-            "value": "alz"
-        },
-        "parPublicIpSku": {
-            "value": {
-                "name": "Standard",
-                "tier": "Regional"
-            }
-        },
-        "parPublicIpProperties": {
-            "value": {
-                "publicIpAddressVersion": "IPv4",
-                "publicIpAllocationMethod": "Dynamic",
-                "deleteOption": "Delete",
-                "idleTimeoutInMinutes": 4
-            }
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
deleted file mode 100644
index 6dcf98ff6..000000000
--- a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
+++ /dev/null
@@ -1,20 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parResourceGroupName": {
-      "value": "alz-rg"
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
deleted file mode 100644
index b273c06b5..000000000
--- a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
+++ /dev/null
@@ -1,15 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parLocation": {
-            "value": "eastus"
-        },
-        "parResourceGroupName": {
-            "value": "alz-rg"
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
deleted file mode 100644
index 12c90c3de..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
deleted file mode 100644
index 4501e72e4..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
deleted file mode 100644
index 8851ff752..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
deleted file mode 100644
index bc5415eb9..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
deleted file mode 100644
index 12c90c3de..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
deleted file mode 100644
index 4501e72e4..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
deleted file mode 100644
index 1e52c0bdd..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
deleted file mode 100644
index 1e52c0bdd..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
deleted file mode 100644
index 11fd45b44..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
deleted file mode 100644
index 11fd45b44..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
deleted file mode 100644
index 1e52c0bdd..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
deleted file mode 100644
index 1e52c0bdd..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parManagementGroupIds": {
-      "value": [
-        "alz-platform-connectivity",
-        "alz-platform-identity"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
deleted file mode 100644
index 391a338c7..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
deleted file mode 100644
index 1fabe9273..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
deleted file mode 100644
index c5d868fb0..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
deleted file mode 100644
index 084bb3419..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
deleted file mode 100644
index 391a338c7..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
deleted file mode 100644
index 1fabe9273..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
deleted file mode 100644
index b710c3995..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
deleted file mode 100644
index b710c3995..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
deleted file mode 100644
index 84825a5f8..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
deleted file mode 100644
index 84825a5f8..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
deleted file mode 100644
index b710c3995..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
deleted file mode 100644
index b710c3995..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parResourceGroupIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
deleted file mode 100644
index 12c90c3de..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
deleted file mode 100644
index 4501e72e4..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
deleted file mode 100644
index 8851ff752..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
deleted file mode 100644
index bc5415eb9..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
deleted file mode 100644
index 12c90c3de..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,21 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleAssignmentNameGuid": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
deleted file mode 100644
index 4501e72e4..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
deleted file mode 100644
index bae222003..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
deleted file mode 100644
index bae222003..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
deleted file mode 100644
index 034a798b5..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
deleted file mode 100644
index 034a798b5..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "Group"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
deleted file mode 100644
index bae222003..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
deleted file mode 100644
index bae222003..000000000
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parRoleDefinitionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parAssigneePrincipalType": {
-      "value": "ServicePrincipal"
-    },
-    "parAssigneeObjectId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
deleted file mode 100644
index 112b11a08..000000000
--- a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
+++ /dev/null
@@ -1,38 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parDdosProtectionPlanId": {
-      "value": ""
-    },
-    "parSpokeNetworkAddressPrefix": {
-      "value": "10.11.0.0/16"
-    },
-    "parSpokeNetworkName": {
-      "value": "vnet-spoke"
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parNextHopIpAddress": {
-      "value": ""
-    },
-    "parSpokeToHubRouteTableName": {
-      "value": "rtb-spoke-to-hub"
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
deleted file mode 100644
index a6a793508..000000000
--- a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-    "contentVersion": "1.0.0.0",
-    "parameters": {
-        "parDisableBgpRoutePropagation": {
-            "value": false
-        },
-        "parDdosProtectionPlanId": {
-            "value": ""
-        },
-        "parSpokeNetworkAddressPrefix": {
-            "value": "10.11.0.0/16"
-        },
-        "parDnsServerIps": {
-            "value": []
-        },
-        "parNextHopIpAddress": {
-            "value": ""
-        },
-        "parTelemetryOptOut": {
-            "value": false
-        }
-    }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
deleted file mode 100644
index 2ed01fb87..000000000
--- a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
+++ /dev/null
@@ -1,17 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTargetManagementGroupId": {
-      "value": "alz-platform-connectivity"
-    },
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
deleted file mode 100644
index 2ed01fb87..000000000
--- a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
+++ /dev/null
@@ -1,17 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTargetManagementGroupId": {
-      "value": "alz-platform-connectivity"
-    },
-    "parSubscriptionIds": {
-      "value": [
-        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-      ]
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
deleted file mode 100644
index 90e26b482..000000000
--- a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
+++ /dev/null
@@ -1,30 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parDestinationVirtualNetworkId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parSourceVirtualNetworkName": {
-      "value": "vnet-spoke"
-    },
-    "parDestinationVirtualNetworkName": {
-      "value": "alz-hub-eastus"
-    },
-    "parAllowVirtualNetworkAccess": {
-      "value": true
-    },
-    "parAllowForwardedTraffic": {
-      "value": true
-    },
-    "parAllowGatewayTransit": {
-      "value": false
-    },
-    "parUseRemoteGateways": {
-      "value": false
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
deleted file mode 100644
index 90e26b482..000000000
--- a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
+++ /dev/null
@@ -1,30 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parDestinationVirtualNetworkId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parSourceVirtualNetworkName": {
-      "value": "vnet-spoke"
-    },
-    "parDestinationVirtualNetworkName": {
-      "value": "alz-hub-eastus"
-    },
-    "parAllowVirtualNetworkAccess": {
-      "value": true
-    },
-    "parAllowForwardedTraffic": {
-      "value": true
-    },
-    "parAllowGatewayTransit": {
-      "value": false
-    },
-    "parUseRemoteGateways": {
-      "value": false
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
deleted file mode 100644
index f60555284..000000000
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
+++ /dev/null
@@ -1,24 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parVirtualWanHubResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus"
-    },
-    "parRemoteVirtualNetworkResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke"
-    },
-    "parVirtualHubConnectionPrefix": {
-      "value": ""
-    },
-    "parVirtualHubConnectionSuffix": {
-      "value": "-vhc"
-    },
-    "parEnableInternetSecurity": {
-      "value": false
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
deleted file mode 100644
index a20679aad..000000000
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
+++ /dev/null
@@ -1,15 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parVirtualWanHubResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus"
-    },
-    "parRemoteVirtualNetworkResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json
deleted file mode 100644
index 271df5c9a..000000000
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json
+++ /dev/null
@@ -1,121 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parVirtualHubEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsServers": {
-      "value": []
-    },
-    "parVirtualWanName": {
-      "value": "alz-vwan-chinaeast2"
-    },
-    "parVirtualWanHubName": {
-      "value": "alz-vhub"
-    },
-    "parVpnGatewayName": {
-      "value": "alz-vpngw"
-    },
-    "parExpressRouteGatewayName": {
-      "value": "alz-ergw"
-    },
-    "parAzFirewallName": {
-      "value": "alz-fw"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallPoliciesName": {
-      "value": "alz-azfwpolicy-chinaeast2"
-    },
-    "parVirtualWanHubs": {
-      "value": [
-        {
-          "parVpnGatewayEnabled": true,
-          "parExpressRouteGatewayEnabled": true,
-          "parAzFirewallEnabled": true,
-          "parVirtualHubAddressPrefix": "10.100.0.0/23",
-          "parHubLocation": "chinaeast2",
-          "parHubRoutingPreference": "ExpressRoute",
-          "parVirtualRouterAutoScaleConfiguration": 2,
-          "parVirtualHubRoutingIntentDestinations": []
-        }
-      ]
-    },
-    "parVpnGatewayScaleUnit": {
-      "value": 1
-    },
-    "parExpressRouteGatewayScaleUnit": {
-      "value": 1
-    },
-    "parDdosEnabled": {
-      "value": false
-    },
-    "parDdosPlanName": {
-      "value": "alz-ddos-plan"
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.json b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.json
deleted file mode 100644
index bfb71011b..000000000
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.json
+++ /dev/null
@@ -1,89 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "chinaeast2"
-    },
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parVirtualHubEnabled": {
-      "value": true
-    },
-    "parVirtualWanHubs": {
-      "value": [
-        {
-          "parVpnGatewayEnabled": true,
-          "parExpressRouteGatewayEnabled": true,
-          "parAzFirewallEnabled": true,
-          "parVirtualHubAddressPrefix": "10.100.0.0/23",
-          "parHubLocation": "chinaeast2",
-          "parHubRoutingPreference": "ExpressRoute",
-          "parVirtualRouterAutoScaleConfiguration": 2,
-          "parVirtualHubRoutingIntentDestinations": []
-        }
-      ]
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parVpnGatewayScaleUnit": {
-      "value": 1
-    },
-    "parExpressRouteGatewayScaleUnit": {
-      "value": 1
-    },
-    "parDdosEnabled": {
-      "value": false
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.azure-automation.cn",
-        "privatelink.database.chinacloudapi.cn",
-        "privatelink.blob.core.chinacloudapi.cn",
-        "privatelink.table.core.chinacloudapi.cn",
-        "privatelink.queue.core.chinacloudapi.cn",
-        "privatelink.file.core.chinacloudapi.cn",
-        "privatelink.web.core.chinacloudapi.cn",
-        "privatelink.dfs.core.chinacloudapi.cn",
-        "privatelink.documents.azure.cn",
-        "privatelink.mongo.cosmos.azure.cn",
-        "privatelink.cassandra.cosmos.azure.cn",
-        "privatelink.gremlin.cosmos.azure.cn",
-        "privatelink.table.cosmos.azure.cn",
-        "privatelink.postgres.database.chinacloudapi.cn",
-        "privatelink.mysql.database.chinacloudapi.cn",
-        "privatelink.mariadb.database.chinacloudapi.cn",
-        "privatelink.vaultcore.azure.cn",
-        "privatelink.servicebus.chinacloudapi.cn",
-        "privatelink.azure-devices.cn",
-        "privatelink.eventgrid.azure.cn",
-        "privatelink.chinacloudsites.cn",
-        "privatelink.api.ml.azure.cn",
-        "privatelink.notebooks.chinacloudapi.cn",
-        "privatelink.signalr.azure.cn",
-        "privatelink.azurehdinsight.cn",
-        "privatelink.afs.azure.cn",
-        "privatelink.datafactory.azure.cn",
-        "privatelink.adf.azure.cn",
-        "privatelink.redis.cache.chinacloudapi.cn"
-      ]
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json
deleted file mode 100644
index bbcc8f3ea..000000000
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json
+++ /dev/null
@@ -1,162 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "eastus"
-    },
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parVirtualHubEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallDnsServers": {
-      "value": []
-    },
-    "parVirtualWanName": {
-      "value": "alz-vwan-eastus"
-    },
-    "parVirtualWanHubName": {
-      "value": "alz-vhub"
-    },
-    "parVpnGatewayName": {
-      "value": "alz-vpngw"
-    },
-    "parExpressRouteGatewayName": {
-      "value": "alz-ergw"
-    },
-    "parAzFirewallName": {
-      "value": "alz-fw"
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parAzFirewallPoliciesName": {
-      "value": "alz-azfwpolicy-eastus"
-    },
-    "parVirtualWanHubs": {
-      "value": [
-        {
-          "parVpnGatewayEnabled": true,
-          "parExpressRouteGatewayEnabled": true,
-          "parAzFirewallEnabled": true,
-          "parVirtualHubAddressPrefix": "10.100.0.0/23",
-          "parHubLocation": "eastus",
-          "parHubRoutingPreference": "ExpressRoute",
-          "parVirtualRouterAutoScaleConfiguration": 2,
-          "parVirtualHubRoutingIntentDestinations": []
-        }
-      ]
-    },
-    "parVpnGatewayScaleUnit": {
-      "value": 1
-    },
-    "parExpressRouteGatewayScaleUnit": {
-      "value": 1
-    },
-    "parDdosEnabled": {
-      "value": true
-    },
-    "parDdosPlanName": {
-      "value": "alz-ddos-plan"
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZones": {
-      "value": [
-        "privatelink.xxxxxx.azmk8s.io", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.batch.azure.com", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.kusto.windows.net", // Replace xxxxxx with target region (i.e. eastus)
-        "privatelink.xxxxxx.backup.windowsazure.com", // Replace xxxxxx with target region geo code (i.e. for eastus, the geo code is eus)
-        "privatelink.adf.azure.com",
-        "privatelink.afs.azure.net",
-        "privatelink.agentsvc.azure-automation.net",
-        "privatelink.analysis.windows.net",
-        "privatelink.api.azureml.ms",
-        "privatelink.azconfig.io",
-        "privatelink.azure-api.net",
-        "privatelink.azure-automation.net",
-        "privatelink.azurecr.io",
-        "privatelink.azure-devices.net",
-        "privatelink.azure-devices-provisioning.net",
-        "privatelink.azurehdinsight.net",
-        "privatelink.azurehealthcareapis.com",
-        "privatelink.azurestaticapps.net",
-        "privatelink.azuresynapse.net",
-        "privatelink.azurewebsites.net",
-        "privatelink.batch.azure.com",
-        "privatelink.blob.core.windows.net",
-        "privatelink.cassandra.cosmos.azure.com",
-        "privatelink.cognitiveservices.azure.com",
-        "privatelink.database.windows.net",
-        "privatelink.datafactory.azure.net",
-        "privatelink.dev.azuresynapse.net",
-        "privatelink.dfs.core.windows.net",
-        "privatelink.dicom.azurehealthcareapis.com",
-        "privatelink.digitaltwins.azure.net",
-        "privatelink.directline.botframework.com",
-        "privatelink.documents.azure.com",
-        "privatelink.eventgrid.azure.net",
-        "privatelink.file.core.windows.net",
-        "privatelink.gremlin.cosmos.azure.com",
-        "privatelink.guestconfiguration.azure.com",
-        "privatelink.his.arc.azure.com",
-        "privatelink.kubernetesconfiguration.azure.com",
-        "privatelink.managedhsm.azure.net",
-        "privatelink.mariadb.database.azure.com",
-        "privatelink.media.azure.net",
-        "privatelink.mongo.cosmos.azure.com",
-        "privatelink.monitor.azure.com",
-        "privatelink.mysql.database.azure.com",
-        "privatelink.notebooks.azure.net",
-        "privatelink.ods.opinsights.azure.com",
-        "privatelink.oms.opinsights.azure.com",
-        "privatelink.pbidedicated.windows.net",
-        "privatelink.postgres.database.azure.com",
-        "privatelink.prod.migration.windowsazure.com",
-        "privatelink.purview.azure.com",
-        "privatelink.purviewstudio.azure.com",
-        "privatelink.queue.core.windows.net",
-        "privatelink.redis.cache.windows.net",
-        "privatelink.redisenterprise.cache.azure.net",
-        "privatelink.search.windows.net",
-        "privatelink.service.signalr.net",
-        "privatelink.servicebus.windows.net",
-        "privatelink.siterecovery.windowsazure.com",
-        "privatelink.sql.azuresynapse.net",
-        "privatelink.table.core.windows.net",
-        "privatelink.table.cosmos.azure.com",
-        "privatelink.tip1.powerquery.microsoft.com",
-        "privatelink.token.botframework.com",
-        "privatelink.vaultcore.azure.net",
-        "privatelink.web.core.windows.net",
-        "privatelink.webpubsub.azure.com"
-      ]
-    },
-    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
-      "value": true
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parVirtualNetworkIdToLinkFailover": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus-failover"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.json b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.json
deleted file mode 100644
index bdfe0344c..000000000
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.json
+++ /dev/null
@@ -1,53 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parCompanyPrefix": {
-      "value": "alz"
-    },
-    "parAzFirewallTier": {
-      "value": "Standard"
-    },
-    "parVirtualHubEnabled": {
-      "value": true
-    },
-    "parVirtualWanHubs": {
-      "value": [
-        {
-          "parVpnGatewayEnabled": true,
-          "parExpressRouteGatewayEnabled": true,
-          "parAzFirewallEnabled": true,
-          "parVirtualHubAddressPrefix": "10.100.0.0/23",
-          "parHubLocation": "eastus",
-          "parHubRoutingPreference": "ExpressRoute",
-          "parVirtualRouterAutoScaleConfiguration": 2,
-          "parVirtualHubRoutingIntentDestinations": []
-        }
-      ]
-    },
-    "parAzFirewallDnsProxyEnabled": {
-      "value": true
-    },
-    "parAzFirewallAvailabilityZones": {
-      "value": []
-    },
-    "parVpnGatewayScaleUnit": {
-      "value": 1
-    },
-    "parExpressRouteGatewayScaleUnit": {
-      "value": 1
-    },
-    "parDdosEnabled": {
-      "value": true
-    },
-    "parPrivateDnsZonesEnabled": {
-      "value": true
-    },
-    "parVirtualNetworkIdToLink": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}

From 84acbecc60554ebb62447d7aac5826628720d343 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 11:59:53 +0100
Subject: [PATCH 03/21] docs and testing so far

---
 .../modules/customRoleDefinitions/README.md   | 14 ++++----
 .../bicep/modules/hubNetworking/README.md     | 14 ++++----
 infra-as-code/bicep/modules/logging/README.md | 14 ++++----
 .../bicep/modules/managementGroups/README.md  | 33 +++----------------
 .../bicep/modules/mgDiagSettings/README.md    | 22 ++++++-------
 .../modules/policy/assignments/README.md      | 22 ++++++-------
 .../policy/assignments/alzDefaults/README.md  |  8 ++---
 .../modules/policy/definitions/README.md      | 14 ++++----
 .../modules/privateDnsZoneLinks/README.md     | 18 +++++-----
 .../bicep/modules/privateDnsZones/README.md   | 30 ++++++++---------
 .../bicep/modules/roleAssignments/README.md   | 10 +++---
 .../bicep/modules/spokeNetworking/README.md   | 10 +++---
 12 files changed, 92 insertions(+), 117 deletions(-)

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/README.md b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
index 9340eaf1a..b000841cd 100644
--- a/infra-as-code/bicep/modules/customRoleDefinitions/README.md
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
@@ -36,12 +36,12 @@ There are two different sets of deployment; one for deploying to Azure global re
 
  | Azure Cloud    | Bicep template                 | Input parameters file                             |
  | -------------- | ------------------------------ | ------------------------------------------------- |
- | Global regions | customRoleDefinitions.bicep    | parameters/customRoleDefinitions.parameters.all.json |
- | China regions  | mc-customRoleDefinitions.bicep | parameters/customRoleDefinitions.parameters.all.json |
+ | Global regions | customRoleDefinitions.bicep    | parameters/customRoleDefinitions.parameters.all.bicepparam |
+ | China regions  | mc-customRoleDefinitions.bicep | parameters/customRoleDefinitions.parameters.all.bicepparam |
 
 In this example, the custom roles will be deployed to the `alz` management group (the intermediate root management group).
 
-Input parameter file `parameters/customRoleDefinitions.parameters.all.json` defines the assignable scope for the roles.  In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
+Input parameter file `parameters/customRoleDefinitions.parameters.all.bicepparam` defines the assignable scope for the roles.  In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -59,7 +59,7 @@ LOCATION="eastus"
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -76,7 +76,7 @@ LOCATION="chinaeast2"
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -91,7 +91,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -105,7 +105,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/hubNetworking/README.md b/infra-as-code/bicep/modules/hubNetworking/README.md
index da89c0937..cd6b3dca0 100644
--- a/infra-as-code/bicep/modules/hubNetworking/README.md
+++ b/infra-as-code/bicep/modules/hubNetworking/README.md
@@ -21,7 +21,7 @@ Module deploys the following resources:
 > **NOTE:**
 > - Although there are generated parameter markdowns for Azure Commercial Cloud, this same module can still be used in Azure China. Example parameter are in the [parameters](./parameters/) folder.
 >
-> - When deploying using the `parameters/hubNetworking.parameters.all.json` you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region or geo code, for Azure Backup. Failure to do so will cause these services to be unreachable over private endpoints.
+> - When deploying using the `parameters/hubNetworking.parameters.all.bicepparam` you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region or geo code, for Azure Backup. Failure to do so will cause these services to be unreachable over private endpoints.
 >
 > For example, if deploying to East US the following zone entries:
 > - `privatelink.xxxxxx.azmk8s.io`
@@ -60,8 +60,8 @@ There are two different sets of input parameters; one for deploying to Azure glo
 
  | Azure Cloud    | Bicep template      | Input parameters file                           |
  | -------------- | ------------------- | ----------------------------------------------- |
- | Global regions | hubNetworking.bicep | parameters/hubNetworking.parameters.all.json    |
- | China regions  | hubNetworking.bicep | parameters/mc-hubNetworking.parameters.all.json |
+ | Global regions | hubNetworking.bicep | parameters/hubNetworking.parameters.all.bicepparam    |
+ | China regions  | hubNetworking.bicep | parameters/mc-hubNetworking.parameters.all.bicepparam |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -81,7 +81,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-HubNetworkingDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam"
 
 az group create --location eastus \
    --name $GROUP
@@ -103,7 +103,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-HubNetworkingDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam"
 
 az group create --location chinaeast2 \
    --name $GROUP
@@ -131,7 +131,7 @@ $inputObject = @{
   DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
   TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam"
 }
 
 New-AzResourceGroup `
@@ -156,7 +156,7 @@ $inputObject = @{
   DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
   TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam"
 }
 
 New-AzResourceGroup `
diff --git a/infra-as-code/bicep/modules/logging/README.md b/infra-as-code/bicep/modules/logging/README.md
index 5ba38b7a9..7c0feb416 100644
--- a/infra-as-code/bicep/modules/logging/README.md
+++ b/infra-as-code/bicep/modules/logging/README.md
@@ -27,13 +27,13 @@ The module will deploy the following Log Analytics Workspace solutions by defaul
 
 ## Deployment
 
-In this example, a Log Analytics Workspace and Automation Account will be deployed to the resource group `alz-logging`.  The inputs for this module are defined in `logging.parameters.all.json`.
+In this example, a Log Analytics Workspace and Automation Account will be deployed to the resource group `alz-logging`.  The inputs for this module are defined in `logging.parameters.all.bicepparam`.
 
 There are separate input parameters files depending on which Azure cloud you are deploying because this module deploys resources into an existing resource group under the specified region. There is no change to the Bicep template file.
 | Azure Cloud    | Bicep template | Input parameters file                     |
 | -------------- | -------------- | ----------------------------------------- |
-| Global regions | logging.bicep  | parameters/logging.parameters.all.json    |
-| China regions  | logging.bicep  | parameters/mc-logging.parameters.all.json |
+| Global regions | logging.bicep  | parameters/logging.parameters.all.bicepparam    |
+| China regions  | logging.bicep  | parameters/mc-logging.parameters.all.bicepparam |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 > If the deployment failed due an error that your alz-log-analytics/Automation resource of type 'Microsoft.OperationalInsights/workspaces/linkedServices' was not found, please retry the deployment step and it would succeed.
@@ -53,7 +53,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 GROUP="rg-$TopLevelMGPrefix-logging-001"
 NAME="alz-loggingDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -77,7 +77,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 GROUP="rg-$TopLevelMGPrefix-logging-001"
 NAME="alz-loggingDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -103,7 +103,7 @@ $inputObject = @{
   DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
   TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
 }
 
 Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
@@ -129,7 +129,7 @@ $inputObject = @{
   DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
   TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
 }
 
 Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
diff --git a/infra-as-code/bicep/modules/managementGroups/README.md b/infra-as-code/bicep/modules/managementGroups/README.md
index 0c7210376..9732e7dc5 100644
--- a/infra-as-code/bicep/modules/managementGroups/README.md
+++ b/infra-as-code/bicep/modules/managementGroups/README.md
@@ -89,31 +89,6 @@ parPlatformMgChildren: {
 }
 ```
 
-##### JSON Parameter File Input Example
-
-```json
-"parLandingZoneMgChildren": {
-    "value": {
-        "pci": {
-          "displayName": "PCI"
-        },
-        "another-example": {
-          "displayName": "Another Example"
-        }
-    }
-},
-"parPlatformMgChildren": {
-    "value": {
-        "security": {
-          "displayName": "Security"
-        },
-        "yet-another-example": {
-          "displayName": "Yet Another Example"
-        }
-    }
-}
-```
-
 ## Outputs
 
 The module will generate the following outputs:
@@ -150,7 +125,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="eastus"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -162,7 +137,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -176,7 +151,7 @@ $inputObject = @{
   DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   Location              = 'EastUS'
   TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
 }
 New-AzTenantDeployment @inputObject
 ```
@@ -188,7 +163,7 @@ $inputObject = @{
   DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   Location              = 'chinaeast2'
   TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
 }
 New-AzTenantDeployment @inputObject
 ```
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/README.md b/infra-as-code/bicep/modules/mgDiagSettings/README.md
index b53ce685d..40b5bf65f 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/README.md
+++ b/infra-as-code/bicep/modules/mgDiagSettings/README.md
@@ -13,7 +13,7 @@ This module enables the supported Diagnostic Settings categories on a Management
 
 ## Deployment
 
-The inputs for this module are defined in `parameters/mgDiagSettings.parameters.all.json`. The Diagnostic Settings resource will be named toLa but can be changed in the module if desired.
+The inputs for this module are defined in `parameters/mgDiagSettings.parameters.all.bicepparam`. The Diagnostic Settings resource will be named toLa but can be changed in the module if desired.
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -23,7 +23,7 @@ The inputs for this module are defined in `parameters/mgDiagSettings.parameters.
 # For Azure global regions
 az deployment mg create \
   --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
-  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json \
+  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
   --location eastus \
   --management-group-id alz
 ```
@@ -34,7 +34,7 @@ OR
 # For Azure China regions
 az deployment mg create \
   --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
-  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json \
+  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
   --location chinaeast2 \
   --management-group-id alz
 ```
@@ -44,10 +44,10 @@ az deployment mg create \
 ```powershell
 # For Azure global regions
 New-AzManagementGroupDeployment `
-  -TemplateFile infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep `
-  -TemplateParameterFile @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json `
-  -Location eastus `
-  -ManagementGroupId alz
+  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam" `
+  -Location "eastus" `
+  -ManagementGroupId "alz"
 ```
 
 OR
@@ -55,10 +55,10 @@ OR
 ```powershell
 # For Azure China regions
 New-AzManagementGroupDeployment `
-  -TemplateFile infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep `
-  -TemplateParameterFile @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json `
-  -Location chinaeast2 `
-  -ManagementGroupId alz
+  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam" `
+  -Location "chinaeast2" `
+  -ManagementGroupId "alz"
 ```
 
 ## Validation
diff --git a/infra-as-code/bicep/modules/policy/assignments/README.md b/infra-as-code/bicep/modules/policy/assignments/README.md
index 55cd4f0f7..17b1f603e 100644
--- a/infra-as-code/bicep/modules/policy/assignments/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/README.md
@@ -32,7 +32,7 @@ In this example, the `Deny-PublicIP` custom policy definition will be deployed/a
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
 
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
 LOCATION="eastus"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
@@ -46,7 +46,7 @@ OR
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
 
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
 LOCATION="chinaeast2"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
@@ -63,7 +63,7 @@ $inputObject = @{
   DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ManagementGroupId     = 'alz-landingzones'
   Location              = 'eastus'
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
 }
 New-AzManagementGroupDeployment @inputObject
@@ -76,7 +76,7 @@ $inputObject = @{
   DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ManagementGroupId     = 'alz-landingzones'
   Location              = 'chinaeast2'
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
 }
 New-AzManagementGroupDeployment @inputObject
@@ -88,11 +88,11 @@ There are two different sets of input parameters files; one for deploying to Azu
 
  | Azure Cloud    | Bicep template                        | Input parameters file                                           |
  | -------------- | ------------------------------------- | --------------------------------------------------------------- |
- | Global regions | policyAssignmentManagementGroup.bicep | parameters/policyAssignmentManagementGroup.dine.parameters.all.json    |
- | China regions  | policyAssignmentManagementGroup.bicep | parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json |
+ | Global regions | policyAssignmentManagementGroup.bicep | parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam    |
+ | China regions  | policyAssignmentManagementGroup.bicep | parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam |
 
 
-In this example, the `Deploy-MDFC-Config` custom policy definition will be deployed/assigned to the `alz-landingzones` management group (intermediate root management group). And the managed identity associated with the policy will also be assigned to the `alz-platform` management group, as defined in the parameter file: `parameters/policyAssignmentManagementGroup.dine.parameters.all.json` or `parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json`
+In this example, the `Deploy-MDFC-Config` custom policy definition will be deployed/assigned to the `alz-landingzones` management group (intermediate root management group). And the managed identity associated with the policy will also be assigned to the `alz-platform` management group, as defined in the parameter file: `parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam` or `parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam`
 #### Azure CLI - DINE
 
 ```bash
@@ -103,7 +103,7 @@ NAME="alz-PolicyDineAssignments-${dateYMD}"
 LOCATION="eastus"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam"
 
 az deployment mg create --name $NAME --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -116,7 +116,7 @@ NAME="alz-PolicyDineAssignments-${dateYMD}"
 LOCATION="eastus"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam"
 
 az deployment mg create --name $NAME --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -131,7 +131,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz-landingzones'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-  TemplateParameterFile = '@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -145,7 +145,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz-landingzones'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
index 8d810922a..a15916917 100644
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
@@ -33,7 +33,7 @@ NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -46,7 +46,7 @@ NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -61,7 +61,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -75,7 +75,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/mc-alzDefaultPolicyAssignments.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/mc-alzDefaultPolicyAssignments.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/policy/definitions/README.md b/infra-as-code/bicep/modules/policy/definitions/README.md
index 9c5dc0d64..ca6f1aa4b 100644
--- a/infra-as-code/bicep/modules/policy/definitions/README.md
+++ b/infra-as-code/bicep/modules/policy/definitions/README.md
@@ -27,12 +27,12 @@ There are two different sets of deployment; one for deploying to Azure global re
 
  | Azure Cloud    | Bicep template                     | Input parameters file                             |
  | -------------- | ---------------------------------- | ------------------------------------------------- |
- | Global regions | customPolicyDefinitions.bicep    | parameters/customPolicyDefinitions.parameters.all.json |
- | China regions  | mc-customPolicyDefinitions.bicep | parameters/customPolicyDefinitions.parameters.all.json |
+ | Global regions | customPolicyDefinitions.bicep    | parameters/customPolicyDefinitions.parameters.all.bicepparam |
+ | China regions  | mc-customPolicyDefinitions.bicep | parameters/customPolicyDefinitions.parameters.all.bicepparam |
 
 In this example, the custom policy definitions and policy set definitions will be deployed to the `alz` management group (the intermediate root management group).
 
-The input parameter file `parameters/customPolicyDefinitions.parameters.all.json` defines the target management group to which the custom policy definitions will be deployed to. In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
+The input parameter file `parameters/customPolicyDefinitions.parameters.all.bicepparam` defines the target management group to which the custom policy definitions will be deployed to. In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 > If the deployment provisioning state has failed due to policy definitions could not be found, this is often due to a known replication delay. Please re-run the deployment step below, and the deployment should succeed.
@@ -47,7 +47,7 @@ NAME="alz-PolicyDefsDefaults-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -60,7 +60,7 @@ NAME="alz-PolicyDefsDefaults-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -75,7 +75,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -89,7 +89,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam'
 }
 New-AzManagementGroupDeployment @inputObject
 ```
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
index 7308245dd..80baf60d6 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
@@ -13,7 +13,7 @@ This module is used by the Hub Peered Spoke orchestration module to create virtu
 
 ## Deployment
 
-The inputs for this module are defined in `parameters/privateDnsZoneLinks.parameters.all.json`.
+The inputs for this module are defined in `parameters/privateDnsZoneLinks.parameters.all.bicepparam`.
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -23,7 +23,7 @@ The inputs for this module are defined in `parameters/privateDnsZoneLinks.parame
 # For Azure global regions
 az deployment rg create \
   --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
-  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json \
+  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
   --location eastus
 ```
 
@@ -33,7 +33,7 @@ OR
 # For Azure China regions
 az deployment rg create \
   --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
-  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json \
+  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
   --location chinaeast2
   ```
 
@@ -42,9 +42,9 @@ az deployment rg create \
 ```powershell
 # For Azure global regions
 New-AzResourceGroupDeployment `
-  -TemplateFile infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep `
-  -TemplateParameterFile @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json `
-  -Location eastus
+  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam" `
+  -Location "eastus"
 ```
 
 OR
@@ -52,9 +52,9 @@ OR
 ```powershell
 # For Azure China regions
 New-AzResourceGroupDeployment `
-  -TemplateFile infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep `
-  -TemplateParameterFile @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json `
-  -Location chinaeast2
+  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam" `
+  -Location "chinaeast2"
 ```
 
 ## Bicep Visualizer
diff --git a/infra-as-code/bicep/modules/privateDnsZones/README.md b/infra-as-code/bicep/modules/privateDnsZones/README.md
index 6cce7a75d..42a67b631 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZones/README.md
@@ -66,8 +66,8 @@ There are two different sets of input parameters; one for deploying to Azure glo
 
  | Azure Cloud    | Bicep template        | Input parameters file                      |
  | -------------- | --------------------- | ------------------------------------------ |
- | Global regions | privateDnsZones.bicep | parameters/privateDnsZones.parameters.all.json    |
- | China regions  | privateDnsZones.bicep | parameters/mc-privateDnsZones.parameters.all.json |
+ | Global regions | privateDnsZones.bicep | parameters/privateDnsZones.parameters.all.bicepparam    |
+ | China regions  | privateDnsZones.bicep | parameters/mc-privateDnsZones.parameters.all.bicepparam |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -86,7 +86,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
 RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 
 az group create --location eastus \
    --name $RESOURCEGROUP
@@ -107,7 +107,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
 RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 
 az group create --location chinaeast2 \
    --name $RESOURCEGROUP
@@ -120,24 +120,24 @@ az deployment group create --name ${NAME:0:63} --resource-group $RESOURCEGROUP -
 ```powershell
 # For Azure global regions
 # Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+$ConnectivitySubscriptionId = "7a348906-189d-4e8d-9d72-ffb597a3e1d4"
 
 Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
 
 # Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
 $TopLevelMGPrefix = "alz"
 
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'eastus'
-
 $inputObject = @{
   DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
   TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 }
 
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'eastus'
+
 New-AzResourceGroupDeployment @inputObject
 ```
 OR
@@ -152,17 +152,17 @@ Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
 # Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
 $TopLevelMGPrefix = "alz"
 
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'chinaeast2'
-
 $inputObject = @{
   DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
   TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 }
 
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'chinaeast2'
+
 New-AzResourceGroupDeployment @inputObject
 ```
 ## Example Output in Azure global regions
diff --git a/infra-as-code/bicep/modules/roleAssignments/README.md b/infra-as-code/bicep/modules/roleAssignments/README.md
index b110d303b..d56d51ae8 100644
--- a/infra-as-code/bicep/modules/roleAssignments/README.md
+++ b/infra-as-code/bicep/modules/roleAssignments/README.md
@@ -96,7 +96,7 @@ Connect-AzureAD
 
 ## Deployment
 
-In this example, the built-in Reader role will be assigned to a Service Principal account at the `alz-platform` management group scope.  The inputs for this module are defined in `parameters/roleAssignmentManagementGroup.*.parameters.all.json`.
+In this example, the built-in Reader role will be assigned to a Service Principal account at the `alz-platform` management group scope.  The inputs for this module are defined in `parameters/roleAssignmentManagementGroup.*.parameters.all.bicepparam`.
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -110,7 +110,7 @@ NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -123,7 +123,7 @@ NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -138,7 +138,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -152,7 +152,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/spokeNetworking/README.md b/infra-as-code/bicep/modules/spokeNetworking/README.md
index 83fbc3344..53af4176e 100644
--- a/infra-as-code/bicep/modules/spokeNetworking/README.md
+++ b/infra-as-code/bicep/modules/spokeNetworking/README.md
@@ -65,7 +65,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -89,7 +89,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -104,7 +104,7 @@ az deployment group create --name ${NAME:0:63} --resource-group $GROUP --templat
 ```powershell
 # For Azure global regions
 # Set Platform connectivity subscription ID as the the current subscription
-$LandingZoneSubscriptionId = "[your landing zone subscription ID]"
+$LandingZoneSubscriptionId = "716c5a22-62fe-4fdc-a29a-5fa62d8877a4"
 
 Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
 
@@ -115,7 +115,7 @@ $TopLevelMGPrefix = "alz"
 $inputObject = @{
   DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
-  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
   TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
 }
 
@@ -140,7 +140,7 @@ $TopLevelMGPrefix = "alz"
 $inputObject = @{
   DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
-  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
   TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
 }
 

From 72517ba618392831151ac795b53baae3df7edc42 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 13:49:52 +0100
Subject: [PATCH 04/21] final readmes

---
 .../modules/subscriptionPlacement/README.md   | 10 +--
 ...riptionPlacement.parameters.all.bicepparam |  2 +-
 .../bicep/modules/vnetPeering/README.md       | 22 +++---
 .../bicep/modules/vnetPeeringVwan/README.md   | 12 ++--
 .../bicep/modules/vwanConnectivity/README.md  | 16 ++---
 .../orchestration/hubPeeredSpoke/README.md    |  8 +--
 .../hubPeeredSpoke.parameters.all.json        | 71 -------------------
 .../hubPeeredSpoke.vwan.parameters.all.json   | 68 ------------------
 .../orchestration/mgDiagSettingsAll/README.md | 20 +++---
 .../mgDiagSettingsAll.parameters.all.json     | 33 ---------
 .../mgDiagSettingsAll.parameters.min.json     | 15 ----
 .../orchestration/subPlacementAll/README.md   |  8 +--
 .../subPlacementAll.parameters.all.json       | 57 ---------------
 .../subPlacementAll.parameters.min.json       | 33 ---------
 14 files changed, 49 insertions(+), 326 deletions(-)
 delete mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
 delete mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
 delete mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
 delete mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
 delete mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
 delete mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json

diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/README.md b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
index ae04528b4..33e8fa663 100644
--- a/infra-as-code/bicep/modules/subscriptionPlacement/README.md
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
@@ -14,7 +14,7 @@ This module moves one or more subscriptions to be a child of the specified manag
 
 ## Deployment
 
-In this example, the subscription `xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx` will be moved to `alz-platform-connectivity` management group. The inputs for this module are defined in `parameters/subscriptionPlacement.parameters.all.json`.
+In this example, the subscription `xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx` will be moved to `alz-platform-connectivity` management group. The inputs for this module are defined in `parameters/subscriptionPlacement.parameters.all.bicepparam`.
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -28,7 +28,7 @@ NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -41,7 +41,7 @@ NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -56,7 +56,7 @@ $inputObject = @{
   Location              = 'eastus'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -70,7 +70,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam'
 }
 New-AzManagementGroupDeployment @inputObject
 ```
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
index 8a33303f9..422c27f55 100644
--- a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam
@@ -6,4 +6,4 @@ param parSubscriptionIds = [
   'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 ]
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vnetPeering/README.md b/infra-as-code/bicep/modules/vnetPeering/README.md
index 112be81ac..4fa3dfdbb 100644
--- a/infra-as-code/bicep/modules/vnetPeering/README.md
+++ b/infra-as-code/bicep/modules/vnetPeering/README.md
@@ -34,7 +34,7 @@ During the deployment step, we will take parameters provided in the example para
 
  | Azure Cloud    | Bicep template      | Input parameters file                    |
  | -------------- | ------------------- | ---------------------------------------- |
- | All  regions | vnetPeering.bicep | parameters/vnetPeering.parameters.all.json    |
+ | All  regions | vnetPeering.bicep | parameters/vnetPeering.parameters.all.bicepparam    |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -53,7 +53,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -76,7 +76,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -98,19 +98,19 @@ Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
 # Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
 $TopLevelMGPrefix = "alz"
 
-# Create Resource Group - optional when using an existing resource group
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location eastus
-
 # Parameters necessary for deployment
 $inputObject = @{
   DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
-  TemplateFile          = "ALZ-Bicep/infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+  TemplateFile          = "infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 }
 
+# Create Resource Group - optional when using an existing resource group
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location eastus
+
 New-AzResourceGroupDeployment @inputObject
 ```
 OR
@@ -134,7 +134,7 @@ $inputObject = @{
   DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
   TemplateFile          = "ALZ-Bicep/infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 }
 
 New-AzResourceGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
index b0cb34c0a..c0cb93030 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
@@ -1,6 +1,6 @@
 # Module:  VNet Peering with vWAN
 
-This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.json).
+This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.bicepparam).
 
 Module deploys the following resources which can be configured by parameters:
 
@@ -28,7 +28,7 @@ In this example, the remote spoke Vnet will be peered with the Vwan Virtual Hub
 
  | Azure Cloud    | Bicep template      | Input parameters file                    |
  | -------------- | ------------------- | ---------------------------------------- |
- | All  regions | vnetPeeringVwan.bicep | parameters/vnetPeeringVwan.parameters.all.json    |
+ | All  regions | vnetPeeringVwan.bicep | parameters/vnetPeeringVwan.parameters.all.bicepparam    |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -44,7 +44,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
 LOCATION="eastus"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
 
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -59,7 +59,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
 
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -77,7 +77,7 @@ $inputObject = @{
   DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   Location              = 'eastus'
   TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam'
 }
 
 New-AzDeployment @inputObject
@@ -95,7 +95,7 @@ $inputObject = @{
   DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   Location              = 'chinaeast2'
   TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam'
 }
 
 New-AzDeployment @inputObject
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/README.md b/infra-as-code/bicep/modules/vwanConnectivity/README.md
index 0d99c1a64..e5a0695cd 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/README.md
+++ b/infra-as-code/bicep/modules/vwanConnectivity/README.md
@@ -1,6 +1,6 @@
 # Module:  Virtual WAN
 
-This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.json).
+This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.bicepparam).
 
 Module deploys the following resources which can be configured by parameters:
 
@@ -20,7 +20,7 @@ Module deploys the following resources which can be configured by parameters:
 > **NOTE:** Although there are generated parameter markdowns for Azure Commercial Cloud, this same module can still be used in Azure China. Example parameter are in the [parameters](./parameters/) folder.
 
 <!-- markdownlint-disable -->
-> NOTE: When deploying using the `parameters/vwanConnectivity.parameters.all.json` you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region. Failure to do so will cause these services to be unreachable over private endpoints.
+> NOTE: When deploying using the `parameters/vwanConnectivity.parameters.all.bicepparam` you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region. Failure to do so will cause these services to be unreachable over private endpoints.
 > For example, if deploying to East US the following zone entries:
 > - `privatelink.xxxxxx.azmk8s.io`
 > - `privatelink.xxxxxx.backup.windowsazure.com`
@@ -52,8 +52,8 @@ In this example, the resources required for Virtual WAN connectivity will be dep
 
  | Azure Cloud    | Bicep template         | Input parameters file                             |
  | -------------- | ---------------------- | ------------------------------------------------- |
- | Global regions | vwanConnectivity.bicep | parameters/vwanConnectivity.parameters.all.json    |
- | China regions  | vwanConnectivity.bicep | parameters/mc-vwanConnectivity.parameters.all.json |
+ | Global regions | vwanConnectivity.bicep | parameters/vwanConnectivity.parameters.all.bicepparam    |
+ | China regions  | vwanConnectivity.bicep | parameters/mc-vwanConnectivity.parameters.all.bicepparam |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
@@ -71,7 +71,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vwanConnectivityDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vwan-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -94,7 +94,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vwanConnectivityDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vwan-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -121,7 +121,7 @@ $inputObject = @{
   DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
   TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam"
 }
 
 
@@ -147,7 +147,7 @@ $inputObject = @{
   DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
   ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
   TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam"
 }
 
 New-AzResourceGroup `
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
index d709648f0..5ba7de20e 100644
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
@@ -51,7 +51,7 @@ NAME="alz-HubPeeredSpoke-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -64,7 +64,7 @@ NAME="alz-HubPeeredSpoke-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -79,7 +79,7 @@ $inputObject = @{
   Location              = 'EastUS'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -93,7 +93,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
deleted file mode 100644
index 65328cd32..000000000
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
+++ /dev/null
@@ -1,71 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "westeurope"
-    },
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parPeeredVnetSubscriptionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parPeeredVnetSubscriptionMgPlacement": {
-      "value": "alz-platform-connectivity"
-    },
-    "parDdosProtectionPlanId": {
-      "value": ""
-    },
-    "parSpokeNetworkName": {
-      "value": "vnet-spoke"
-    },
-    "parSpokeNetworkAddressPrefix": {
-      "value": "10.202.0.0/24"
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parPrivateDnsZoneResourceIds":{
-      "value": []
-    },
-    "parNextHopIpAddress": {
-      "value": "10.20.255.4"
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parSpoketoHubRouteTableName": {
-      "value": "rtb-spoke-to-hub"
-    },
-    "parHubVirtualNetworkId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualNetworks/alz-hub-westeurope"
-    },
-    "parAllowSpokeForwardedTraffic": {
-      "value": false
-    },
-    "parAllowHubVPNGatewayTransit": {
-      "value": true
-    },
-    "parVirtualHubConnectionPrefix": {
-      "value": ""
-    },
-    "parVirtualHubConnectionSuffix": {
-      "value": "-vhc"
-    },
-    "parEnableInternetSecurity": {
-      "value": false
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
deleted file mode 100644
index 0b147eba3..000000000
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
+++ /dev/null
@@ -1,68 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parLocation": {
-      "value": "westeurope"
-    },
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parPeeredVnetSubscriptionId": {
-      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
-    },
-    "parPeeredVnetSubscriptionMgPlacement": {
-      "value": "alz-platform-connectivity"
-    },
-    "parDdosProtectionPlanId": {
-      "value": ""
-    },
-    "parSpokeNetworkName": {
-      "value": "vnet-spoke"
-    },
-    "parSpokeNetworkAddressPrefix": {
-      "value": "10.202.0.0/24"
-    },
-    "parDnsServerIps": {
-      "value": []
-    },
-    "parNextHopIpAddress": {
-      "value": "10.20.255.4"
-    },
-    "parDisableBgpRoutePropagation": {
-      "value": false
-    },
-    "parSpoketoHubRouteTableName": {
-      "value": "rtb-spoke-to-hub"
-    },
-    "parHubVirtualNetworkId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualHubs/alz-vhub-westeurope"
-    },
-    "parAllowSpokeForwardedTraffic": {
-      "value": false
-    },
-    "parAllowHubVPNGatewayTransit": {
-      "value": true
-    },
-    "parVirtualHubConnectionPrefix": {
-      "value": ""
-    },
-    "parVirtualHubConnectionSuffix": {
-      "value": "-vhc"
-    },
-    "parEnableInternetSecurity": {
-      "value": false
-    },
-    "parTags": {
-      "value": {
-        "Environment": "Live"
-      }
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
index 47196c298..12809caf9 100644
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
@@ -89,7 +89,7 @@ In this example, the Diagnostic Settings are enabled on the management groups th
 # For Azure global regions
 az deployment mg create \
   --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
+  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
   --location eastus \
   --management-group-id alz
 ```
@@ -100,7 +100,7 @@ OR
 # For Azure China regions
 az deployment mg create \
   --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
+  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
   --location chinaeast2 \
   --management-group-id alz
 ```
@@ -110,10 +110,10 @@ az deployment mg create \
 ```powershell
 # For Azure global regions
 New-AzManagementGroupDeployment `
-  -TemplateFile infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep `
-  -TemplateParameterFile infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json `
-  -Location eastus `
-  -ManagementGroupId alz
+  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam" `
+  -Location "eastus" `
+  -ManagementGroupId "alz"
 
 ```
 
@@ -122,10 +122,10 @@ OR
 ```powershell
 # For Azure China regions
 New-AzManagementGroupDeployment `
-  -TemplateFile infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep `
-  -TemplateParameterFile infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json `
-  -Location chinaeast2 `
-  -ManagementGroupId alz
+  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam" `
+  -Location "chinaeast2" `
+  -ManagementGroupId "alz"
 
 ```
 
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
deleted file mode 100644
index 47a5ee185..000000000
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
+++ /dev/null
@@ -1,33 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parLandingZoneMgAlzDefaultsEnable": {
-      "value": true
-    },
-    "parPlatformMgAlzDefaultsEnable": {
-      "value": true
-    },
-    "parLandingZoneMgConfidentialEnable": {
-      "value": false
-    },
-    "parLogAnalyticsWorkspaceResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics"
-    },
-    "parLandingZoneMgChildren": {
-      "value": []
-    },
-    "parPlatformMgChildren": {
-      "value": []
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
deleted file mode 100644
index 23aa5f43e..000000000
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
+++ /dev/null
@@ -1,15 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parLogAnalyticsWorkspaceResourceId": {
-      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics"
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/README.md b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
index a41325ff4..79bcbbdba 100644
--- a/infra-as-code/bicep/orchestration/subPlacementAll/README.md
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
@@ -109,7 +109,7 @@ NAME="alz-SubPlacementAll-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -124,7 +124,7 @@ NAME="alz-SubPlacementAll-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json"
+PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -139,7 +139,7 @@ $inputObject = @{
   Location              = 'EastUS'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
@@ -155,7 +155,7 @@ $inputObject = @{
   Location              = 'chinaeast2'
   ManagementGroupId     = 'alz'
   TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json'
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam'
 }
 
 New-AzManagementGroupDeployment @inputObject
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
deleted file mode 100644
index 00459d618..000000000
--- a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
+++ /dev/null
@@ -1,57 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parTopLevelManagementGroupSuffix": {
-      "value": ""
-    },
-    "parIntRootMgSubs": {
-      "value": []
-    },
-    "parPlatformMgSubs": {
-      "value": []
-    },
-    "parPlatformManagementMgSubs": {
-      "value": []
-    },
-    "parPlatformConnectivityMgSubs": {
-      "value": []
-    },
-    "parPlatformIdentityMgSubs": {
-      "value": []
-    },
-    "parLandingZonesMgSubs": {
-      "value": []
-    },
-    "parLandingZonesCorpMgSubs": {
-      "value": []
-    },
-    "parLandingZonesOnlineMgSubs": {
-      "value": []
-    },
-    "parLandingZonesConfidentialCorpMgSubs": {
-      "value": []
-    },
-    "parLandingZonesConfidentialOnlineMgSubs": {
-      "value": []
-    },
-    "parLandingZoneMgChildrenSubs": {
-      "value": {}
-    },
-    "parPlatformMgChildrenSubs": {
-      "value": {}
-    },
-    "parDecommissionedMgSubs": {
-      "value": []
-    },
-    "parSandboxMgSubs": {
-      "value": []
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json
deleted file mode 100644
index 748d16652..000000000
--- a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json
+++ /dev/null
@@ -1,33 +0,0 @@
-{
-  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
-  "contentVersion": "1.0.0.0",
-  "parameters": {
-    "parTopLevelManagementGroupPrefix": {
-      "value": "alz"
-    },
-    "parPlatformManagementMgSubs": {
-      "value": []
-    },
-    "parPlatformConnectivityMgSubs": {
-      "value": []
-    },
-    "parPlatformIdentityMgSubs": {
-      "value": []
-    },
-    "parLandingZonesCorpMgSubs": {
-      "value": []
-    },
-    "parLandingZonesOnlineMgSubs": {
-      "value": []
-    },
-    "parDecommissionedMgSubs": {
-      "value": []
-    },
-    "parSandboxMgSubs": {
-      "value": []
-    },
-    "parTelemetryOptOut": {
-      "value": false
-    }
-  }
-}
\ No newline at end of file

From 8923a33bec3f43eaa2eb1aff0e3fa56b77e5e2fd Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:13:33 +0100
Subject: [PATCH 05/21] try again for params lint

---
 .../parameters/subPlacementAll.parameters.all.bicepparam        | 2 +-
 .../parameters/subPlacementAll.parameters.min.bicepparam        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
index 6467d0003..cf2522197 100644
--- a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam
@@ -32,4 +32,4 @@ param parDecommissionedMgSubs = []
 
 param parSandboxMgSubs = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam
index 6419cfa6a..d6006d9be 100644
--- a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.bicepparam
@@ -16,4 +16,4 @@ param parDecommissionedMgSubs = []
 
 param parSandboxMgSubs = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false

From d885ab3ccfbb51921fb32e2ce588c14c792b4f65 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:24:25 +0100
Subject: [PATCH 06/21] params formatting

---
 .../parameters/customRoleDefinitions.parameters.all.bicepparam  | 2 +-
 .../parameters/hubNetworking.parameters.all.bicepparam          | 2 +-
 .../parameters/hubNetworking.parameters.min.bicepparam          | 2 +-
 .../parameters/mc-hubNetworking.parameters.all.bicepparam       | 2 +-
 .../parameters/mc-hubNetworking.parameters.min.bicepparam       | 2 +-
 .../logging/parameters/logging.parameters.all.bicepparam        | 2 +-
 .../logging/parameters/logging.parameters.min.bicepparam        | 2 +-
 .../logging/parameters/mc-logging.parameters.all.bicepparam     | 2 +-
 .../logging/parameters/mc-logging.parameters.min.bicepparam     | 2 +-
 .../parameters/managementGroups.parameters.all.bicepparam       | 2 +-
 .../parameters/managementGroups.parameters.min.bicepparam       | 2 +-
 .../parameters/mgDiagSettings.parameters.all.bicepparam         | 2 +-
 .../parameters/mgDiagSettings.parameters.min.bicepparam         | 2 +-
 .../alzDefaultPolicyAssignments.parameters.all.bicepparam       | 2 +-
 .../alzDefaultPolicyAssignments.parameters.min.bicepparam       | 2 +-
 ...licyAssignmentManagementGroup.dine.parameters.all.bicepparam | 2 +-
 ...licyAssignmentManagementGroup.dine.parameters.min.bicepparam | 2 +-
 ...licyAssignmentManagementGroup.deny.parameters.all.bicepparam | 2 +-
 ...licyAssignmentManagementGroup.deny.parameters.min.bicepparam | 2 +-
 ...licyAssignmentManagementGroup.dine.parameters.all.bicepparam | 2 +-
 ...licyAssignmentManagementGroup.dine.parameters.min.bicepparam | 2 +-
 .../customPolicyDefinitions.parameters.all.bicepparam           | 2 +-
 .../customPolicyDefinitions.parameters.min.bicepparam           | 2 +-
 .../parameters/privateDnsZoneLinks.parameters.all.bicepparam    | 2 +-
 .../parameters/privateDnsZoneLinks.parameters.min.bicepparam    | 2 +-
 .../parameters/mc-privateDnsZones.parameters.all.bicepparam     | 2 +-
 .../parameters/mc-privateDnsZones.parameters.min.bicepparam     | 2 +-
 .../parameters/privateDnsZones.parameters.all.bicepparam        | 2 +-
 .../parameters/privateDnsZones.parameters.min.bicepparam        | 2 +-
 .../publicIp/parameters/publicIp.parameters.all.bicepparam      | 2 +-
 .../publicIp/parameters/publicIp.parameters.min.bicepparam      | 2 +-
 .../parameters/resourceGroup.parameters.all.bicepparam          | 2 +-
 .../parameters/resourceGroup.parameters.min.bicepparam          | 2 +-
 ...entManagementGroup.managedIdentity.parameters.all.bicepparam | 2 +-
 ...entManagementGroup.managedIdentity.parameters.min.bicepparam | 2 +-
 ...nmentManagementGroup.securityGroup.parameters.all.bicepparam | 2 +-
 ...nmentManagementGroup.securityGroup.parameters.min.bicepparam | 2 +-
 ...ntManagementGroup.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...ntManagementGroup.servicePrincipal.parameters.min.bicepparam | 2 +-
 ...anagementGroupMany.managedIdentity.parameters.all.bicepparam | 2 +-
 ...anagementGroupMany.managedIdentity.parameters.min.bicepparam | 2 +-
 ...tManagementGroupMany.securityGroup.parameters.all.bicepparam | 2 +-
 ...tManagementGroupMany.securityGroup.parameters.min.bicepparam | 2 +-
 ...nagementGroupMany.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...nagementGroupMany.servicePrincipal.parameters.min.bicepparam | 2 +-
 ...nmentResourceGroup.managedIdentity.parameters.all.bicepparam | 2 +-
 ...nmentResourceGroup.managedIdentity.parameters.min.bicepparam | 2 +-
 ...ignmentResourceGroup.securityGroup.parameters.all.bicepparam | 2 +-
 ...mentResourceGroup.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...mentResourceGroup.servicePrincipal.parameters.min.bicepparam | 2 +-
 ...tResourceGroupMany.managedIdentity.parameters.all.bicepparam | 2 +-
 ...tResourceGroupMany.managedIdentity.parameters.min.bicepparam | 2 +-
 ...entResourceGroupMany.securityGroup.parameters.all.bicepparam | 2 +-
 ...entResourceGroupMany.securityGroup.parameters.min.bicepparam | 2 +-
 ...ResourceGroupMany.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...ResourceGroupMany.servicePrincipal.parameters.min.bicepparam | 2 +-
 ...gnmentSubscription.managedIdentity.parameters.all.bicepparam | 2 +-
 ...gnmentSubscription.managedIdentity.parameters.min.bicepparam | 2 +-
 ...signmentSubscription.securityGroup.parameters.all.bicepparam | 2 +-
 ...signmentSubscription.securityGroup.parameters.min.bicepparam | 2 +-
 ...nmentSubscription.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...nmentSubscription.servicePrincipal.parameters.min.bicepparam | 2 +-
 ...ntSubscriptionMany.managedIdentity.parameters.all.bicepparam | 2 +-
 ...ntSubscriptionMany.managedIdentity.parameters.min.bicepparam | 2 +-
 ...mentSubscriptionMany.securityGroup.parameters.all.bicepparam | 2 +-
 ...mentSubscriptionMany.securityGroup.parameters.min.bicepparam | 2 +-
 ...tSubscriptionMany.servicePrincipal.parameters.all.bicepparam | 2 +-
 ...tSubscriptionMany.servicePrincipal.parameters.min.bicepparam | 2 +-
 .../parameters/spokeNetworking.parameters.all.bicepparam        | 2 +-
 .../parameters/spokeNetworking.parameters.min.bicepparam        | 2 +-
 .../parameters/subscriptionPlacement.parameters.min.bicepparam  | 2 +-
 .../parameters/vnetPeering.parameters.all.bicepparam            | 2 +-
 .../parameters/vnetPeering.parameters.min.bicepparam            | 2 +-
 .../parameters/vnetPeeringVwan.parameters.all.bicepparam        | 2 +-
 .../parameters/vnetPeeringVwan.parameters.min.bicepparam        | 2 +-
 .../parameters/mc-vwanConnectivity.parameters.all.bicepparam    | 2 +-
 .../parameters/mc-vwanConnectivity.parameters.min.bicepparam    | 2 +-
 .../parameters/vwanConnectivity.parameters.all.bicepparam       | 2 +-
 .../parameters/vwanConnectivity.parameters.min.bicepparam       | 2 +-
 .../parameters/hubPeeredSpoke.parameters.all.bicepparam         | 2 +-
 .../parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam    | 2 +-
 .../parameters/mgDiagSettingsAll.parameters.all.bicepparam      | 2 +-
 .../parameters/mgDiagSettingsAll.parameters.min.bicepparam      | 2 +-
 83 files changed, 83 insertions(+), 83 deletions(-)

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
index a5de26770..e56428daf 100644
--- a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam
@@ -2,4 +2,4 @@ using '../customRoleDefinitions.bicep'
 
 param parAssignableScopeManagementGroupId = 'alz'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
index 015c5e1bf..b4a19d8ce 100644
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam
@@ -198,4 +198,4 @@ param parTelemetryOptOut = false
 param parBastionOutboundSshRdpPorts = [
   '22'
   '3389'
-]
\ No newline at end of file
+]
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
index 45857d01a..787a7926f 100644
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.min.bicepparam
@@ -91,4 +91,4 @@ param parExpressRouteGatewayConfig = {
   }
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
index a3174611b..f1920bc60 100644
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam
@@ -160,4 +160,4 @@ param parTelemetryOptOut = false
 param parBastionOutboundSshRdpPorts = [
   '22'
   '3389'
-]
\ No newline at end of file
+]
diff --git a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
index bd8ee8b60..4e2fb63c6 100644
--- a/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.min.bicepparam
@@ -125,4 +125,4 @@ param parExpressRouteGatewayConfig = {
   }
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
index ba4990133..183463621 100644
--- a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
@@ -37,4 +37,4 @@ param parTags = {
 
 param parUseSentinelClassicPricingTiers = false
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
index de01d172f..9ffebd13e 100644
--- a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.bicepparam
@@ -19,4 +19,4 @@ param parLogAnalyticsWorkspaceSolutions = [
 
 param parAutomationAccountLocation = 'eastus2'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
index 73dc944ab..19c481a63 100644
--- a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
@@ -33,4 +33,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
index 165bf2ee7..23ef6eb02 100644
--- a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.bicepparam
@@ -19,4 +19,4 @@ param parLogAnalyticsWorkspaceSolutions = [
 
 param parAutomationAccountLocation = 'chinaeast2'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
index a38e7dccb..d9907e828 100644
--- a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam
@@ -18,4 +18,4 @@ param parLandingZoneMgChildren = {}
 
 param parPlatformMgChildren = {}
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
index d30a83eff..8b6499085 100644
--- a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.bicepparam
@@ -1,3 +1,3 @@
 using '../managementGroups.bicep'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
index cda04d361..8d18b3f17 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam
@@ -2,4 +2,4 @@ using '../mgDiagSettings.bicep'
 
 param parLogAnalyticsWorkspaceResourceId = ''
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
index cda04d361..8d18b3f17 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.bicepparam
@@ -2,4 +2,4 @@ using '../mgDiagSettings.bicep'
 
 param parLogAnalyticsWorkspaceResourceId = ''
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
index c8369b0e6..255be3506 100644
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam
@@ -28,4 +28,4 @@ param parVmBackupExclusionTagValue = []
 
 param parExcludedPolicyAssignments = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
index 73f0888fa..0f56d9ed0 100644
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.bicepparam
@@ -12,4 +12,4 @@ param parAutomationAccountName = 'alz-automation-account'
 
 param parMsDefenderForCloudEmailSecurityContact = 'security_contact@replace_me.com'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
index 24b42196d..4be813203 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam
@@ -51,4 +51,4 @@ param parPolicyAssignmentIdentityRoleDefinitionIds = [
   '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
 ]
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
index b5c69f4a6..2f6e42373 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.bicepparam
@@ -33,4 +33,4 @@ param parPolicyAssignmentNonComplianceMessages = []
 
 param parPolicyAssignmentNotScopes = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
index 029c2a8e7..06b88522b 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam
@@ -28,4 +28,4 @@ param parPolicyAssignmentIdentityRoleAssignmentsResourceGroups = []
 
 param parPolicyAssignmentIdentityRoleDefinitionIds = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
index c8bbce797..cc26def0c 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.bicepparam
@@ -14,4 +14,4 @@ param parPolicyAssignmentNonComplianceMessages = []
 
 param parPolicyAssignmentNotScopes = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
index fed53de25..246fbc982 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam
@@ -75,4 +75,4 @@ param parPolicyAssignmentIdentityRoleDefinitionIds = [
   '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
 ]
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
index c397a4851..9fce2c2f5 100644
--- a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.bicepparam
@@ -57,4 +57,4 @@ param parPolicyAssignmentNonComplianceMessages = []
 
 param parPolicyAssignmentNotScopes = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
index d49d82dd2..7cba9072a 100644
--- a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam
@@ -2,4 +2,4 @@ using '../customPolicyDefinitions.bicep'
 
 param parTargetManagementGroupId = 'alz'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
index 4deb1585e..43d700a43 100644
--- a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.bicepparam
@@ -1,3 +1,3 @@
 using '../customPolicyDefinitions.bicep'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
index 5ca4a1db9..4d626f22f 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam
@@ -2,4 +2,4 @@ using '../privateDnsZoneLinks.bicep'
 
 param parSpokeVirtualNetworkResourceId = ''
 
-param parPrivateDnsZoneResourceIds = []
\ No newline at end of file
+param parPrivateDnsZoneResourceIds = []
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
index 5ca4a1db9..4d626f22f 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.bicepparam
@@ -2,4 +2,4 @@ using '../privateDnsZoneLinks.bicep'
 
 param parSpokeVirtualNetworkResourceId = ''
 
-param parPrivateDnsZoneResourceIds = []
\ No newline at end of file
+param parPrivateDnsZoneResourceIds = []
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
index 0f48f4a9a..59d80ef43 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.bicepparam
@@ -42,4 +42,4 @@ param parTags = {
 
 param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
index 40ce5267f..1f9520a49 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.bicepparam
@@ -36,4 +36,4 @@ param parPrivateDnsZones = [
 
 param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
index 5cd9dd8e3..4c8a76136 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam
@@ -82,4 +82,4 @@ param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxx
 
 param parVirtualNetworkIdToLinkFailover = ''
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
index 26d11f779..dc9754873 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.min.bicepparam
@@ -72,4 +72,4 @@ param parPrivateDnsZones = [
 
 param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
index 05384d66f..5e1cd7da5 100644
--- a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.bicepparam
@@ -22,4 +22,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
index 2f7f48963..1b12a5b0b 100644
--- a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.bicepparam
@@ -14,4 +14,4 @@ param parPublicIpProperties = {
   idleTimeoutInMinutes: 4
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
index 9e97e759b..02a5c80ad 100644
--- a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
index 330746fd1..d1ec5ddae 100644
--- a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.bicepparam
@@ -4,4 +4,4 @@ param parLocation = 'eastus'
 
 param parResourceGroupName = 'alz-rg'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
index 220e4fa50..96b9d634d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
index 6e03bff97..723765050 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
index 9cf99ebb3..ba43549fa 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
index e7199c6ae..389e21303 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
index 220e4fa50..96b9d634d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
index 6e03bff97..723765050 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
index e9ae7af01..57ed979da 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
index e9ae7af01..57ed979da 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
index 7817dc5ca..95f2f460d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
index 7817dc5ca..95f2f460d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
index e9ae7af01..57ed979da 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
index e9ae7af01..57ed979da 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
index 9bf1e669e..6fdb28d4c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
index 8d9c69c3d..e6c8a1aab 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
index 4272e7030..efd3a6eb9 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
index 9bf1e669e..6fdb28d4c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
index 8d9c69c3d..e6c8a1aab 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
index 753f38535..7c6a7828c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
index 753f38535..7c6a7828c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
index f30012246..d198e30fb 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
index f30012246..d198e30fb 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
index 753f38535..7c6a7828c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
index 753f38535..7c6a7828c 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
index 65a44627c..883501aec 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
index 88e2f3bff..42c01d252 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
index 0c33d5aa3..49b27660b 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
index e807cc9cd..dd5d28db6 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
index 65a44627c..883501aec 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.bicepparam
@@ -8,4 +8,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
index 88e2f3bff..42c01d252 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
index a39f35a49..38032963d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
index a39f35a49..38032963d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
index ea527dafb..b4b702350 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
index ea527dafb..b4b702350 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'Group'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
index a39f35a49..38032963d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
index a39f35a49..38032963d 100644
--- a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.bicepparam
@@ -11,4 +11,4 @@ param parAssigneePrincipalType = 'ServicePrincipal'
 
 param parAssigneeObjectId = 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
index 6e5aeae53..f1bfa0052 100644
--- a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam
@@ -20,4 +20,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
index 9693cda8b..ac2838afd 100644
--- a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.bicepparam
@@ -10,4 +10,4 @@ param parDnsServerIps = []
 
 param parNextHopIpAddress = ''
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
index 8a33303f9..422c27f55 100644
--- a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.bicepparam
@@ -6,4 +6,4 @@ param parSubscriptionIds = [
   'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'
 ]
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
index 0bb280fd5..6b2487746 100644
--- a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam
@@ -14,4 +14,4 @@ param parAllowGatewayTransit = false
 
 param parUseRemoteGateways = false
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
index 0bb280fd5..6b2487746 100644
--- a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.bicepparam
@@ -14,4 +14,4 @@ param parAllowGatewayTransit = false
 
 param parUseRemoteGateways = false
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
index f44f4ba03..424d4843f 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam
@@ -10,4 +10,4 @@ param parVirtualHubConnectionSuffix = '-vhc'
 
 param parEnableInternetSecurity = false
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
index ff31a3ad5..212743264 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.bicepparam
@@ -4,4 +4,4 @@ param parVirtualWanHubResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxx
 
 param parRemoteVirtualNetworkResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
index cbaebcd54..2d15787fd 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam
@@ -89,4 +89,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
index 179b69c02..3c2a6923c 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.min.bicepparam
@@ -67,4 +67,4 @@ param parPrivateDnsZones = [
 
 param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
index 755cbd2ee..c58cebaea 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam
@@ -129,4 +129,4 @@ param parTags = {
 
 param parVirtualNetworkIdToLinkFailover = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus-failover'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
index 27074a19b..489dea89a 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
+++ b/infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.min.bicepparam
@@ -33,4 +33,4 @@ param parPrivateDnsZonesEnabled = true
 
 param parVirtualNetworkIdToLink = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
index 5559dc3a7..d19e26c5c 100644
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam
@@ -42,4 +42,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
index 6aae7019f..ccebc2f17 100644
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.bicepparam
@@ -40,4 +40,4 @@ param parTags = {
   Environment: 'Live'
 }
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
index f5d163113..a1b081df4 100644
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam
@@ -16,4 +16,4 @@ param parLandingZoneMgChildren = []
 
 param parPlatformMgChildren = []
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
index 9daa743f1..fc1078e01 100644
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.bicepparam
@@ -4,4 +4,4 @@ param parTopLevelManagementGroupPrefix = 'alz'
 
 param parLogAnalyticsWorkspaceResourceId = '/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics'
 
-param parTelemetryOptOut = false
\ No newline at end of file
+param parTelemetryOptOut = false

From a8ea7fa8cf26ccd8065231eb7ab8f3facc76ecb5 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:32:00 +0100
Subject: [PATCH 07/21] update deployment flow cli spn creation

---
 docs/wiki/DeploymentFlow.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/wiki/DeploymentFlow.md b/docs/wiki/DeploymentFlow.md
index 8d5b45a5b..b7cfefbbc 100644
--- a/docs/wiki/DeploymentFlow.md
+++ b/docs/wiki/DeploymentFlow.md
@@ -88,7 +88,7 @@ In addition, the identity that wants to create a Tenant scope deployment must ha
 
 ### Service Principal Account
 
-A service principal account is required to automate through Azure DevOps or GitHub Workflows. This can be created through the [Portal](https://learn.microsoft.com/azure/active-directory/develop/howto-create-service-principal-portal), [Azure PowerShell](https://learn.microsoft.com/azure/active-directory/develop/howto-authenticate-service-principal-powershell) or [Azure CLI](https://learn.microsoft.com/cli/azure/create-an-azure-service-principal-azure-cli).
+A service principal account is required to automate through Azure DevOps or GitHub Workflows. This can be created through the [Portal](https://learn.microsoft.com/azure/active-directory/develop/howto-create-service-principal-portal), [Azure PowerShell](https://learn.microsoft.com/azure/active-directory/develop/howto-authenticate-service-principal-powershell) or [Azure CLI](https://learn.microsoft.com/cli/azure/azure-cli-sp-tutorial-1).
 
 - **Service Principal Name**:  any name (i.e. `spn-azure-platform-ops`)
 - **RBAC Assignment**

From 6028a386c110bfb711764de4df62c8e5f75ac320 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:40:23 +0100
Subject: [PATCH 08/21] vwanpeering readme link updated

---
 infra-as-code/bicep/modules/vnetPeeringVwan/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
index c0cb93030..ea9148db5 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
@@ -1,6 +1,6 @@
 # Module:  VNet Peering with vWAN
 
-This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.bicepparam).
+This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.bicep).
 
 Module deploys the following resources which can be configured by parameters:
 

From ef713b0268bae62083004b91f5562e12655bf150 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:41:00 +0100
Subject: [PATCH 09/21] and vwan connectivity

---
 infra-as-code/bicep/modules/vwanConnectivity/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/infra-as-code/bicep/modules/vwanConnectivity/README.md b/infra-as-code/bicep/modules/vwanConnectivity/README.md
index e5a0695cd..812b25fe1 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/README.md
+++ b/infra-as-code/bicep/modules/vwanConnectivity/README.md
@@ -1,6 +1,6 @@
 # Module:  Virtual WAN
 
-This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.bicepparam).
+This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.bicep).
 
 Module deploys the following resources which can be configured by parameters:
 

From 80dbdf36340d04461d9a38b55fd1974539a7f453 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 3 Oct 2023 14:46:31 +0100
Subject: [PATCH 10/21] links to eslzarm

---
 infra-as-code/bicep/modules/vnetPeeringVwan/README.md  | 2 +-
 infra-as-code/bicep/modules/vwanConnectivity/README.md | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
index ea9148db5..edf34987f 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
@@ -1,6 +1,6 @@
 # Module:  VNet Peering with vWAN
 
-This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.bicep).
+This module is used to perform virtual network peering with the Virtual WAN virtual hub. This network topology is based on the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology) and the hub-spoke network topology with Virtual WAN [here](https://learn.microsoft.com/en-us/azure/architecture/networking/hub-spoke-vwan-architecture). Once peered, virtual networks exchange traffic by using the Azure backbone network. Virtual WAN enables transitivity among hubs which is not possible solely by using peering. This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vnetPeeringVwan.json).
 
 Module deploys the following resources which can be configured by parameters:
 
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/README.md b/infra-as-code/bicep/modules/vwanConnectivity/README.md
index 812b25fe1..4ee2b00be 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/README.md
+++ b/infra-as-code/bicep/modules/vwanConnectivity/README.md
@@ -1,6 +1,6 @@
 # Module:  Virtual WAN
 
-This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.bicep).
+This module is used to deploy the Virtual WAN network topology and its components according to the Azure Landing Zone conceptual architecture which can be found [here](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/virtual-wan-network-topology). This module draws parity with the Enterprise Scale implementation in the ARM template [here](https://github.com/Azure/Enterprise-Scale/blob/main/eslzArm/subscriptionTemplates/vwan-connectivity.json).
 
 Module deploys the following resources which can be configured by parameters:
 

From 6a774792867bfc63cea21d0d3fa366bcf23a7d7e Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 24 Oct 2023 17:06:23 +0100
Subject: [PATCH 11/21] json params being added again

---
 .../customRoleDefinitions.parameters.all.json | 12 +++
 .../customRoleDefinitions.parameters.min.json | 12 +++
 .../parameters/logging.parameters.all.json    | 58 +++++++++++
 .../parameters/logging.parameters.min.json    | 32 ++++++
 .../parameters/mc-logging.parameters.all.json | 52 ++++++++++
 .../parameters/mc-logging.parameters.min.json | 32 ++++++
 .../managementGroups.parameters.all.json      | 36 +++++++
 .../managementGroups.parameters.min.json      |  9 ++
 .../mgDiagSettings.parameters.all.json        | 12 +++
 .../mgDiagSettings.parameters.min.json        | 12 +++
 ...faultPolicyAssignments.parameters.min.json | 27 +++++
 ...ntManagementGroup.dine.parameters.all.json | 74 ++++++++++++++
 ...ntManagementGroup.dine.parameters.min.json | 49 ++++++++++
 ...ntManagementGroup.deny.parameters.all.json | 51 ++++++++++
 ...ntManagementGroup.deny.parameters.min.json | 30 ++++++
 ...ntManagementGroup.dine.parameters.all.json | 98 +++++++++++++++++++
 ...ntManagementGroup.dine.parameters.min.json | 73 ++++++++++++++
 ...ustomPolicyDefinitions.parameters.all.json | 12 +++
 ...ustomPolicyDefinitions.parameters.min.json |  9 ++
 .../privateDnsZoneLinks.parameters.all.json   | 12 +++
 .../privateDnsZoneLinks.parameters.min.json   | 12 +++
 .../mc-privateDnsZones.parameters.all.json    | 56 +++++++++++
 .../mc-privateDnsZones.parameters.min.json    | 48 +++++++++
 .../parameters/publicIp.parameters.all.json   | 37 +++++++
 .../parameters/publicIp.parameters.min.json   | 26 +++++
 .../resourceGroup.parameters.all.json         | 20 ++++
 .../resourceGroup.parameters.min.json         | 15 +++
 ...tGroup.managedIdentity.parameters.all.json | 21 ++++
 ...tGroup.managedIdentity.parameters.min.json | 18 ++++
 ...entGroup.securityGroup.parameters.all.json | 21 ++++
 ...entGroup.securityGroup.parameters.min.json | 18 ++++
 ...Group.servicePrincipal.parameters.all.json | 21 ++++
 ...Group.servicePrincipal.parameters.min.json | 18 ++++
 ...upMany.managedIdentity.parameters.all.json | 24 +++++
 ...upMany.managedIdentity.parameters.min.json | 24 +++++
 ...roupMany.securityGroup.parameters.all.json | 24 +++++
 ...roupMany.securityGroup.parameters.min.json | 24 +++++
 ...pMany.servicePrincipal.parameters.all.json | 24 +++++
 ...pMany.servicePrincipal.parameters.min.json | 24 +++++
 ...eGroup.managedIdentity.parameters.all.json | 21 ++++
 ...eGroup.managedIdentity.parameters.min.json | 18 ++++
 ...rceGroup.securityGroup.parameters.all.json | 21 ++++
 ...rceGroup.securityGroup.parameters.min.json | 18 ++++
 ...Group.servicePrincipal.parameters.all.json | 21 ++++
 ...Group.servicePrincipal.parameters.min.json | 18 ++++
 ...upMany.managedIdentity.parameters.all.json | 24 +++++
 ...upMany.managedIdentity.parameters.min.json | 24 +++++
 ...roupMany.securityGroup.parameters.all.json | 24 +++++
 ...roupMany.securityGroup.parameters.min.json | 24 +++++
 ...pMany.servicePrincipal.parameters.all.json | 24 +++++
 ...pMany.servicePrincipal.parameters.min.json | 24 +++++
 ...iption.managedIdentity.parameters.all.json | 21 ++++
 ...iption.managedIdentity.parameters.min.json | 18 ++++
 ...cription.securityGroup.parameters.all.json | 21 ++++
 ...cription.securityGroup.parameters.min.json | 18 ++++
 ...ption.servicePrincipal.parameters.all.json | 21 ++++
 ...ption.servicePrincipal.parameters.min.json | 18 ++++
 ...onMany.managedIdentity.parameters.all.json | 24 +++++
 ...onMany.managedIdentity.parameters.min.json | 24 +++++
 ...tionMany.securityGroup.parameters.all.json | 24 +++++
 ...tionMany.securityGroup.parameters.min.json | 24 +++++
 ...nMany.servicePrincipal.parameters.all.json | 24 +++++
 ...nMany.servicePrincipal.parameters.min.json | 24 +++++
 .../spokeNetworking.parameters.all.json       | 38 +++++++
 .../spokeNetworking.parameters.min.json       | 24 +++++
 .../subscriptionPlacement.parameters.all.json | 17 ++++
 .../subscriptionPlacement.parameters.min.json | 17 ++++
 .../vnetPeering.parameters.all.json           | 30 ++++++
 .../vnetPeering.parameters.min.json           | 30 ++++++
 .../vnetPeeringVwan.parameters.all.json       | 24 +++++
 .../vnetPeeringVwan.parameters.min.json       | 15 +++
 .../hubPeeredSpoke.parameters.all.json        | 71 ++++++++++++++
 .../hubPeeredSpoke.vwan.parameters.all.json   | 68 +++++++++++++
 .../mgDiagSettingsAll.parameters.all.json     | 33 +++++++
 .../mgDiagSettingsAll.parameters.min.json     | 15 +++
 .../subPlacementAll.parameters.all.json       | 57 +++++++++++
 .../subPlacementAll.parameters.min.json       | 33 +++++++
 77 files changed, 2171 insertions(+)
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
 create mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
 create mode 100644 infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
 create mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
 create mode 100644 infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
 create mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
 create mode 100644 infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
 create mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
 create mode 100644 infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
new file mode 100644
index 000000000..c0c35c39e
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parAssignableScopeManagementGroupId": {
+      "value": "alz"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
new file mode 100644
index 000000000..c0c35c39e
--- /dev/null
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.min.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parAssignableScopeManagementGroupId": {
+      "value": "alz"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
new file mode 100644
index 000000000..51abbf1c0
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json
@@ -0,0 +1,58 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceName": {
+      "value": "alz-log-analytics"
+    },
+    "parLogAnalyticsWorkspaceLocation": {
+      "value": "eastus"
+    },
+    "parLogAnalyticsWorkspaceSkuName": {
+      "value": "PerGB2018"
+    },
+    "parLogAnalyticsWorkspaceCapacityReservationLevel": {
+      "value": 100
+    },
+    "parLogAnalyticsWorkspaceLogRetentionInDays": {
+      "value": 365
+    },
+    "parLogAnalyticsWorkspaceSolutions": {
+      "value": [
+        "AgentHealthAssessment",
+        "AntiMalware",
+        "ChangeTracking",
+        "Security",
+        "SecurityInsights",
+        "SQLAdvancedThreatProtection",
+        "SQLVulnerabilityAssessment",
+        "SQLAssessment",
+        "Updates",
+        "VMInsights"
+      ]
+    },
+    "parLogAnalyticsWorkspaceLinkAutomationAccount": {
+      "value": true
+    },
+    "parAutomationAccountName": {
+      "value": "alz-automation-account"
+    },
+    "parAutomationAccountLocation": {
+      "value": "eastus2"
+    },
+    "parAutomationAccountUseManagedIdentity": {
+      "value": true
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parUseSentinelClassicPricingTiers": {
+      "value": false
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
new file mode 100644
index 000000000..a962c9a3f
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.min.json
@@ -0,0 +1,32 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceLogRetentionInDays": {
+      "value": 365
+    },
+    "parLogAnalyticsWorkspaceLocation": {
+      "value": "eastus"
+    },
+    "parLogAnalyticsWorkspaceSolutions": {
+      "value": [
+        "AgentHealthAssessment",
+        "AntiMalware",
+        "ChangeTracking",
+        "Security",
+        "SecurityInsights",
+        "SQLAdvancedThreatProtection",
+        "SQLVulnerabilityAssessment",
+        "SQLAssessment",
+        "Updates",
+        "VMInsights"
+      ]
+    },
+    "parAutomationAccountLocation": {
+      "value": "eastus2"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
new file mode 100644
index 000000000..5881fbcd0
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json
@@ -0,0 +1,52 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceName": {
+      "value": "alz-log-analytics"
+    },
+    "parLogAnalyticsWorkspaceLocation": {
+      "value": "chinaeast2"
+    },
+    "parLogAnalyticsWorkspaceSkuName": {
+      "value": "PerGB2018"
+    },
+    "parLogAnalyticsWorkspaceLogRetentionInDays": {
+      "value": 365
+    },
+    "parLogAnalyticsWorkspaceSolutions": {
+      "value": [
+        "AgentHealthAssessment",
+        "AntiMalware",
+        "ChangeTracking",
+        "Security",
+        "SecurityInsights",
+        "SQLAdvancedThreatProtection",
+        "SQLVulnerabilityAssessment",
+        "SQLAssessment",
+        "Updates",
+        "VMInsights"
+      ]
+    },
+    "parLogAnalyticsWorkspaceLinkAutomationAccount": {
+      "value": true
+    },
+    "parAutomationAccountName": {
+      "value": "alz-automation-account"
+    },
+    "parAutomationAccountLocation": {
+      "value": "chinaeast2"
+    },
+    "parAutomationAccountUseManagedIdentity": {
+      "value": true
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
new file mode 100644
index 000000000..04d9b40d4
--- /dev/null
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.min.json
@@ -0,0 +1,32 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceLocation": {
+      "value": "chinaeast2"
+    },
+    "parLogAnalyticsWorkspaceLogRetentionInDays": {
+      "value": 365
+    },
+    "parLogAnalyticsWorkspaceSolutions": {
+      "value": [
+        "AgentHealthAssessment",
+        "AntiMalware",
+        "ChangeTracking",
+        "Security",
+        "SecurityInsights",
+        "SQLAdvancedThreatProtection",
+        "SQLVulnerabilityAssessment",
+        "SQLAssessment",
+        "Updates",
+        "VMInsights"
+      ]
+    },
+    "parAutomationAccountLocation": {
+      "value": "chinaeast2"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
new file mode 100644
index 000000000..1111b9469
--- /dev/null
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json
@@ -0,0 +1,36 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parTopLevelManagementGroupSuffix": {
+      "value": ""
+    },
+    "parTopLevelManagementGroupDisplayName": {
+      "value": "Azure Landing Zones"
+    },
+    "parTopLevelManagementGroupParentId": {
+      "value": ""
+    },
+    "parLandingZoneMgAlzDefaultsEnable": {
+      "value": true
+    },
+    "parPlatformMgAlzDefaultsEnable": {
+      "value": true
+    },
+    "parLandingZoneMgConfidentialEnable": {
+      "value": false
+    },
+    "parLandingZoneMgChildren": {
+      "value": {}
+    },
+    "parPlatformMgChildren": {
+      "value": {}
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
new file mode 100644
index 000000000..04dfd1df2
--- /dev/null
+++ b/infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.min.json
@@ -0,0 +1,9 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
new file mode 100644
index 000000000..e20f3a315
--- /dev/null
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceResourceId": {
+      "value": ""
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
new file mode 100644
index 000000000..e20f3a315
--- /dev/null
+++ b/infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.min.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLogAnalyticsWorkspaceResourceId": {
+      "value": ""
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
new file mode 100644
index 000000000..515ac1130
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json
@@ -0,0 +1,27 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parTopLevelManagementGroupPrefix": {
+            "value": "alz"
+        },
+        "parLogAnalyticsWorkSpaceAndAutomationAccountLocation": {
+            "value": "eastus"
+        },
+        "parLogAnalyticsWorkspaceResourceId": {
+            "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-logging/providers/Microsoft.OperationalInsights/workspaces/alz-log-analytics"
+        },
+        "parLogAnalyticsWorkspaceLogRetentionInDays": {
+            "value": "365"
+        },
+        "parAutomationAccountName": {
+            "value": "alz-automation-account"
+        },
+        "parMsDefenderForCloudEmailSecurityContact": {
+            "value": "security_contact@replace_me.com"
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
new file mode 100644
index 000000000..148103cbd
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json
@@ -0,0 +1,74 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deploy-ASCDF-Config"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deploy Microsoft Defender for Cloud configuration"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "Deploy Microsoft Defender for Cloud and Security Contacts"
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {
+                "emailSecurityContact": {
+                    "value": "security_contact@replace_me"
+                },
+                "logAnalytics": {
+                    "value": "alz-log-analytics"
+                },
+                "ascExportResourceGroupName": {
+                    "value": "alz-asc-export"
+                },
+                "ascExportResourceGroupLocation": {
+                    "value": "${parDefaultRegion}"
+                },
+                "enableAscForServers": {
+                    "value": "Disabled"
+                },
+                "enableAscForSql": {
+                    "value": "Disabled"
+                }
+            }
+        },
+        "parPolicyAssignmentParameterOverrides": {
+            "value": {}
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parPolicyAssignmentEnforcementMode": {
+            "value": "Default"
+        },
+        "parPolicyAssignmentIdentityType": {
+            "value": "SystemAssigned"
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
+            "value": [
+                "alz-platform"
+            ]
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
+            "value": []
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
+          "value": []
+        },
+        "parPolicyAssignmentIdentityRoleDefinitionIds": {
+            "value": [
+                "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
+            ]
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
new file mode 100644
index 000000000..9a4f27e29
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.min.json
@@ -0,0 +1,49 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deploy-ASCDF-Config"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deploy Microsoft Defender for Cloud configuration"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "Deploy Microsoft Defender for Cloud and Security Contacts"
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-ASCDF-Config"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {
+                "emailSecurityContact": {
+                    "value": "security_contact@replace_me"
+                },
+                "logAnalytics": {
+                    "value": "alz-log-analytics"
+                },
+                "ascExportResourceGroupName": {
+                    "value": "alz-asc-export"
+                },
+                "ascExportResourceGroupLocation": {
+                    "value": "${parDefaultRegion}"
+                },
+                "enableAscForServers": {
+                    "value": "Disabled"
+                },
+                "enableAscForSql": {
+                    "value": "Disabled"
+                }
+            }
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
new file mode 100644
index 000000000..a6dc700da
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json
@@ -0,0 +1,51 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deny-PublicIP"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deny the creation of public IP"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "This policy denies creation of Public IPs under the assigned scope."
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {}
+        },
+        "parPolicyAssignmentParameterOverrides": {
+            "value": {}
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parPolicyAssignmentEnforcementMode": {
+            "value": "Default"
+        },
+        "parPolicyAssignmentIdentityType": {
+            "value": "None"
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
+            "value": []
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
+            "value": []
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
+          "value": []
+        },
+        "parPolicyAssignmentIdentityRoleDefinitionIds": {
+            "value": []
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
new file mode 100644
index 000000000..6025094e5
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.min.json
@@ -0,0 +1,30 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deny-PublicIP"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deny the creation of public IP"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "This policy denies creation of Public IPs under the assigned scope."
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policyDefinitions/Deny-PublicIP"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {}
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
new file mode 100644
index 000000000..314325ac1
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json
@@ -0,0 +1,98 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deploy-MDFC-Config"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deploy Microsoft Defender for Cloud configuration"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "Deploy Microsoft Defender for Cloud configuration and Security Contacts"
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {
+                "emailSecurityContact": {
+                    "value": "security_contact@replace_me"
+                },
+                "logAnalytics": {
+                    "value": "alz-la"
+                },
+                "ascExportResourceGroupName": {
+                    "value": "alz-asc-export"
+                },
+                "ascExportResourceGroupLocation": {
+                    "value": "${parDefaultRegion}"
+                },
+                "enableAscForServers": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForSql": {
+                    "value": "Disabled"
+                },
+                "enableAscForAppServices": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForStorage": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForContainers": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForKeyVault": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForSqlOnVm": {
+                    "value": "Disabled"
+                },
+                "enableAscForArm": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForDns": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForOssDb": {
+                    "value": "Disabled"
+                }
+            }
+        },
+        "parPolicyAssignmentParameterOverrides": {
+            "value": {}
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parPolicyAssignmentEnforcementMode": {
+            "value": "Default"
+        },
+        "parPolicyAssignmentIdentityType": {
+            "value": "SystemAssigned"
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsAdditionalMgs": {
+            "value": [
+                "alz-platform"
+            ]
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsSubs": {
+            "value": []
+        },
+        "parPolicyAssignmentIdentityRoleAssignmentsResourceGroups": {
+          "value": []
+        },
+        "parPolicyAssignmentIdentityRoleDefinitionIds": {
+            "value": [
+                "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
+            ]
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
diff --git a/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
new file mode 100644
index 000000000..fc8572a5d
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.min.json
@@ -0,0 +1,73 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPolicyAssignmentName": {
+            "value": "Deploy-MDFC-Config"
+        },
+        "parPolicyAssignmentDisplayName": {
+            "value": "Deploy Microsoft Defender for Cloud configuration"
+        },
+        "parPolicyAssignmentDescription": {
+            "value": "Deploy Microsoft Defender for Cloud configuration and Security Contacts"
+        },
+        "parPolicyAssignmentDefinitionId": {
+            "value": "/providers/Microsoft.Management/managementGroups/alz/providers/Microsoft.Authorization/policySetDefinitions/Deploy-MDFC-Config"
+        },
+        "parPolicyAssignmentParameters": {
+            "value": {
+                "emailSecurityContact": {
+                    "value": "security_contact@replace_me"
+                },
+                "logAnalytics": {
+                    "value": "alz-la"
+                },
+                "ascExportResourceGroupName": {
+                    "value": "alz-asc-export"
+                },
+                "ascExportResourceGroupLocation": {
+                    "value": "${parDefaultRegion}"
+                },
+                "enableAscForServers": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForSql": {
+                    "value": "Disabled"
+                },
+                "enableAscForAppServices": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForStorage": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForContainers": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForKeyVault": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForSqlOnVm": {
+                    "value": "Disabled"
+                },
+                "enableAscForArm": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForDns": {
+                    "value": "DeployIfNotExists"
+                },
+                "enableAscForOssDb": {
+                    "value": "Disabled"
+                }
+            }
+        },
+        "parPolicyAssignmentNonComplianceMessages": {
+            "value": []
+        },
+        "parPolicyAssignmentNotScopes": {
+            "value": []
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
new file mode 100644
index 000000000..d30044fcd
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json
@@ -0,0 +1,12 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parTargetManagementGroupId": {
+            "value": "alz"
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
new file mode 100644
index 000000000..fc8925036
--- /dev/null
+++ b/infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.min.json
@@ -0,0 +1,9 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
new file mode 100644
index 000000000..f0bb9fd41
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSpokeVirtualNetworkResourceId": {
+      "value": ""
+    },
+    "parPrivateDnsZoneResourceIds":{
+      "value": []
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
new file mode 100644
index 000000000..f0bb9fd41
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.min.json
@@ -0,0 +1,12 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSpokeVirtualNetworkResourceId": {
+      "value": ""
+    },
+    "parPrivateDnsZoneResourceIds":{
+      "value": []
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
new file mode 100644
index 000000000..e387e2596
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.all.json
@@ -0,0 +1,56 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "chinaeast2"
+    },
+    "parPrivateDnsZones": {
+      "value": [
+        "privatelink.azure-automation.cn",
+        "privatelink.database.chinacloudapi.cn",
+        "privatelink.blob.core.chinacloudapi.cn",
+        "privatelink.table.core.chinacloudapi.cn",
+        "privatelink.queue.core.chinacloudapi.cn",
+        "privatelink.file.core.chinacloudapi.cn",
+        "privatelink.web.core.chinacloudapi.cn",
+        "privatelink.dfs.core.chinacloudapi.cn",
+        "privatelink.documents.azure.cn",
+        "privatelink.mongo.cosmos.azure.cn",
+        "privatelink.cassandra.cosmos.azure.cn",
+        "privatelink.gremlin.cosmos.azure.cn",
+        "privatelink.table.cosmos.azure.cn",
+        "privatelink.postgres.database.chinacloudapi.cn",
+        "privatelink.mysql.database.chinacloudapi.cn",
+        "privatelink.mariadb.database.chinacloudapi.cn",
+        "privatelink.vaultcore.azure.cn",
+        "privatelink.servicebus.chinacloudapi.cn",
+        "privatelink.azure-devices.cn",
+        "privatelink.eventgrid.azure.cn",
+        "privatelink.chinacloudsites.cn",
+        "privatelink.api.ml.azure.cn",
+        "privatelink.notebooks.chinacloudapi.cn",
+        "privatelink.signalr.azure.cn",
+        "privatelink.azurehdinsight.cn",
+        "privatelink.afs.azure.cn",
+        "privatelink.datafactory.azure.cn",
+        "privatelink.adf.azure.cn",
+        "privatelink.redis.cache.chinacloudapi.cn"
+      ]
+    },
+    "parPrivateDnsZoneAutoMergeAzureBackupZone": {
+      "value": true
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parVirtualNetworkIdToLink": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
new file mode 100644
index 000000000..ff3ebeee2
--- /dev/null
+++ b/infra-as-code/bicep/modules/privateDnsZones/parameters/mc-privateDnsZones.parameters.min.json
@@ -0,0 +1,48 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "chinaeast2"
+    },
+    "parPrivateDnsZones": {
+      "value": [
+        "privatelink.azure-automation.cn",
+        "privatelink.database.chinacloudapi.cn",
+        "privatelink.blob.core.chinacloudapi.cn",
+        "privatelink.table.core.chinacloudapi.cn",
+        "privatelink.queue.core.chinacloudapi.cn",
+        "privatelink.file.core.chinacloudapi.cn",
+        "privatelink.web.core.chinacloudapi.cn",
+        "privatelink.dfs.core.chinacloudapi.cn",
+        "privatelink.documents.azure.cn",
+        "privatelink.mongo.cosmos.azure.cn",
+        "privatelink.cassandra.cosmos.azure.cn",
+        "privatelink.gremlin.cosmos.azure.cn",
+        "privatelink.table.cosmos.azure.cn",
+        "privatelink.postgres.database.chinacloudapi.cn",
+        "privatelink.mysql.database.chinacloudapi.cn",
+        "privatelink.mariadb.database.chinacloudapi.cn",
+        "privatelink.vaultcore.azure.cn",
+        "privatelink.servicebus.chinacloudapi.cn",
+        "privatelink.azure-devices.cn",
+        "privatelink.eventgrid.azure.cn",
+        "privatelink.chinacloudsites.cn",
+        "privatelink.api.ml.azure.cn",
+        "privatelink.notebooks.chinacloudapi.cn",
+        "privatelink.signalr.azure.cn",
+        "privatelink.azurehdinsight.cn",
+        "privatelink.afs.azure.cn",
+        "privatelink.datafactory.azure.cn",
+        "privatelink.adf.azure.cn",
+        "privatelink.redis.cache.chinacloudapi.cn"
+      ]
+    },
+    "parVirtualNetworkIdToLink": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/xxxxxxxxxxx/providers/Microsoft.Network/virtualNetworks/xxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
new file mode 100644
index 000000000..40de9e5ec
--- /dev/null
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.all.json
@@ -0,0 +1,37 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "eastus"
+    },
+    "parPublicIpName": {
+      "value": "alz"
+    },
+    "parPublicIpSku": {
+      "value": {
+        "name": "Standard",
+        "tier": "Regional"
+      }
+    },
+    "parPublicIpProperties": {
+      "value": {
+        "publicIpAddressVersion": "IPv4",
+        "publicIpAllocationMethod": "Dynamic",
+        "deleteOption": "Delete",
+        "idleTimeoutInMinutes": 4
+      }
+    },
+    "parAvailabilityZones": {
+      "value": []
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
new file mode 100644
index 000000000..85fc1f5e6
--- /dev/null
+++ b/infra-as-code/bicep/modules/publicIp/parameters/publicIp.parameters.min.json
@@ -0,0 +1,26 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parPublicIpName": {
+            "value": "alz"
+        },
+        "parPublicIpSku": {
+            "value": {
+                "name": "Standard",
+                "tier": "Regional"
+            }
+        },
+        "parPublicIpProperties": {
+            "value": {
+                "publicIpAddressVersion": "IPv4",
+                "publicIpAllocationMethod": "Dynamic",
+                "deleteOption": "Delete",
+                "idleTimeoutInMinutes": 4
+            }
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
new file mode 100644
index 000000000..6dcf98ff6
--- /dev/null
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.all.json
@@ -0,0 +1,20 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "eastus"
+    },
+    "parResourceGroupName": {
+      "value": "alz-rg"
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
new file mode 100644
index 000000000..b273c06b5
--- /dev/null
+++ b/infra-as-code/bicep/modules/resourceGroup/parameters/resourceGroup.parameters.min.json
@@ -0,0 +1,15 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parLocation": {
+            "value": "eastus"
+        },
+        "parResourceGroupName": {
+            "value": "alz-rg"
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..12c90c3de
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..4501e72e4
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.managedIdentity.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
new file mode 100644
index 000000000..8851ff752
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
new file mode 100644
index 000000000..bc5415eb9
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.securityGroup.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..12c90c3de
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..4501e72e4
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..1e52c0bdd
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..1e52c0bdd
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.managedIdentity.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
new file mode 100644
index 000000000..11fd45b44
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
new file mode 100644
index 000000000..11fd45b44
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.securityGroup.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..1e52c0bdd
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..1e52c0bdd
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroupMany.servicePrincipal.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parManagementGroupIds": {
+      "value": [
+        "alz-platform-connectivity",
+        "alz-platform-identity"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..391a338c7
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..1fabe9273
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.managedIdentity.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
new file mode 100644
index 000000000..c5d868fb0
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
new file mode 100644
index 000000000..084bb3419
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.securityGroup.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..391a338c7
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..1fabe9273
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroup.servicePrincipal.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..b710c3995
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..b710c3995
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.managedIdentity.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
new file mode 100644
index 000000000..84825a5f8
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
new file mode 100644
index 000000000..84825a5f8
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.securityGroup.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..b710c3995
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..b710c3995
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentResourceGroupMany.servicePrincipal.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parResourceGroupIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/xxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..12c90c3de
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..4501e72e4
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.managedIdentity.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
new file mode 100644
index 000000000..8851ff752
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
new file mode 100644
index 000000000..bc5415eb9
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.securityGroup.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..12c90c3de
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.all.json
@@ -0,0 +1,21 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleAssignmentNameGuid": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..4501e72e4
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscription.servicePrincipal.parameters.min.json
@@ -0,0 +1,18 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
new file mode 100644
index 000000000..bae222003
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
new file mode 100644
index 000000000..bae222003
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.managedIdentity.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
new file mode 100644
index 000000000..034a798b5
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
new file mode 100644
index 000000000..034a798b5
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.securityGroup.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "Group"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
new file mode 100644
index 000000000..bae222003
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
new file mode 100644
index 000000000..bae222003
--- /dev/null
+++ b/infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentSubscriptionMany.servicePrincipal.parameters.min.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx",
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parRoleDefinitionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parAssigneePrincipalType": {
+      "value": "ServicePrincipal"
+    },
+    "parAssigneeObjectId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
new file mode 100644
index 000000000..112b11a08
--- /dev/null
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json
@@ -0,0 +1,38 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "eastus"
+    },
+    "parDisableBgpRoutePropagation": {
+      "value": false
+    },
+    "parDdosProtectionPlanId": {
+      "value": ""
+    },
+    "parSpokeNetworkAddressPrefix": {
+      "value": "10.11.0.0/16"
+    },
+    "parSpokeNetworkName": {
+      "value": "vnet-spoke"
+    },
+    "parDnsServerIps": {
+      "value": []
+    },
+    "parNextHopIpAddress": {
+      "value": ""
+    },
+    "parSpokeToHubRouteTableName": {
+      "value": "rtb-spoke-to-hub"
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
new file mode 100644
index 000000000..a6a793508
--- /dev/null
+++ b/infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.min.json
@@ -0,0 +1,24 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "parDisableBgpRoutePropagation": {
+            "value": false
+        },
+        "parDdosProtectionPlanId": {
+            "value": ""
+        },
+        "parSpokeNetworkAddressPrefix": {
+            "value": "10.11.0.0/16"
+        },
+        "parDnsServerIps": {
+            "value": []
+        },
+        "parNextHopIpAddress": {
+            "value": ""
+        },
+        "parTelemetryOptOut": {
+            "value": false
+        }
+    }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
new file mode 100644
index 000000000..2ed01fb87
--- /dev/null
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json
@@ -0,0 +1,17 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTargetManagementGroupId": {
+      "value": "alz-platform-connectivity"
+    },
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
new file mode 100644
index 000000000..2ed01fb87
--- /dev/null
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.min.json
@@ -0,0 +1,17 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTargetManagementGroupId": {
+      "value": "alz-platform-connectivity"
+    },
+    "parSubscriptionIds": {
+      "value": [
+        "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+      ]
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
new file mode 100644
index 000000000..90e26b482
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json
@@ -0,0 +1,30 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parDestinationVirtualNetworkId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
+    },
+    "parSourceVirtualNetworkName": {
+      "value": "vnet-spoke"
+    },
+    "parDestinationVirtualNetworkName": {
+      "value": "alz-hub-eastus"
+    },
+    "parAllowVirtualNetworkAccess": {
+      "value": true
+    },
+    "parAllowForwardedTraffic": {
+      "value": true
+    },
+    "parAllowGatewayTransit": {
+      "value": false
+    },
+    "parUseRemoteGateways": {
+      "value": false
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
new file mode 100644
index 000000000..90e26b482
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.min.json
@@ -0,0 +1,30 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parDestinationVirtualNetworkId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/HUB_Networking_POC/providers/Microsoft.Network/virtualNetworks/alz-hub-eastus"
+    },
+    "parSourceVirtualNetworkName": {
+      "value": "vnet-spoke"
+    },
+    "parDestinationVirtualNetworkName": {
+      "value": "alz-hub-eastus"
+    },
+    "parAllowVirtualNetworkAccess": {
+      "value": true
+    },
+    "parAllowForwardedTraffic": {
+      "value": true
+    },
+    "parAllowGatewayTransit": {
+      "value": false
+    },
+    "parUseRemoteGateways": {
+      "value": false
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
new file mode 100644
index 000000000..f60555284
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json
@@ -0,0 +1,24 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parVirtualWanHubResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus"
+    },
+    "parRemoteVirtualNetworkResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke"
+    },
+    "parVirtualHubConnectionPrefix": {
+      "value": ""
+    },
+    "parVirtualHubConnectionSuffix": {
+      "value": "-vhc"
+    },
+    "parEnableInternetSecurity": {
+      "value": false
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
new file mode 100644
index 000000000..a20679aad
--- /dev/null
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.min.json
@@ -0,0 +1,15 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parVirtualWanHubResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-vwan-eastus/providers/Microsoft.Network/virtualHubs/alz-vhub-eastus"
+    },
+    "parRemoteVirtualNetworkResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/spokevnet-rg/providers/Microsoft.Network/virtualNetworks/vnet-spoke"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
new file mode 100644
index 000000000..65328cd32
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json
@@ -0,0 +1,71 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "westeurope"
+    },
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parTopLevelManagementGroupSuffix": {
+      "value": ""
+    },
+    "parPeeredVnetSubscriptionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parPeeredVnetSubscriptionMgPlacement": {
+      "value": "alz-platform-connectivity"
+    },
+    "parDdosProtectionPlanId": {
+      "value": ""
+    },
+    "parSpokeNetworkName": {
+      "value": "vnet-spoke"
+    },
+    "parSpokeNetworkAddressPrefix": {
+      "value": "10.202.0.0/24"
+    },
+    "parDnsServerIps": {
+      "value": []
+    },
+    "parPrivateDnsZoneResourceIds":{
+      "value": []
+    },
+    "parNextHopIpAddress": {
+      "value": "10.20.255.4"
+    },
+    "parDisableBgpRoutePropagation": {
+      "value": false
+    },
+    "parSpoketoHubRouteTableName": {
+      "value": "rtb-spoke-to-hub"
+    },
+    "parHubVirtualNetworkId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualNetworks/alz-hub-westeurope"
+    },
+    "parAllowSpokeForwardedTraffic": {
+      "value": false
+    },
+    "parAllowHubVPNGatewayTransit": {
+      "value": true
+    },
+    "parVirtualHubConnectionPrefix": {
+      "value": ""
+    },
+    "parVirtualHubConnectionSuffix": {
+      "value": "-vhc"
+    },
+    "parEnableInternetSecurity": {
+      "value": false
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
new file mode 100644
index 000000000..0b147eba3
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.vwan.parameters.all.json
@@ -0,0 +1,68 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parLocation": {
+      "value": "westeurope"
+    },
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parTopLevelManagementGroupSuffix": {
+      "value": ""
+    },
+    "parPeeredVnetSubscriptionId": {
+      "value": "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+    },
+    "parPeeredVnetSubscriptionMgPlacement": {
+      "value": "alz-platform-connectivity"
+    },
+    "parDdosProtectionPlanId": {
+      "value": ""
+    },
+    "parSpokeNetworkName": {
+      "value": "vnet-spoke"
+    },
+    "parSpokeNetworkAddressPrefix": {
+      "value": "10.202.0.0/24"
+    },
+    "parDnsServerIps": {
+      "value": []
+    },
+    "parNextHopIpAddress": {
+      "value": "10.20.255.4"
+    },
+    "parDisableBgpRoutePropagation": {
+      "value": false
+    },
+    "parSpoketoHubRouteTableName": {
+      "value": "rtb-spoke-to-hub"
+    },
+    "parHubVirtualNetworkId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/alz-westeurope-hub-networking/providers/Microsoft.Network/virtualHubs/alz-vhub-westeurope"
+    },
+    "parAllowSpokeForwardedTraffic": {
+      "value": false
+    },
+    "parAllowHubVPNGatewayTransit": {
+      "value": true
+    },
+    "parVirtualHubConnectionPrefix": {
+      "value": ""
+    },
+    "parVirtualHubConnectionSuffix": {
+      "value": "-vhc"
+    },
+    "parEnableInternetSecurity": {
+      "value": false
+    },
+    "parTags": {
+      "value": {
+        "Environment": "Live"
+      }
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
new file mode 100644
index 000000000..47a5ee185
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json
@@ -0,0 +1,33 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parTopLevelManagementGroupSuffix": {
+      "value": ""
+    },
+    "parLandingZoneMgAlzDefaultsEnable": {
+      "value": true
+    },
+    "parPlatformMgAlzDefaultsEnable": {
+      "value": true
+    },
+    "parLandingZoneMgConfidentialEnable": {
+      "value": false
+    },
+    "parLogAnalyticsWorkspaceResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics"
+    },
+    "parLandingZoneMgChildren": {
+      "value": []
+    },
+    "parPlatformMgChildren": {
+      "value": []
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
new file mode 100644
index 000000000..23aa5f43e
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.min.json
@@ -0,0 +1,15 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parLogAnalyticsWorkspaceResourceId": {
+      "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourcegroups/alz-logging/providers/microsoft.operationalinsights/workspaces/alz-log-analytics"
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
new file mode 100644
index 000000000..00459d618
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json
@@ -0,0 +1,57 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parTopLevelManagementGroupSuffix": {
+      "value": ""
+    },
+    "parIntRootMgSubs": {
+      "value": []
+    },
+    "parPlatformMgSubs": {
+      "value": []
+    },
+    "parPlatformManagementMgSubs": {
+      "value": []
+    },
+    "parPlatformConnectivityMgSubs": {
+      "value": []
+    },
+    "parPlatformIdentityMgSubs": {
+      "value": []
+    },
+    "parLandingZonesMgSubs": {
+      "value": []
+    },
+    "parLandingZonesCorpMgSubs": {
+      "value": []
+    },
+    "parLandingZonesOnlineMgSubs": {
+      "value": []
+    },
+    "parLandingZonesConfidentialCorpMgSubs": {
+      "value": []
+    },
+    "parLandingZonesConfidentialOnlineMgSubs": {
+      "value": []
+    },
+    "parLandingZoneMgChildrenSubs": {
+      "value": {}
+    },
+    "parPlatformMgChildrenSubs": {
+      "value": {}
+    },
+    "parDecommissionedMgSubs": {
+      "value": []
+    },
+    "parSandboxMgSubs": {
+      "value": []
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json
new file mode 100644
index 000000000..748d16652
--- /dev/null
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.min.json
@@ -0,0 +1,33 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+  "contentVersion": "1.0.0.0",
+  "parameters": {
+    "parTopLevelManagementGroupPrefix": {
+      "value": "alz"
+    },
+    "parPlatformManagementMgSubs": {
+      "value": []
+    },
+    "parPlatformConnectivityMgSubs": {
+      "value": []
+    },
+    "parPlatformIdentityMgSubs": {
+      "value": []
+    },
+    "parLandingZonesCorpMgSubs": {
+      "value": []
+    },
+    "parLandingZonesOnlineMgSubs": {
+      "value": []
+    },
+    "parDecommissionedMgSubs": {
+      "value": []
+    },
+    "parSandboxMgSubs": {
+      "value": []
+    },
+    "parTelemetryOptOut": {
+      "value": false
+    }
+  }
+}
\ No newline at end of file

From 0f229caa8e69554d6d729f1e2cbb09ad14e17d07 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 10:34:18 +0000
Subject: [PATCH 12/21] bring back mg json example

---
 .../bicep/modules/managementGroups/README.md  | 25 +++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/infra-as-code/bicep/modules/managementGroups/README.md b/infra-as-code/bicep/modules/managementGroups/README.md
index b61584f06..5007f4079 100644
--- a/infra-as-code/bicep/modules/managementGroups/README.md
+++ b/infra-as-code/bicep/modules/managementGroups/README.md
@@ -90,6 +90,31 @@ parPlatformMgChildren: {
 }
 ```
 
+##### JSON Parameter File Input Example
+
+```json
+"parLandingZoneMgChildren": {
+    "value": {
+        "pci": {
+          "displayName": "PCI"
+        },
+        "another-example": {
+          "displayName": "Another Example"
+        }
+    }
+},
+"parPlatformMgChildren": {
+    "value": {
+        "security": {
+          "displayName": "Security"
+        },
+        "yet-another-example": {
+          "displayName": "Yet Another Example"
+        }
+    }
+}
+```
+
 ## Outputs
 
 The module will generate the following outputs:

From c3ce50562a534b19104535278ebfc6040d874063 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 10:36:34 +0000
Subject: [PATCH 13/21] working on examples for bicepparam

---
 infra-as-code/bicep/modules/customRoleDefinitions/README.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/README.md b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
index b000841cd..694038238 100644
--- a/infra-as-code/bicep/modules/customRoleDefinitions/README.md
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
@@ -37,11 +37,13 @@ There are two different sets of deployment; one for deploying to Azure global re
  | Azure Cloud    | Bicep template                 | Input parameters file                             |
  | -------------- | ------------------------------ | ------------------------------------------------- |
  | Global regions | customRoleDefinitions.bicep    | parameters/customRoleDefinitions.parameters.all.bicepparam |
+ | Global regions | customRoleDefinitions.bicep    | parameters/customRoleDefinitions.parameters.all.json |
  | China regions  | mc-customRoleDefinitions.bicep | parameters/customRoleDefinitions.parameters.all.bicepparam |
+ | China regions  | mc-customRoleDefinitions.bicep | parameters/customRoleDefinitions.parameters.all.json |
 
 In this example, the custom roles will be deployed to the `alz` management group (the intermediate root management group).
 
-Input parameter file `parameters/customRoleDefinitions.parameters.all.bicepparam` defines the assignable scope for the roles.  In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
+Input parameter file `parameters/customRoleDefinitions.parameters.all.BICEPPARAM/JSON` defines the assignable scope for the roles.  In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 

From 26d66cde329b24631f9d2d680a9ed6305a592e5f Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 10:41:22 +0000
Subject: [PATCH 14/21] json and bicep examples for first module

---
 .../modules/customRoleDefinitions/README.md   | 75 ++++++++++++++++++-
 1 file changed, 73 insertions(+), 2 deletions(-)

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/README.md b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
index 694038238..58c751591 100644
--- a/infra-as-code/bicep/modules/customRoleDefinitions/README.md
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
@@ -47,7 +47,7 @@ Input parameter file `parameters/customRoleDefinitions.parameters.all.BICEPPARAM
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -83,7 +83,44 @@ PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/custom
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+# Management Group ID
+MGID="alz"
+
+# Chosen Azure Region
+LOCATION="eastus"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
+TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+# Management Group ID
+MGID="alz"
+
+# Chosen Azure Region
+LOCATION="chinaeast2"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
+TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -117,6 +154,40 @@ New-AzManagementGroupDeployment @inputObject
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output")
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-CustomRoleDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-CustomRoleDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
+#### Example Deployment Output
+
+![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output")
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")

From b26b6a3b90aac7b07312e90dbb468ca096a06cd4 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 16:37:20 +0000
Subject: [PATCH 15/21] snippets

---
 .../bicep/modules/hubNetworking/README.md     | 109 ++++++++++++++++-
 infra-as-code/bicep/modules/logging/README.md | 111 +++++++++++++++++-
 .../bicep/modules/managementGroups/README.md  |  28 ++++-
 3 files changed, 243 insertions(+), 5 deletions(-)

diff --git a/infra-as-code/bicep/modules/hubNetworking/README.md b/infra-as-code/bicep/modules/hubNetworking/README.md
index 713c81f35..b6ed63eac 100644
--- a/infra-as-code/bicep/modules/hubNetworking/README.md
+++ b/infra-as-code/bicep/modules/hubNetworking/README.md
@@ -86,11 +86,13 @@ There are two different sets of input parameters; one for deploying to Azure glo
  | Azure Cloud    | Bicep template      | Input parameters file                           |
  | -------------- | ------------------- | ----------------------------------------------- |
  | Global regions | hubNetworking.bicep | parameters/hubNetworking.parameters.all.bicepparam    |
+ | Global regions | hubNetworking.bicep | parameters/hubNetworking.parameters.all.json    |
  | China regions  | hubNetworking.bicep | parameters/mc-hubNetworking.parameters.all.bicepparam |
+ | China regions  | hubNetworking.bicep | parameters/mc-hubNetworking.parameters.all.json |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 ```bash
 # For Azure global regions
 
@@ -136,7 +138,53 @@ az group create --location chinaeast2 \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+```bash
+# For Azure global regions
+
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-HubNetworkingDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json"
+
+az group create --location eastus \
+   --name $GROUP
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-HubNetworkingDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json"
+
+az group create --location chinaeast2 \
+   --name $GROUP
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -190,6 +238,63 @@ New-AzResourceGroup `
 
 New-AzResourceGroupDeployment @inputObject
 ```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set Platform management subscription ID as the the current subscription
+$ManagementSubscriptionId = "[your platform management subscription ID]"
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
+  TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.json"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'eastus'
+
+New-AzResourceGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
+  TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.json"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'chinaeast2'
+
+New-AzResourceGroupDeployment @inputObject
+```
+
+
 ## Example Output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output in Azure global regions")
diff --git a/infra-as-code/bicep/modules/logging/README.md b/infra-as-code/bicep/modules/logging/README.md
index 7c0feb416..e6f771890 100644
--- a/infra-as-code/bicep/modules/logging/README.md
+++ b/infra-as-code/bicep/modules/logging/README.md
@@ -33,12 +33,15 @@ There are separate input parameters files depending on which Azure cloud you are
 | Azure Cloud    | Bicep template | Input parameters file                     |
 | -------------- | -------------- | ----------------------------------------- |
 | Global regions | logging.bicep  | parameters/logging.parameters.all.bicepparam    |
+| Global regions | logging.bicep  | parameters/logging.parameters.all.json    |
 | China regions  | logging.bicep  | parameters/mc-logging.parameters.all.bicepparam |
+| China regions  | logging.bicep  | parameters/mc-logging.parameters.all.json |
+
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 > If the deployment failed due an error that your alz-log-analytics/Automation resource of type 'Microsoft.OperationalInsights/workspaces/linkedServices' was not found, please retry the deployment step and it would succeed.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure Global regions
@@ -88,7 +91,57 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure Global regions
+# Set Platform management subscripion ID as the the current subscription
+ManagementSubscriptionId="[your platform management subscription ID]"
+az account set --subscription $ManagementSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+GROUP="rg-$TopLevelMGPrefix-logging-001"
+NAME="alz-loggingDeployment-${dateYMD}"
+TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location eastus
+
+# Deploy Module
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set Platform management subscripion ID as the the current subscription
+ManagementSubscriptionId="[your platform management subscription ID]"
+az account set --subscription $ManagementSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+GROUP="rg-$TopLevelMGPrefix-logging-001"
+NAME="alz-loggingDeployment-${dateYMD}"
+TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location chinaeast2
+
+# Deploy Module
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure Global regions
@@ -142,6 +195,60 @@ New-AzResourceGroup `
 New-AzResourceGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure Global regions
+# Set Platform management subscripion ID as the the current subscription
+$ManagementSubscriptionId = "[your platform management subscription ID]"
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
+  TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+}
+
+Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
+
+# Create Resource Group - optional when using an existing resource group
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location eastus
+
+New-AzResourceGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+# Set Platform management subscripion ID as the the current subscription
+$ManagementSubscriptionId = "[your platform management subscription ID]"
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
+  TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.json"
+}
+
+Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
+
+# Create Resource Group - optional when using an existing resource group
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location chinaeast2
+
+New-AzResourceGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/modules/managementGroups/README.md b/infra-as-code/bicep/modules/managementGroups/README.md
index 5007f4079..07c716406 100644
--- a/infra-as-code/bicep/modules/managementGroups/README.md
+++ b/infra-as-code/bicep/modules/managementGroups/README.md
@@ -142,7 +142,7 @@ In this example, the management groups are created at the `Tenant Root Group` th
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI - `managementGroups.bicep`
+### Azure CLI - `managementGroups.bicep` - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -168,6 +168,32 @@ PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementG
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
+### Azure CLI - `managementGroups.bicep` - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-MGDeployment-${dateYMD}"
+LOCATION="eastus"
+TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json"
+
+az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-MGDeployment-${dateYMD}"
+LOCATION="chinaeast2"
+TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json"
+
+az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
 ### Azure CLI - `managementGroupsScopeEscape.bicep`
 
 Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.

From f9a2e6e575071d8030d369f9908bec5762d7347f Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 17:11:58 +0000
Subject: [PATCH 16/21] changes

---
 .../bicep/modules/managementGroups/README.md  | 93 ++++++++++++++++++-
 .../bicep/modules/mgDiagSettings/README.md    | 48 +++++++++-
 2 files changed, 136 insertions(+), 5 deletions(-)

diff --git a/infra-as-code/bicep/modules/managementGroups/README.md b/infra-as-code/bicep/modules/managementGroups/README.md
index 07c716406..d744082bd 100644
--- a/infra-as-code/bicep/modules/managementGroups/README.md
+++ b/infra-as-code/bicep/modules/managementGroups/README.md
@@ -194,7 +194,37 @@ PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementG
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### Azure CLI - `managementGroupsScopeEscape.bicep`
+### Azure CLI - `managementGroupsScopeEscape.bicep` - BICEPPARAMS
+
+Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-MGDeployment-${dateYMD}"
+LOCATION="eastus"
+TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+MGID="alz"
+
+az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS --management-group-id $MGID
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-MGDeployment-${dateYMD}"
+LOCATION="chinaeast2"
+TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+MGID="alz"
+
+az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS --management-group-id $MGID
+```
+
+### Azure CLI - `managementGroupsScopeEscape.bicep` - JSON
 
 Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
 
@@ -224,7 +254,8 @@ MGID="alz"
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS --management-group-id $MGID
 ```
 
-### PowerShell - `managementGroups.bicep`
+
+### PowerShell - `managementGroups.bicep` - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -250,7 +281,63 @@ $inputObject = @{
 New-AzTenantDeployment @inputObject
 ```
 
-### PowerShell - `managementGroupsScopeEscape.bicep`
+### PowerShell - `managementGroups.bicep` - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'EastUS'
+  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json'
+}
+New-AzTenantDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.json'
+}
+New-AzTenantDeployment @inputObject
+```
+
+### PowerShell - `managementGroupsScopeEscape.bicep` - BICEPPARAMS
+
+Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'EastUS'
+  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
+  ManagementGroupId     = 'alz'
+}
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
+  ManagementGroupId     = 'alz'
+}
+New-AzManagementGroupDeployment @inputObject
+```
+
+### PowerShell - `managementGroupsScopeEscape.bicep` - JSON
 
 Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
 
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/README.md b/infra-as-code/bicep/modules/mgDiagSettings/README.md
index 40b5bf65f..90e05154a 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/README.md
+++ b/infra-as-code/bicep/modules/mgDiagSettings/README.md
@@ -17,7 +17,7 @@ The inputs for this module are defined in `parameters/mgDiagSettings.parameters.
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -39,7 +39,29 @@ az deployment mg create \
   --management-group-id alz
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+az deployment mg create \
+  --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
+  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json \
+  --location eastus \
+  --management-group-id alz
+```
+
+OR
+
+```bash
+# For Azure China regions
+az deployment mg create \
+  --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
+  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json \
+  --location chinaeast2 \
+  --management-group-id alz
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -61,6 +83,28 @@ New-AzManagementGroupDeployment `
   -ManagementGroupId "alz"
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+New-AzManagementGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json" `
+  -Location "eastus" `
+  -ManagementGroupId "alz"
+```
+
+OR
+
+```powershell
+# For Azure China regions
+New-AzManagementGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.json" `
+  -Location "chinaeast2" `
+  -ManagementGroupId "alz"
+```
+
 ## Validation
 
 To validate if Diagnostic Settings was correctly enabled for any specific management group, a REST API GET call can be used. Documentation and easy way to try this can be found in this link [(Management Group Diagnostic Settings - Get)](https://learn.microsoft.com/rest/api/monitor/management-group-diagnostic-settings/get?tabs=HTTP&tryIt=true&source=docs#code-try-0). There is currently not a direct way to validate this in the Azure Portal, Azure CLI or PowerShell.

From dbd5dbe5a3b1ed8a624a4e8342e01c18dbeb02e2 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 17:38:05 +0000
Subject: [PATCH 17/21] code snippets

---
 .../bicep/modules/mgDiagSettings/README.md    |   2 +-
 .../modules/policy/assignments/README.md      | 128 +++++++++++++++++-
 .../policy/assignments/alzDefaults/README.md  |  63 ++++++++-
 .../modules/policy/definitions/README.md      |  65 ++++++++-
 .../modules/privateDnsZoneLinks/README.md     |  46 ++++++-
 .../bicep/modules/privateDnsZones/README.md   | 104 +++++++++++++-
 .../bicep/modules/roleAssignments/README.md   |  64 ++++++++-
 .../bicep/modules/spokeNetworking/README.md   | 107 ++++++++++++++-
 .../modules/subscriptionPlacement/README.md   |  62 ++++++++-
 .../bicep/modules/vnetPeering/README.md       | 107 ++++++++++++++-
 .../bicep/modules/vnetPeeringVwan/README.md   |  75 +++++++++-
 .../bicep/modules/vwanConnectivity/README.md  | 117 +++++++++++++++-
 12 files changed, 909 insertions(+), 31 deletions(-)

diff --git a/infra-as-code/bicep/modules/mgDiagSettings/README.md b/infra-as-code/bicep/modules/mgDiagSettings/README.md
index 90e05154a..2374d9d4e 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/README.md
+++ b/infra-as-code/bicep/modules/mgDiagSettings/README.md
@@ -13,7 +13,7 @@ This module enables the supported Diagnostic Settings categories on a Management
 
 ## Deployment
 
-The inputs for this module are defined in `parameters/mgDiagSettings.parameters.all.bicepparam`. The Diagnostic Settings resource will be named toLa but can be changed in the module if desired.
+The inputs for this module are defined in the respective parameter file (BICEPPARAM/JSON). The Diagnostic Settings resource will be named toLa but can be changed in the module if desired.
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
diff --git a/infra-as-code/bicep/modules/policy/assignments/README.md b/infra-as-code/bicep/modules/policy/assignments/README.md
index 17b1f603e..c925a1ca2 100644
--- a/infra-as-code/bicep/modules/policy/assignments/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/README.md
@@ -24,7 +24,7 @@ The module does not generate any outputs.
 
 In this example, the `Deny-PublicIP` custom policy definition will be deployed/assigned to the `alz-landingzones` management group.
 
-#### Azure CLI - Deny
+#### Azure CLI - Deny - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -54,7 +54,37 @@ TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentMan
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-#### PowerShell - Deny
+#### Azure CLI - Deny - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
+
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json"
+LOCATION="eastus"
+MGID="alz-landingzones"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
+
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json"
+LOCATION="chinaeast2"
+MGID="alz-landingzones"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+#### PowerShell - Deny - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -82,6 +112,34 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+#### PowerShell - Deny - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ManagementGroupId     = 'alz-landingzones'
+  Location              = 'eastus'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+}
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ManagementGroupId     = 'alz-landingzones'
+  Location              = 'chinaeast2'
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.json'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+}
+New-AzManagementGroupDeployment @inputObject
+```
+
 ### DeployIfNotExists Effect
 
 There are two different sets of input parameters files; one for deploying to Azure global regions, and another for deploying specifically to Azure China regions. This is due to a few Microsoft Defender for Cloud built-in policies which are not available in Azure China.
@@ -90,10 +148,12 @@ There are two different sets of input parameters files; one for deploying to Azu
  | -------------- | ------------------------------------- | --------------------------------------------------------------- |
  | Global regions | policyAssignmentManagementGroup.bicep | parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam    |
  | China regions  | policyAssignmentManagementGroup.bicep | parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam |
-
+ | Global regions | policyAssignmentManagementGroup.bicep | parameters/policyAssignmentManagementGroup.dine.parameters.all.json    |
+ | China regions  | policyAssignmentManagementGroup.bicep | parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json |
 
 In this example, the `Deploy-MDFC-Config` custom policy definition will be deployed/assigned to the `alz-landingzones` management group (intermediate root management group). And the managed identity associated with the policy will also be assigned to the `alz-platform` management group, as defined in the parameter file: `parameters/policyAssignmentManagementGroup.dine.parameters.all.bicepparam` or `parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.bicepparam`
-#### Azure CLI - DINE
+
+#### Azure CLI - DINE - BICEPPARAM
 
 ```bash
 # For Azure global regions
@@ -121,7 +181,35 @@ PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAss
 az deployment mg create --name $NAME --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-#### PowerShell - DINE
+#### Azure CLI - DINE - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PolicyDineAssignments-${dateYMD}"
+LOCATION="eastus"
+MGID="alz-landingzones"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json"
+
+az deployment mg create --name $NAME --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PolicyDineAssignments-${dateYMD}"
+LOCATION="eastus"
+MGID="alz-landingzones"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json"
+
+az deployment mg create --name $NAME --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+#### PowerShell - DINE - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -151,6 +239,36 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+#### PowerShell - DINE - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDineAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz-landingzones'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.dine.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDineAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz-landingzones'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/mc-policyAssignmentManagementGroup.dine.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
index a15916917..678bd945e 100644
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
@@ -24,7 +24,8 @@ The module does not generate any outputs.
 > However, if you later do decide to deploy an DDoS Network Protection Plan, you will need to remember to come back and update the parameter `parDdosProtectionPlanId` with the resource ID of the DDoS Network Protection Plan to ensure the policy is applied to the relevant Management Groups. You can then use a policy [remediation task](https://docs.microsoft.com/azure/governance/policy/how-to/remediate-resources) to bring all non-compliant VNETs back into compliance, once a [compliance scan](https://docs.microsoft.com/azure/governance/policy/how-to/get-compliance-data#evaluation-triggers) has taken place.
 <!-- markdownlint-restore -->
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
+
 ```bash
 # For Azure global regions
 
@@ -51,7 +52,35 @@ PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/paramete
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -81,6 +110,36 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-alzPolicyAssignmentDefaultsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alzPolicyAssignmentDefaultsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/mc-alzDefaultPolicyAssignments.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/modules/policy/definitions/README.md b/infra-as-code/bicep/modules/policy/definitions/README.md
index ca6f1aa4b..552b624a4 100644
--- a/infra-as-code/bicep/modules/policy/definitions/README.md
+++ b/infra-as-code/bicep/modules/policy/definitions/README.md
@@ -29,15 +29,17 @@ There are two different sets of deployment; one for deploying to Azure global re
  | -------------- | ---------------------------------- | ------------------------------------------------- |
  | Global regions | customPolicyDefinitions.bicep    | parameters/customPolicyDefinitions.parameters.all.bicepparam |
  | China regions  | mc-customPolicyDefinitions.bicep | parameters/customPolicyDefinitions.parameters.all.bicepparam |
+ | Global regions | customPolicyDefinitions.bicep    | parameters/customPolicyDefinitions.parameters.all.json |
+ | China regions  | mc-customPolicyDefinitions.bicep | parameters/customPolicyDefinitions.parameters.all.json |
 
 In this example, the custom policy definitions and policy set definitions will be deployed to the `alz` management group (the intermediate root management group).
 
-The input parameter file `parameters/customPolicyDefinitions.parameters.all.bicepparam` defines the target management group to which the custom policy definitions will be deployed to. In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
+The input parameter files (BICEPPARAM/JSON) defines the target management group to which the custom policy definitions will be deployed to. In this case, it will be the same management group (i.e. `alz`) as the one specified for the deployment operation. There is no change in the input parameter file for different Azure clouds because there is no change to the intermediate root management group.
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 > If the deployment provisioning state has failed due to policy definitions could not be found, this is often due to a known replication delay. Please re-run the deployment step below, and the deployment should succeed.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -65,7 +67,35 @@ PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPol
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PolicyDefsDefaults-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PolicyDefsDefaults-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -94,6 +124,35 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-PolicyDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.json'
+}
+New-AzManagementGroupDeployment @inputObject
+```
+
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output")
 
 ## Bicep Visualizer
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
index 80baf60d6..796cd5f8f 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
@@ -13,11 +13,11 @@ This module is used by the Hub Peered Spoke orchestration module to create virtu
 
 ## Deployment
 
-The inputs for this module are defined in `parameters/privateDnsZoneLinks.parameters.all.bicepparam`.
+The inputs for this module are defined in the relevant parameter file (BICEPPARAM/JSON).
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -37,7 +37,27 @@ az deployment rg create \
   --location chinaeast2
   ```
 
-### PowerShell
+  ### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+az deployment rg create \
+  --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
+  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json \
+  --location eastus
+```
+
+OR
+
+```bash
+# For Azure China regions
+az deployment rg create \
+  --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
+  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json \
+  --location chinaeast2
+  ```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -57,6 +77,26 @@ New-AzResourceGroupDeployment `
   -Location "chinaeast2"
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+New-AzResourceGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json" `
+  -Location "eastus"
+```
+
+OR
+
+```powershell
+# For Azure China regions
+New-AzResourceGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.json" `
+  -Location "chinaeast2"
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/modules/privateDnsZones/README.md b/infra-as-code/bicep/modules/privateDnsZones/README.md
index 42a67b631..76e120bd6 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZones/README.md
@@ -68,10 +68,12 @@ There are two different sets of input parameters; one for deploying to Azure glo
  | -------------- | --------------------- | ------------------------------------------ |
  | Global regions | privateDnsZones.bicep | parameters/privateDnsZones.parameters.all.bicepparam    |
  | China regions  | privateDnsZones.bicep | parameters/mc-privateDnsZones.parameters.all.bicepparam |
+ | Global regions | privateDnsZones.bicep | parameters/privateDnsZones.parameters.all.json    |
+ | China regions  | privateDnsZones.bicep | parameters/mc-privateDnsZones.parameters.all.json |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -115,7 +117,53 @@ az group create --location chinaeast2 \
 az deployment group create --name ${NAME:0:63} --resource-group $RESOURCEGROUP --parameters $PARAMETERS --template-file $TEMPLATEFILE
 ```
 
-### PowerShell
+
+
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
+RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+
+az group create --location eastus \
+   --name $RESOURCEGROUP
+
+az deployment group create --name ${NAME:0:63} --resource-group $RESOURCEGROUP --parameters $PARAMETERS --template-file $TEMPLATEFILE
+```
+OR
+```bash
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
+RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+
+az group create --location chinaeast2 \
+   --name $RESOURCEGROUP
+
+az deployment group create --name ${NAME:0:63} --resource-group $RESOURCEGROUP --parameters $PARAMETERS --template-file $TEMPLATEFILE
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -165,6 +213,58 @@ New-AzResourceGroup `
 
 New-AzResourceGroupDeployment @inputObject
 ```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "7a348906-189d-4e8d-9d72-ffb597a3e1d4"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+$inputObject = @{
+  DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
+  TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'eastus'
+
+New-AzResourceGroupDeployment @inputObject
+```
+OR
+
+```powershell
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+$inputObject = @{
+  DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
+  TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.json"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'chinaeast2'
+
+New-AzResourceGroupDeployment @inputObject
+```
+
 ## Example Output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output in Azure global regions")
diff --git a/infra-as-code/bicep/modules/roleAssignments/README.md b/infra-as-code/bicep/modules/roleAssignments/README.md
index d56d51ae8..fac0b3af1 100644
--- a/infra-as-code/bicep/modules/roleAssignments/README.md
+++ b/infra-as-code/bicep/modules/roleAssignments/README.md
@@ -96,11 +96,11 @@ Connect-AzureAD
 
 ## Deployment
 
-In this example, the built-in Reader role will be assigned to a Service Principal account at the `alz-platform` management group scope.  The inputs for this module are defined in `parameters/roleAssignmentManagementGroup.*.parameters.all.bicepparam`.
+In this example, the built-in Reader role will be assigned to a Service Principal account at the `alz-platform` management group scope.  The inputs for this module are defined in the relevant parameter file (BICEPPARAM/JSON).
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -128,7 +128,35 @@ PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignme
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -158,6 +186,36 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-RoleAssignmentsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-RoleAssignmentsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ### Single Management Group Role Assignment
diff --git a/infra-as-code/bicep/modules/spokeNetworking/README.md b/infra-as-code/bicep/modules/spokeNetworking/README.md
index 53af4176e..b24450256 100644
--- a/infra-as-code/bicep/modules/spokeNetworking/README.md
+++ b/infra-as-code/bicep/modules/spokeNetworking/README.md
@@ -49,7 +49,7 @@ In this example, the spoke resources will be deployed to the resource group spec
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -99,7 +99,57 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+# Set Azure Landing zone subscription ID as the the current subscription
+LandingZoneSubscriptionId="[your landing zone subscription ID]"
+
+az account set --subscription $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location eastus
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+LandingZoneSubscriptionId="[your landing zone subscription ID]"
+
+az account set --subscription $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location chinaeast2
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -150,6 +200,59 @@ New-AzResourceGroup `
 
 New-AzResourceGroupDeployment @inputObject
 ```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+$LandingZoneSubscriptionId = "716c5a22-62fe-4fdc-a29a-5fa62d8877a4"
+
+Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
+  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+  TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'eastus'
+
+New-AzResourceGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+$LandingZoneSubscriptionId = "[your landing zone subscription ID]"
+
+Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
+  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.json"
+  TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'chinaeast2'
+
+New-AzResourceGroupDeployment @inputObject
+```
+
 ## Example Output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output in Azure global regions")
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/README.md b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
index 33e8fa663..b88232325 100644
--- a/infra-as-code/bicep/modules/subscriptionPlacement/README.md
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
@@ -18,7 +18,7 @@ In this example, the subscription `xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx` will be
 
 > For the  examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -46,7 +46,36 @@ PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscr
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -75,6 +104,35 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-SubscriptionPlacementDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-SubscriptionPlacementDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.json'
+}
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/modules/vnetPeering/README.md b/infra-as-code/bicep/modules/vnetPeering/README.md
index 4fa3dfdbb..b2bb71230 100644
--- a/infra-as-code/bicep/modules/vnetPeering/README.md
+++ b/infra-as-code/bicep/modules/vnetPeering/README.md
@@ -35,10 +35,11 @@ During the deployment step, we will take parameters provided in the example para
  | Azure Cloud    | Bicep template      | Input parameters file                    |
  | -------------- | ------------------- | ---------------------------------------- |
  | All  regions | vnetPeering.bicep | parameters/vnetPeering.parameters.all.bicepparam    |
+ | All  regions | vnetPeering.bicep | parameters/vnetPeering.parameters.all.json    |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 **NOTE: As there is some PowerShell code within the CLI, there is a requirement to execute the deployments in a cross-platform terminal which has PowerShell installed.**
 ```bash
 # For Azure global regions
@@ -86,7 +87,55 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+**NOTE: As there is some PowerShell code within the CLI, there is a requirement to execute the deployments in a cross-platform terminal which has PowerShell installed.**
+```bash
+# For Azure global regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+LandingZoneSubscriptionId="[your Landing Zone subscription ID]"
+az account set --subscription $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vnetPeeringDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location eastus
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+LandingZoneSubscriptionId="[your Landing Zone subscription ID]"
+az account set --subscription $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vnetPeeringDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location chinaeast2
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -140,6 +189,60 @@ $inputObject = @{
 New-AzResourceGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+$LandingZoneSubscriptionId = "[your Landing Zone subscription ID]"
+
+Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
+  TemplateFile          = "infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+}
+
+# Create Resource Group - optional when using an existing resource group
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location eastus
+
+New-AzResourceGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+$LandingZoneSubscriptionId = "[your Landing Zone subscription ID]"
+
+Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
+
+# Create Resource Group - optional when using an existing resource group
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location chinaeast2
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
+  TemplateFile          = "ALZ-Bicep/infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.json"
+}
+
+New-AzResourceGroupDeployment @inputObject
+```
+
 ## Example output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output in Azure global regions")
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
index edf34987f..bf143bc89 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
@@ -29,10 +29,11 @@ In this example, the remote spoke Vnet will be peered with the Vwan Virtual Hub
  | Azure Cloud    | Bicep template      | Input parameters file                    |
  | -------------- | ------------------- | ---------------------------------------- |
  | All  regions | vnetPeeringVwan.bicep | parameters/vnetPeeringVwan.parameters.all.bicepparam    |
+ | All  regions | vnetPeeringVwan.bicep | parameters/vnetPeeringVwan.parameters.all.json    |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -64,7 +65,39 @@ PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringV
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your Landing Zone subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
+LOCATION="eastus"
+TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json"
+
+az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your Landing Zone subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
+LOCATION="chinaeast2"
+TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json"
+
+az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -100,6 +133,44 @@ $inputObject = @{
 
 New-AzDeployment @inputObject
 ```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your Landing Zone subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+$inputObject = @{
+  DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'eastus'
+  TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json'
+}
+
+New-AzDeployment @inputObject
+
+```
+OR
+```powershell
+# For Azure China regions
+# Set your Corp Connected Landing Zone subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your Landing Zone subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+$inputObject = @{
+  DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.json'
+}
+
+New-AzDeployment @inputObject
+```
+
 ## Example Output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output in Azure global regions")
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/README.md b/infra-as-code/bicep/modules/vwanConnectivity/README.md
index 4ee2b00be..e4b2b7f64 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/README.md
+++ b/infra-as-code/bicep/modules/vwanConnectivity/README.md
@@ -20,7 +20,7 @@ Module deploys the following resources which can be configured by parameters:
 > **NOTE:** Although there are generated parameter markdowns for Azure Commercial Cloud, this same module can still be used in Azure China. Example parameter are in the [parameters](./parameters/) folder.
 
 <!-- markdownlint-disable -->
-> NOTE: When deploying using the `parameters/vwanConnectivity.parameters.all.bicepparam` you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region. Failure to do so will cause these services to be unreachable over private endpoints.
+> NOTE: When deploying using the relevant parameter file you must update the `parPrivateDnsZones` parameter by replacing the `xxxxxx` placeholders with the deployment region. Failure to do so will cause these services to be unreachable over private endpoints.
 > For example, if deploying to East US the following zone entries:
 > - `privatelink.xxxxxx.azmk8s.io`
 > - `privatelink.xxxxxx.backup.windowsazure.com`
@@ -54,10 +54,13 @@ In this example, the resources required for Virtual WAN connectivity will be dep
  | -------------- | ---------------------- | ------------------------------------------------- |
  | Global regions | vwanConnectivity.bicep | parameters/vwanConnectivity.parameters.all.bicepparam    |
  | China regions  | vwanConnectivity.bicep | parameters/mc-vwanConnectivity.parameters.all.bicepparam |
+ | Global regions | vwanConnectivity.bicep | parameters/vwanConnectivity.parameters.all.json    |
+ | China regions  | vwanConnectivity.bicep | parameters/mc-vwanConnectivity.parameters.all.json |
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
+
 ```bash
 # For Azure global regions
 # Set Platform connectivity subscription ID as the the current subscription
@@ -104,7 +107,55 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vwanConnectivityDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-vwan-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location eastus
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+ConnectivitySubscriptionId="[your platform connectivity subscription ID]"
+az account set --subscription $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+TopLevelMGPrefix="alz"
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-vwanConnectivityDeploy-${dateYMD}"
+GROUP="rg-$TopLevelMGPrefix-vwan-001"
+TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
+PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json"
+
+# Create Resource Group - optional when using an existing resource group
+az group create \
+  --name $GROUP \
+  --location chinaeast2
+
+az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -131,7 +182,9 @@ New-AzResourceGroup `
 
 New-AzResourceGroupDeployment @inputObject
 ```
+
 OR
+
 ```powershell
 # For Azure China regions
 # Set Platform connectivity subscription ID as the the current subscription
@@ -155,7 +208,63 @@ New-AzResourceGroup `
   -Location 'chinaeast2'
 
 New-AzResourceGroupDeployment @inputObject
-  ```
+```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
+  TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.json"
+}
+
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'EastUs'
+
+New-AzResourceGroupDeployment @inputObject
+```
+
+OR
+
+```powershell
+# For Azure China regions
+# Set Platform connectivity subscription ID as the the current subscription
+$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
+
+Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
+
+# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
+$TopLevelMGPrefix = "alz"
+
+# Parameters necessary for deployment
+$inputObject = @{
+  DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
+  TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
+  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.json"
+}
+
+New-AzResourceGroup `
+  -Name $inputObject.ResourceGroupName `
+  -Location 'chinaeast2'
+
+New-AzResourceGroupDeployment @inputObject
+```
+
 ## Example Output in Azure global regions
 
 ![Example Deployment Output](media/exampleDeploymentOutputConnectivity.png "Example Deployment Output in Azure global regions")

From 7bcd399ec6394d7f9a18d87300c42758a1b3fab9 Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 17:53:39 +0000
Subject: [PATCH 18/21] orchestration

---
 .../orchestration/hubPeeredSpoke/README.md    | 62 +++++++++++++++++-
 .../orchestration/mgDiagSettingsAll/README.md | 48 +++++++++++++-
 .../orchestration/subPlacementAll/README.md   | 65 ++++++++++++++++++-
 3 files changed, 169 insertions(+), 6 deletions(-)

diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
index 5ba7de20e..8b7e1714d 100644
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
@@ -41,7 +41,7 @@ In this example, the spoke resources will be deployed to the resource group spec
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -69,7 +69,35 @@ PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeer
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-HubPeeredSpoke-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
+PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+OR
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-HubPeeredSpoke-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
+PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -99,6 +127,36 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-HubPeeredSpoke-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'EastUS'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+OR
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-HubPeeredSpoke-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
index 12809caf9..d3b829896 100644
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
@@ -83,7 +83,7 @@ In this example, the Diagnostic Settings are enabled on the management groups th
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 
 ```bash
 # For Azure global regions
@@ -105,7 +105,29 @@ az deployment mg create \
   --management-group-id alz
 ```
 
-### PowerShell
+### Azure CLI - BICEPPARAMS
+
+```bash
+# For Azure global regions
+az deployment mg create \
+  --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
+  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
+  --location eastus \
+  --management-group-id alz
+```
+
+OR
+
+```bash
+# For Azure China regions
+az deployment mg create \
+  --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
+  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
+  --location chinaeast2 \
+  --management-group-id alz
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -126,9 +148,31 @@ New-AzManagementGroupDeployment `
   -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam" `
   -Location "chinaeast2" `
   -ManagementGroupId "alz"
+```
+
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+New-AzManagementGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json" `
+  -Location "eastus" `
+  -ManagementGroupId "alz"
 
 ```
 
+OR
+
+```powershell
+# For Azure China regions
+New-AzManagementGroupDeployment `
+  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
+  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json" `
+  -Location "chinaeast2" `
+  -ManagementGroupId "alz"
+```
+
 ## Validation
 
 To validate if Diagnostic Settings was correctly enabled for any specific management group, a REST API GET call can be used. Documentation and easy way to try this can be found in this link [(Management Group Diagnostic Settings - Get)](https://learn.microsoft.com/rest/api/monitor/management-group-diagnostic-settings/get?tabs=HTTP&tryIt=true&source=docs#code-try-0). There is currently not a direct way to validate this in the Azure Portal, Azure CLI or PowerShell.
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/README.md b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
index 79bcbbdba..490b11085 100644
--- a/infra-as-code/bicep/orchestration/subPlacementAll/README.md
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
@@ -100,7 +100,7 @@ This however may be done as part of another process, for example upon Subscripti
 
 > For the examples below we assume you have downloaded or cloned the Git repo as-is and are in the root of the repository as your selected directory in your terminal of choice.
 
-### Azure CLI
+### Azure CLI - BICEPPARAMS
 ```bash
 # For Azure global regions
 
@@ -129,7 +129,36 @@ PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPla
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell
+### Azure CLI - JSON
+```bash
+# For Azure global regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SubPlacementAll-${dateYMD}"
+LOCATION="eastus"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
+PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+OR
+
+```bash
+# For Azure China regions
+
+dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
+NAME="alz-SubPlacementAll-${dateYMD}"
+LOCATION="chinaeast2"
+MGID="alz"
+TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
+PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json"
+
+az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
+```
+
+### PowerShell - BICEPPARAMS
 
 ```powershell
 # For Azure global regions
@@ -161,6 +190,38 @@ $inputObject = @{
 New-AzManagementGroupDeployment @inputObject
 ```
 
+### PowerShell - JSON
+
+```powershell
+# For Azure global regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-SubPlacementAll-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'EastUS'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
+OR
+
+```powershell
+# For Azure China regions
+
+$inputObject = @{
+  DeploymentName        = 'alz-SubPlacementAll-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
+  Location              = 'chinaeast2'
+  ManagementGroupId     = 'alz'
+  TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
+  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.json'
+}
+
+New-AzManagementGroupDeployment @inputObject
+```
+
 ## Bicep Visualizer
 
 ![Bicep Visualizer](media/bicepVisualizer.png "Bicep Visualizer")

From 060e69f308956699ef1dbf323fe55a3751d7645e Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 18:28:49 +0000
Subject: [PATCH 19/21] remove powershell bicepparams experiment

---
 .../modules/customRoleDefinitions/README.md   | 40 +----------
 .../bicep/modules/hubNetworking/README.md     | 61 +----------------
 infra-as-code/bicep/modules/logging/README.md | 60 +----------------
 .../bicep/modules/managementGroups/README.md  | 67 ++-----------------
 .../bicep/modules/mgDiagSettings/README.md    | 28 +-------
 .../modules/policy/assignments/README.md      | 34 +---------
 .../policy/assignments/alzDefaults/README.md  | 36 +---------
 .../modules/policy/definitions/README.md      | 35 +---------
 .../modules/privateDnsZoneLinks/README.md     | 26 +------
 .../bicep/modules/privateDnsZones/README.md   | 57 +---------------
 .../bicep/modules/roleAssignments/README.md   | 36 +---------
 .../bicep/modules/spokeNetworking/README.md   | 58 +---------------
 .../modules/subscriptionPlacement/README.md   | 35 +---------
 .../bicep/modules/vnetPeering/README.md       | 60 +----------------
 .../bicep/modules/vnetPeeringVwan/README.md   | 43 +-----------
 .../bicep/modules/vwanConnectivity/README.md  | 61 +----------------
 .../orchestration/hubPeeredSpoke/README.md    | 36 +---------
 .../orchestration/mgDiagSettingsAll/README.md | 51 +-------------
 .../orchestration/subPlacementAll/README.md   | 38 +----------
 19 files changed, 60 insertions(+), 802 deletions(-)

diff --git a/infra-as-code/bicep/modules/customRoleDefinitions/README.md b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
index 58c751591..96883f8d3 100644
--- a/infra-as-code/bicep/modules/customRoleDefinitions/README.md
+++ b/infra-as-code/bicep/modules/customRoleDefinitions/README.md
@@ -61,7 +61,7 @@ LOCATION="eastus"
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -78,7 +78,7 @@ LOCATION="chinaeast2"
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-CustomRoleDefsDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -120,41 +120,7 @@ az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-gr
 ```
 
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-CustomRoleDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/customRoleDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-CustomRoleDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/customRoleDefinitions/mc-customRoleDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/customRoleDefinitions/parameters/customRoleDefinitions.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-#### Example Deployment Output
-
-![Example Deployment Output](media/exampleDeploymentOutput.png "Example Deployment Output")
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/hubNetworking/README.md b/infra-as-code/bicep/modules/hubNetworking/README.md
index b6ed63eac..72626064d 100644
--- a/infra-as-code/bicep/modules/hubNetworking/README.md
+++ b/infra-as-code/bicep/modules/hubNetworking/README.md
@@ -108,7 +108,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-HubNetworkingDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam"
 
 az group create --location eastus \
    --name $GROUP
@@ -130,7 +130,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-HubNetworkingDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-hub-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam"
 
 az group create --location chinaeast2 \
    --name $GROUP
@@ -184,62 +184,7 @@ az group create --location chinaeast2 \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set Platform management subscription ID as the the current subscription
-$ManagementSubscriptionId = "[your platform management subscription ID]"
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
-  TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/hubNetworking.parameters.all.bicepparam"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'eastus'
-
-New-AzResourceGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-HubNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-hub-networking-001"
-  TemplateFile          = "infra-as-code/bicep/modules/hubNetworking/hubNetworking.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/hubNetworking/parameters/mc-hubNetworking.parameters.all.bicepparam"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'chinaeast2'
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/logging/README.md b/infra-as-code/bicep/modules/logging/README.md
index e6f771890..d823b865d 100644
--- a/infra-as-code/bicep/modules/logging/README.md
+++ b/infra-as-code/bicep/modules/logging/README.md
@@ -56,7 +56,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 GROUP="rg-$TopLevelMGPrefix-logging-001"
 NAME="alz-loggingDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -80,7 +80,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 GROUP="rg-$TopLevelMGPrefix-logging-001"
 NAME="alz-loggingDeployment-${dateYMD}"
 TEMPLATEFILE="infra-as-code/bicep/modules/logging/logging.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -141,61 +141,7 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure Global regions
-# Set Platform management subscripion ID as the the current subscription
-$ManagementSubscriptionId = "[your platform management subscription ID]"
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
-  TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
-}
-
-Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
-
-# Create Resource Group - optional when using an existing resource group
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location eastus
-
-New-AzResourceGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-# Set Platform management subscripion ID as the the current subscription
-$ManagementSubscriptionId = "[your platform management subscription ID]"
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-LoggingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-logging-001"
-  TemplateFile          = "infra-as-code/bicep/modules/logging/logging.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam"
-}
-
-Select-AzSubscription -SubscriptionId $ManagementSubscriptionId
-
-# Create Resource Group - optional when using an existing resource group
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location chinaeast2
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure Global regions
diff --git a/infra-as-code/bicep/modules/managementGroups/README.md b/infra-as-code/bicep/modules/managementGroups/README.md
index d744082bd..e6b48bec7 100644
--- a/infra-as-code/bicep/modules/managementGroups/README.md
+++ b/infra-as-code/bicep/modules/managementGroups/README.md
@@ -151,7 +151,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="eastus"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -163,7 +163,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -205,7 +205,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="eastus"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 MGID="alz"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS --management-group-id $MGID
@@ -218,7 +218,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-MGDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 TEMPLATEFILE="infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam"
 MGID="alz"
 
 az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS --management-group-id $MGID
@@ -255,33 +255,8 @@ az deployment tenant create --name ${NAME:0:63} --location $LOCATION --template-
 ```
 
 
-### PowerShell - `managementGroups.bicep` - BICEPPARAMS
 
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'EastUS'
-  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
-}
-New-AzTenantDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroups.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
-}
-New-AzTenantDeployment @inputObject
-```
-
-### PowerShell - `managementGroups.bicep` - JSON
+### PowerShell - `managementGroups.bicep`
 
 ```powershell
 # For Azure global regions
@@ -307,37 +282,7 @@ $inputObject = @{
 New-AzTenantDeployment @inputObject
 ```
 
-### PowerShell - `managementGroupsScopeEscape.bicep` - BICEPPARAMS
-
-Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'EastUS'
-  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
-  ManagementGroupId     = 'alz'
-}
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-MGDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  TemplateFile          = "infra-as-code/bicep/modules/managementGroups/managementGroupsScopeEscape.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/managementGroups/parameters/managementGroups.parameters.all.bicepparam'
-  ManagementGroupId     = 'alz'
-}
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - `managementGroupsScopeEscape.bicep` - JSON
+### PowerShell - `managementGroupsScopeEscape.bicep`
 
 Use this module if you do not want to grant Tenant Root Management Group Deployment permissions.
 
diff --git a/infra-as-code/bicep/modules/mgDiagSettings/README.md b/infra-as-code/bicep/modules/mgDiagSettings/README.md
index 2374d9d4e..2b72efab0 100644
--- a/infra-as-code/bicep/modules/mgDiagSettings/README.md
+++ b/infra-as-code/bicep/modules/mgDiagSettings/README.md
@@ -23,7 +23,7 @@ The inputs for this module are defined in the respective parameter file (BICEPPA
 # For Azure global regions
 az deployment mg create \
   --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
-  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
   --location eastus \
   --management-group-id alz
 ```
@@ -34,7 +34,7 @@ OR
 # For Azure China regions
 az deployment mg create \
   --template-file infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep \
-  --parameters @infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam \
   --location chinaeast2 \
   --management-group-id alz
 ```
@@ -61,29 +61,7 @@ az deployment mg create \
   --management-group-id alz
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-New-AzManagementGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam" `
-  -Location "eastus" `
-  -ManagementGroupId "alz"
-```
-
-OR
-
-```powershell
-# For Azure China regions
-New-AzManagementGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/modules/mgDiagSettings/mgDiagSettings.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/modules/mgDiagSettings/parameters/mgDiagSettings.parameters.all.bicepparam" `
-  -Location "chinaeast2" `
-  -ManagementGroupId "alz"
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/policy/assignments/README.md b/infra-as-code/bicep/modules/policy/assignments/README.md
index c925a1ca2..63a3b1161 100644
--- a/infra-as-code/bicep/modules/policy/assignments/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/README.md
@@ -32,7 +32,7 @@ In this example, the `Deny-PublicIP` custom policy definition will be deployed/a
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
 
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
 LOCATION="eastus"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
@@ -46,7 +46,7 @@ OR
 dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-alz-PolicyDenyAssignmentsDeployment-${dateYMD}"
 
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam"
 LOCATION="chinaeast2"
 MGID="alz-landingzones"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
@@ -84,35 +84,7 @@ TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/policyAssignmentMan
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-#### PowerShell - Deny - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ManagementGroupId     = 'alz-landingzones'
-  Location              = 'eastus'
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-}
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-PolicyDenyAssignments-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ManagementGroupId     = 'alz-landingzones'
-  Location              = 'chinaeast2'
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/parameters/policyAssignmentManagementGroup.deny.parameters.all.bicepparam'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/policyAssignmentManagementGroup.bicep"
-}
-New-AzManagementGroupDeployment @inputObject
-```
-
-#### PowerShell - Deny - JSON
+#### PowerShell - Deny
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
index 678bd945e..af8e81622 100644
--- a/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
+++ b/infra-as-code/bicep/modules/policy/assignments/alzDefaults/README.md
@@ -34,7 +34,7 @@ NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -47,7 +47,7 @@ NAME="alz-alzPolicyAssignmentDefaults-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -80,37 +80,7 @@ PARAMETERS="@infra-as-code/bicep/modules/policy/assignments/alzDefaults/paramete
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-alzPolicyAssignmentDefaultsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alzPolicyAssignmentDefaultsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/mc-alzDefaultPolicyAssignments.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/policy/definitions/README.md b/infra-as-code/bicep/modules/policy/definitions/README.md
index 552b624a4..eee076845 100644
--- a/infra-as-code/bicep/modules/policy/definitions/README.md
+++ b/infra-as-code/bicep/modules/policy/definitions/README.md
@@ -49,7 +49,7 @@ NAME="alz-PolicyDefsDefaults-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -62,7 +62,7 @@ NAME="alz-PolicyDefsDefaults-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -95,36 +95,7 @@ PARAMETERS="@infra-as-code/bicep/modules/policy/definitions/parameters/customPol
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-PolicyDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/customPolicyDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-PolicyDefsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/policy/definitions/mc-customPolicyDefinitions.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/policy/definitions/parameters/customPolicyDefinitions.parameters.all.bicepparam'
-}
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
index 796cd5f8f..4fc9d45c4 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
@@ -23,7 +23,7 @@ The inputs for this module are defined in the relevant parameter file (BICEPPARA
 # For Azure global regions
 az deployment rg create \
   --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
-  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
   --location eastus
 ```
 
@@ -33,7 +33,7 @@ OR
 # For Azure China regions
 az deployment rg create \
   --template-file infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep \
-  --parameters @infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam \
   --location chinaeast2
   ```
 
@@ -57,27 +57,7 @@ az deployment rg create \
   --location chinaeast2
   ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-New-AzResourceGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam" `
-  -Location "eastus"
-```
-
-OR
-
-```powershell
-# For Azure China regions
-New-AzResourceGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/modules/privateDnsZoneLinks/privateDnsZoneLinks.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/modules/privateDnsZoneLinks/parameters/privateDnsZoneLinks.parameters.all.bicepparam" `
-  -Location "chinaeast2"
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/privateDnsZones/README.md b/infra-as-code/bicep/modules/privateDnsZones/README.md
index 76e120bd6..6390a1750 100644
--- a/infra-as-code/bicep/modules/privateDnsZones/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZones/README.md
@@ -88,7 +88,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
 RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 
 az group create --location eastus \
    --name $RESOURCEGROUP
@@ -109,7 +109,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-PrivateDnsZonesDeployment-${dateYMD}"
 RESOURCEGROUP="rg-$TopLevelMGPrefix-private-dns-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
 
 az group create --location chinaeast2 \
    --name $RESOURCEGROUP
@@ -163,58 +163,7 @@ az group create --location chinaeast2 \
 az deployment group create --name ${NAME:0:63} --resource-group $RESOURCEGROUP --parameters $PARAMETERS --template-file $TEMPLATEFILE
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "7a348906-189d-4e8d-9d72-ffb597a3e1d4"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-$inputObject = @{
-  DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
-  TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'eastus'
-
-New-AzResourceGroupDeployment @inputObject
-```
-OR
-
-```powershell
-# For Azure China regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-$inputObject = @{
-  DeploymentName        = 'alz-PrivateDnsZonesDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-private-dns-001"
-  TemplateFile          = "infra-as-code/bicep/modules/privateDnsZones/privateDnsZones.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/privateDnsZones/parameters/privateDnsZones.parameters.all.bicepparam"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'chinaeast2'
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/roleAssignments/README.md b/infra-as-code/bicep/modules/roleAssignments/README.md
index fac0b3af1..af87fb8a5 100644
--- a/infra-as-code/bicep/modules/roleAssignments/README.md
+++ b/infra-as-code/bicep/modules/roleAssignments/README.md
@@ -110,7 +110,7 @@ NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -123,7 +123,7 @@ NAME="alz-RoleAssignmentsDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -156,37 +156,7 @@ PARAMETERS="@infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignme
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-RoleAssignmentsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-RoleAssignmentsDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/roleAssignments/roleAssignmentManagementGroup.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/roleAssignments/parameters/roleAssignmentManagementGroup.servicePrincipal.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/spokeNetworking/README.md b/infra-as-code/bicep/modules/spokeNetworking/README.md
index b24450256..1518b6d6a 100644
--- a/infra-as-code/bicep/modules/spokeNetworking/README.md
+++ b/infra-as-code/bicep/modules/spokeNetworking/README.md
@@ -65,7 +65,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -89,7 +89,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-SpokeNetworkingDeployment-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-spoke-networking-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -149,59 +149,7 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set Platform connectivity subscription ID as the the current subscription
-$LandingZoneSubscriptionId = "716c5a22-62fe-4fdc-a29a-5fa62d8877a4"
-
-Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
-  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
-  TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'eastus'
-
-New-AzResourceGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-# Set Platform connectivity subscription ID as the the current subscription
-$LandingZoneSubscriptionId = "[your landing zone subscription ID]"
-
-Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-SpokeNetworkingDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-spoke-networking-001"
-  TemplateParameterFile = "infra-as-code/bicep/modules/spokeNetworking/parameters/spokeNetworking.parameters.all.bicepparam"
-  TemplateFile          = "infra-as-code/bicep/modules/spokeNetworking/spokeNetworking.bicep"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'chinaeast2'
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/subscriptionPlacement/README.md b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
index b88232325..f8fb42145 100644
--- a/infra-as-code/bicep/modules/subscriptionPlacement/README.md
+++ b/infra-as-code/bicep/modules/subscriptionPlacement/README.md
@@ -28,7 +28,7 @@ NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -41,7 +41,7 @@ NAME="alz-SubscriptionPlacementDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -75,36 +75,7 @@ az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-gr
 ```
 
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-SubscriptionPlacementDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-SubscriptionPlacementDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/modules/subscriptionPlacement/subscriptionPlacement.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/subscriptionPlacement/parameters/subscriptionPlacement.parameters.all.bicepparam'
-}
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/vnetPeering/README.md b/infra-as-code/bicep/modules/vnetPeering/README.md
index b2bb71230..d83570501 100644
--- a/infra-as-code/bicep/modules/vnetPeering/README.md
+++ b/infra-as-code/bicep/modules/vnetPeering/README.md
@@ -54,7 +54,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -77,7 +77,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vnet-peering-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -135,61 +135,7 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set your Corp Connected Landing Zone subscription ID as the the current subscription
-$LandingZoneSubscriptionId = "[your Landing Zone subscription ID]"
-
-Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
-  TemplateFile          = "infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
-}
-
-# Create Resource Group - optional when using an existing resource group
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location eastus
-
-New-AzResourceGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-# Set your Corp Connected Landing Zone subscription ID as the the current subscription
-$LandingZoneSubscriptionId = "[your Landing Zone subscription ID]"
-
-Select-AzSubscription -SubscriptionId $LandingZoneSubscriptionId
-
-# Create Resource Group - optional when using an existing resource group
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location chinaeast2
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-vnetPeeringDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-vnet-peering-001"
-  TemplateFile          = "ALZ-Bicep/infra-as-code/bicep/modules/vnetPeering/vnetPeering.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vnetPeering/parameters/vnetPeering.parameters.all.bicepparam"
-}
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
index bf143bc89..a0abe0fd1 100644
--- a/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
+++ b/infra-as-code/bicep/modules/vnetPeeringVwan/README.md
@@ -45,7 +45,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
 LOCATION="eastus"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
 
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -60,7 +60,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vnetPeeringVwanDeployment-${dateYMD}"
 LOCATION="chinaeast2"
 TEMPLATEFILE="infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam"
 
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -97,44 +97,7 @@ PARAMETERS="@infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringV
 az deployment sub create --name ${NAME:0:63} --location $LOCATION --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set your Corp Connected Landing Zone subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your Landing Zone subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-$inputObject = @{
-  DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'eastus'
-  TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam'
-}
-
-New-AzDeployment @inputObject
-
-```
-OR
-```powershell
-# For Azure China regions
-# Set your Corp Connected Landing Zone subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your Landing Zone subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-$inputObject = @{
-  DeploymentName        = 'alz-VnetPeeringWanDeployment-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  TemplateFile          = "infra-as-code/bicep/modules/vnetPeeringVwan/vnetPeeringVwan.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/modules/vnetPeeringVwan/parameters/vnetPeeringVwan.parameters.all.bicepparam'
-}
-
-New-AzDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/modules/vwanConnectivity/README.md b/infra-as-code/bicep/modules/vwanConnectivity/README.md
index e4b2b7f64..9a989496a 100644
--- a/infra-as-code/bicep/modules/vwanConnectivity/README.md
+++ b/infra-as-code/bicep/modules/vwanConnectivity/README.md
@@ -74,7 +74,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vwanConnectivityDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vwan-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -97,7 +97,7 @@ dateYMD=$(date +%Y%m%dT%H%M%S%NZ)
 NAME="alz-vwanConnectivityDeploy-${dateYMD}"
 GROUP="rg-$TopLevelMGPrefix-vwan-001"
 TEMPLATEFILE="infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-PARAMETERS="@infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam"
 
 # Create Resource Group - optional when using an existing resource group
 az group create \
@@ -155,62 +155,7 @@ az group create \
 az deployment group create --name ${NAME:0:63} --resource-group $GROUP --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
-  TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/vwanConnectivity.parameters.all.bicepparam"
-}
-
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'EastUs'
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-OR
-
-```powershell
-# For Azure China regions
-# Set Platform connectivity subscription ID as the the current subscription
-$ConnectivitySubscriptionId = "[your platform connectivity subscription ID]"
-
-Select-AzSubscription -SubscriptionId $ConnectivitySubscriptionId
-
-# Set the top level MG Prefix in accordance to your environment. This example assumes default 'alz'.
-$TopLevelMGPrefix = "alz"
-
-# Parameters necessary for deployment
-$inputObject = @{
-  DeploymentName        = 'alz-vwanConnectivityDeploy-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  ResourceGroupName     = "rg-$TopLevelMGPrefix-vwan-001"
-  TemplateFile          = "infra-as-code/bicep/modules/vwanConnectivity/vwanConnectivity.bicep"
-  TemplateParameterFile = "infra-as-code/bicep/modules/vwanConnectivity/parameters/mc-vwanConnectivity.parameters.all.bicepparam"
-}
-
-New-AzResourceGroup `
-  -Name $inputObject.ResourceGroupName `
-  -Location 'chinaeast2'
-
-New-AzResourceGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
index 8b7e1714d..180b00d98 100644
--- a/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
+++ b/infra-as-code/bicep/orchestration/hubPeeredSpoke/README.md
@@ -51,7 +51,7 @@ NAME="alz-HubPeeredSpoke-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -64,7 +64,7 @@ NAME="alz-HubPeeredSpoke-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -97,37 +97,7 @@ PARAMETERS="@infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeer
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-HubPeeredSpoke-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'EastUS'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-OR
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-HubPeeredSpoke-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/orchestration/hubPeeredSpoke/hubPeeredSpoke.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/hubPeeredSpoke/parameters/hubPeeredSpoke.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
index d3b829896..018d196fd 100644
--- a/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
+++ b/infra-as-code/bicep/orchestration/mgDiagSettingsAll/README.md
@@ -89,7 +89,7 @@ In this example, the Diagnostic Settings are enabled on the management groups th
 # For Azure global regions
 az deployment mg create \
   --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
   --location eastus \
   --management-group-id alz
 ```
@@ -100,57 +100,12 @@ OR
 # For Azure China regions
 az deployment mg create \
   --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
+  --parameters infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam \
   --location chinaeast2 \
   --management-group-id alz
 ```
 
-### Azure CLI - BICEPPARAMS
-
-```bash
-# For Azure global regions
-az deployment mg create \
-  --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
-  --location eastus \
-  --management-group-id alz
-```
-
-OR
-
-```bash
-# For Azure China regions
-az deployment mg create \
-  --template-file infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep \
-  --parameters @infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.json \
-  --location chinaeast2 \
-  --management-group-id alz
-```
-
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-New-AzManagementGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam" `
-  -Location "eastus" `
-  -ManagementGroupId "alz"
-
-```
-
-OR
-
-```powershell
-# For Azure China regions
-New-AzManagementGroupDeployment `
-  -TemplateFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/mgDiagSettingsAll.bicep" `
-  -TemplateParameterFile "infra-as-code/bicep/orchestration/mgDiagSettingsAll/parameters/mgDiagSettingsAll.parameters.all.bicepparam" `
-  -Location "chinaeast2" `
-  -ManagementGroupId "alz"
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions
diff --git a/infra-as-code/bicep/orchestration/subPlacementAll/README.md b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
index 490b11085..dfad993b7 100644
--- a/infra-as-code/bicep/orchestration/subPlacementAll/README.md
+++ b/infra-as-code/bicep/orchestration/subPlacementAll/README.md
@@ -109,7 +109,7 @@ NAME="alz-SubPlacementAll-${dateYMD}"
 LOCATION="eastus"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -124,7 +124,7 @@ NAME="alz-SubPlacementAll-${dateYMD}"
 LOCATION="chinaeast2"
 MGID="alz"
 TEMPLATEFILE="infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
+PARAMETERS="infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam"
 
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
@@ -158,39 +158,7 @@ PARAMETERS="@infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPla
 az deployment mg create --name ${NAME:0:63} --location $LOCATION --management-group-id $MGID --template-file $TEMPLATEFILE --parameters $PARAMETERS
 ```
 
-### PowerShell - BICEPPARAMS
-
-```powershell
-# For Azure global regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-SubPlacementAll-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'EastUS'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-OR
-
-```powershell
-# For Azure China regions
-
-$inputObject = @{
-  DeploymentName        = 'alz-SubPlacementAll-{0}' -f (-join (Get-Date -Format 'yyyyMMddTHHMMssffffZ')[0..63])
-  Location              = 'chinaeast2'
-  ManagementGroupId     = 'alz'
-  TemplateFile          = "infra-as-code/bicep/orchestration/subPlacementAll/subPlacementAll.bicep"
-  TemplateParameterFile = 'infra-as-code/bicep/orchestration/subPlacementAll/parameters/subPlacementAll.parameters.all.bicepparam'
-}
-
-New-AzManagementGroupDeployment @inputObject
-```
-
-### PowerShell - JSON
+### PowerShell
 
 ```powershell
 # For Azure global regions

From 9e84371bb20c7c3d7ba32046ebef1b129a8286dd Mon Sep 17 00:00:00 2001
From: JamJarchitect <jamjones@microsoft.com>
Date: Tue, 31 Oct 2023 20:25:54 +0000
Subject: [PATCH 20/21] fix linter

---
 infra-as-code/bicep/modules/privateDnsZoneLinks/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
index 4fc9d45c4..60e20868b 100644
--- a/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
+++ b/infra-as-code/bicep/modules/privateDnsZoneLinks/README.md
@@ -37,7 +37,7 @@ az deployment rg create \
   --location chinaeast2
   ```
 
-  ### Azure CLI - JSON
+### Azure CLI - JSON
 
 ```bash
 # For Azure global regions

From 14fc21c25205fc11eec1cfaea06f06b9155fd89e Mon Sep 17 00:00:00 2001
From: Zach Trocinski <ztrocinski@outlook.com>
Date: Mon, 13 Nov 2023 15:28:22 -0600
Subject: [PATCH 21/21] Add public access param for automation account

---
 .../logging/parameters/logging.parameters.all.bicepparam        | 2 ++
 .../logging/parameters/mc-logging.parameters.all.bicepparam     | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
index 183463621..528277f93 100644
--- a/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/logging.parameters.all.bicepparam
@@ -31,6 +31,8 @@ param parAutomationAccountLocation = 'eastus2'
 
 param parAutomationAccountUseManagedIdentity = true
 
+param parAutomationAccountPublicNetworkAccess = true
+
 param parTags = {
   Environment: 'Live'
 }
diff --git a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
index 19c481a63..9975e75fe 100644
--- a/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
+++ b/infra-as-code/bicep/modules/logging/parameters/mc-logging.parameters.all.bicepparam
@@ -29,6 +29,8 @@ param parAutomationAccountLocation = 'chinaeast2'
 
 param parAutomationAccountUseManagedIdentity = true
 
+param parAutomationAccountPublicNetworkAccess = true
+
 param parTags = {
   Environment: 'Live'
 }