TL;DR Remember to associate a user defined route and enable service endpoints on your API Management (APIM) subnet when deploying in an internal network in a Virtual WAN or other forced routing scenario....
TL;DR When deploying Azure OpenAI models in AI Foundry Portal you might enable processing your data outside of the data residency region....
TL;DR Stop providing your Terraform identities with owner permissions on your subscriptions!...
TL;DR Just recently discovered KICS, and it simplifies scanning your IaC for misconfigurations or security issues....
TL:DR; You can use checkov to scan your Terraform Iac for misconfigurations adding some level of DevSecOps....
Several times during during the last year, I have encountered a weird error with ADMT (or more precisely Password Export Server Service/PES), when trying to migrate users with their passwords from one forest to another (cross-forest user migration).
read more