Merge branch 'main' into arm64

MicrosoftDocs · Feb 28, 2023 · 754e126 · 754e126
2 parents 8e93ed6 + 3c68676
commit 754e126
Show file tree

Hide file tree

Showing 330 changed files with 13,799 additions and 617 deletions.
diff --git a/2017-03-09-profile/docs-ref-autogen/TOC.yml b/2017-03-09-profile/docs-ref-autogen/TOC.yml
@@ -3998,6 +3998,15 @@
           uid: az_network_vhub_route
           displayName: az network vhub route
           items: []
+        - name: route-map
+          items:
+          - name: Summary
+            uid: az_network_vhub_route-map
+            displayName: az network vhub route-map
+          - name: rule
+            uid: az_network_vhub_route-map_rule
+            displayName: az network vhub route-map rule
+            items: []
         - name: route-table
           items:
           - name: Summary
@@ -6462,6 +6471,15 @@
       uid: az_term
       displayName: az term
       items: []
+  - name: Microsoft Confidential Computing
+    items:
+    - name: Summary
+      uid: sp-Microsoft_Confidential_Computing
+      displayName: Microsoft Confidential Computing
+    - name: confcom
+      uid: az_confcom
+      displayName: az confcom
+      items: []
   - name: Microsoft Confidential Ledger
     items:
     - name: Summary
@@ -7009,3 +7027,33 @@
         uid: az_connection_update
         displayName: az connection update
         items: []
+  - name: Storage Mover
+    items:
+    - name: Summary
+      uid: sp-Storage_Mover
+      displayName: Storage Mover
+    - name: storage-mover
+      items:
+      - name: Summary
+        uid: az_storage-mover
+        displayName: az storage-mover
+      - name: agent
+        uid: az_storage-mover_agent
+        displayName: az storage-mover agent
+        items: []
+      - name: endpoint
+        uid: az_storage-mover_endpoint
+        displayName: az storage-mover endpoint
+        items: []
+      - name: job-definition
+        uid: az_storage-mover_job-definition
+        displayName: az storage-mover job-definition
+        items: []
+      - name: job-run
+        uid: az_storage-mover_job-run
+        displayName: az storage-mover job-run
+        items: []
+      - name: project
+        uid: az_storage-mover_project
+        displayName: az storage-mover project
+        items: []
diff --git a/2017-03-09-profile/docs-ref-autogen/aks.yml b/2017-03-09-profile/docs-ref-autogen/aks.yml
@@ -47,9 +47,6 @@ directCommands:
     az aks create --name
                   --resource-group
                   [--aad-admin-group-object-ids]
-                  [--aad-client-app-id]
-                  [--aad-server-app-id]
-                  [--aad-server-app-secret]
                   [--aad-tenant-id]
                   [--aci-subnet-name]
                   [--admin-username]
@@ -267,15 +264,6 @@ directCommands:
   - name: --aad-admin-group-object-ids
     summary: Comma-separated list of aad group object IDs that will be set as cluster admin.
     description: ''
-  - name: --aad-client-app-id
-    summary: The ID of an Azure Active Directory client application of type "Native". This application is for user login via kubectl.
-    description: ''
-  - name: --aad-server-app-id
-    summary: The ID of an Azure Active Directory server application of type "Web app/API". This application represents the managed cluster's apiserver (Server application).
-    description: ''
-  - name: --aad-server-app-secret
-    summary: The secret of an Azure Active Directory server application.
-    description: ''
   - name: --aad-tenant-id
     summary: The ID of an Azure Active Directory tenant.
     description: ''
@@ -416,7 +404,7 @@ directCommands:
           confcom                         - enable confcom addon, this will enable SGX device plugin by default(PREVIEW).
           open-service-mesh               - enable Open Service Mesh addon (PREVIEW).
           gitops                          - enable GitOps (PREVIEW).
-          azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon (PREVIEW).
+          azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon.
           web_application_routing         - enable Web Application Routing addon (PREVIEW). Specify "--dns-zone-resource-id" to configure DNS.
   - name: --enable-ahub
     defaultValue: "False"
@@ -882,7 +870,7 @@ directCommands:
         ingress-appgw                   - enable Application Gateway Ingress Controller addon (PREVIEW).
         open-service-mesh               - enable Open Service Mesh addon (PREVIEW).
         gitops                          - enable GitOps (PREVIEW).
-        azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon (PREVIEW).
+        azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon.
         web_application_routing         - enable Web Application Routing addon (PREVIEW). Specify "--dns-zone-resource-id" to configure DNS.
   syntax: >-
     az aks enable-addons --addons

diff --git a/2017-03-09-profile/docs-ref-autogen/aks/addon.yml b/2017-03-09-profile/docs-ref-autogen/aks/addon.yml
@@ -52,7 +52,7 @@ directCommands:
         ingress-appgw                   - enable Application Gateway Ingress Controller addon (PREVIEW).
         open-service-mesh               - enable Open Service Mesh addon (PREVIEW).
         gitops                          - enable GitOps (PREVIEW).
-        azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon (PREVIEW).
+        azure-keyvault-secrets-provider - enable Azure Keyvault Secrets Provider addon.
         web_application_routing         - enable Web Application Routing addon (PREVIEW). Specify "--dns-zone-resource-id" to configure DNS.
   syntax: >-
     az aks addon enable --addon

diff --git a/2017-03-09-profile/docs-ref-autogen/aks/nodepool.yml b/2017-03-09-profile/docs-ref-autogen/aks/nodepool.yml
@@ -600,6 +600,7 @@ directCommands:
                             [--no-wait]
                             [--node-image-only]
                             [--snapshot-id]
+                            [--yes]
   requiredParameters:
   - isRequired: true
     name: --cluster-name
@@ -634,6 +635,10 @@ directCommands:
   - name: --snapshot-id
     summary: The source snapshot id used to upgrade this nodepool.
     description: ''
+  - name: --yes -y
+    defaultValue: "False"
+    summary: Do not prompt for confirmation.
+    description: ''
 commands:
 - az_aks_nodepool_add
 - az_aks_nodepool_delete

diff --git a/2017-03-09-profile/docs-ref-autogen/arcdata.yml b/2017-03-09-profile/docs-ref-autogen/arcdata.yml
@@ -31,6 +31,7 @@ commands:
 - az_arcdata_dc_endpoint
 - az_arcdata_dc_endpoint_list
 - az_arcdata_dc_export
+- az_arcdata_dc_list
 - az_arcdata_dc_list-upgrades
 - az_arcdata_dc_status
 - az_arcdata_dc_status_show

diff --git a/2017-03-09-profile/docs-ref-autogen/arcdata/dc.yml b/2017-03-09-profile/docs-ref-autogen/arcdata/dc.yml
@@ -200,6 +200,20 @@ directCommands:
   - name: --use-k8s
     summary: Use local Kubernetes APIs to perform this action.
     description: ''
+- uid: az_arcdata_dc_list
+  name: az arcdata dc list
+  summary: List Azure Arc data controllers by resource group or subscription.
+  description: ''
+  syntax: az arcdata dc list [--resource-group]
+  examples:
+  - summary: Lists all Arc data controllers in the given resource group.
+    syntax: az arcdata dc list --resource-group rg-name
+  - summary: Lists all Arc data controllers in the given subscription.
+    syntax: az arcdata dc list --subscription subscriptionId
+  optionalParameters:
+  - name: --resource-group -g
+    summary: The Azure resource group containing the Arc data controller(s).
+    description: ''
 - uid: az_arcdata_dc_list-upgrades
   name: az arcdata dc list-upgrades
   summary: List available upgrade versions.
@@ -355,6 +369,7 @@ commands:
 - az_arcdata_dc_endpoint
 - az_arcdata_dc_endpoint_list
 - az_arcdata_dc_export
+- az_arcdata_dc_list
 - az_arcdata_dc_list-upgrades
 - az_arcdata_dc_status
 - az_arcdata_dc_status_show

diff --git a/2017-03-09-profile/docs-ref-autogen/confcom.yml b/2017-03-09-profile/docs-ref-autogen/confcom.yml
@@ -0,0 +1,119 @@
+### YamlMime:AzureCLIGroup
+uid: az_confcom
+name: az confcom
+extensionInformation: >-
+  > [!Note]
+
+  > This reference is part of the **confcom** extension for the Azure CLI  (version 2.26.2 or higher).  The extension will automatically install the first time you run an **az confcom** command.  [Learn more](https://docs.microsoft.com/en-us/cli/azure/azure-cli-extensions-overview) about extensions.
+summary: Commands to generate security policies for confidential containers in Azure.
+description: ''
+directCommands:
+- uid: az_confcom_acipolicygen
+  name: az confcom acipolicygen
+  summary: Create a Confidential Container Security Policy.
+  description: ''
+  syntax: >-
+    az confcom acipolicygen [--debug-mode]
+                            [--diff]
+                            [--disable-stdio]
+                            [--image]
+                            [--infrastructure-svn]
+                            [--input]
+                            [--json]
+                            [--outraw]
+                            [--outraw-pretty-print]
+                            [--parameters]
+                            [--print-existing-policy]
+                            [--print-policy]
+                            [--save-to-file]
+                            [--tar]
+                            [--template-file]
+                            [--validate-sidecar]
+  examples:
+  - summary: Input an ARM Template file to inject a base64 encoded Confidential Container Security Policy into the ARM Template
+    syntax: az confcom acipolicygen --template-file "./template.json"
+  - summary: Input an ARM Template file to create a human-readable Confidential Container Security Policy
+    syntax: az confcom acipolicygen --template-file "./template.json" --outraw-pretty-print
+  - summary: Input an ARM Template file to save a Confidential Container Security Policy to a file
+    syntax: az confcom acipolicygen --template-file "./template.json" -s "./output-file.txt"
+  - summary: Input an ARM Template file and use a tar file as the image source instead of the Docker daemon
+    syntax: az confcom acipolicygen --template-file "./template.json" --tar "./image.tar"
+  optionalParameters:
+  - name: --debug-mode
+    defaultValue: "False"
+    summary: When enabled, the generated security policy adds the ability to use /bin/sh or /bin/bash to debug the container. It also enabled stdio access, ability to dump stack traces, and enables runtime logging. It is recommended to only use this option for debugging purposes.
+    description: ''
+  - name: --diff -d
+    defaultValue: "False"
+    summary: When combined with an input ARM Template, verifies the policy present in the ARM Template under "ccePolicy" and the containers within the ARM Template are compatible. If they are incompatible, a list of reasons is given and the exit status code will be 2.
+    description: ''
+  - name: --disable-stdio
+    defaultValue: "False"
+    summary: When enabled, the containers in the container group do not have access to stdio.
+    description: ''
+  - name: --image
+    summary: Input image name.
+    description: ''
+  - name: --infrastructure-svn
+    summary: Minimum Allowed Software Version Number for Infrastructure Fragment.
+    description: ''
+  - name: --input -i
+    summary: Input JSON config file.
+    description: ''
+  - name: --json -j
+    defaultValue: "False"
+    summary: Outputs in JSON format instead of Rego.
+    description: ''
+  - name: --outraw
+    defaultValue: "False"
+    summary: Output policy in clear text compact JSON instead of default base64 format.
+    description: ''
+  - name: --outraw-pretty-print
+    defaultValue: "False"
+    summary: Output policy in clear text and pretty print format.
+    description: ''
+  - name: --parameters -p
+    summary: Input parameters file to optionally accompany an ARM Template.
+    description: ''
+  - name: --print-existing-policy
+    defaultValue: "False"
+    summary: When enabled, the existing security policy that is present in the ARM Template is printed to the command line, and no new security policy is generated.
+    description: ''
+  - name: --print-policy
+    defaultValue: "False"
+    summary: When enabled, the generated security policy is printed to the command line instead of injected into the input ARM Template.
+    description: ''
+  - name: --save-to-file -s
+    summary: Save output policy to given file path.
+    description: ''
+  - name: --tar
+    summary: Path to either a tarball containing image layers or a JSON file containing paths to tarballs of image layers.
+    description: ''
+  - name: --template-file -a
+    summary: Input ARM Template file.
+    description: ''
+  - name: --validate-sidecar -v
+    defaultValue: "False"
+    summary: Validate that the image used to generate the CCE Policy for a sidecar container will be allowed by its generated policy.
+    description: ''
+commands:
+- az_confcom_acipolicygen
+globalParameters:
+- name: --debug
+  summary: Increase logging verbosity to show all debug logs.
+- name: --help -h
+  summary: Show this help message and exit.
+- name: --only-show-errors
+  summary: Only show errors, suppressing warnings.
+- name: --output -o
+  defaultValue: "json"
+  parameterValueGroup: "json, jsonc, table, tsv"
+  summary: Output format.
+- name: --query
+  summary: JMESPath query string. See <a href="http://jmespath.org/">http://jmespath.org/</a> for more information and examples.
+- name: --subscription
+  summary: Name or ID of subscription. You can configure the default subscription using `az account set -s NAME_OR_ID`.
+- name: --verbose
+  summary: Increase logging verbosity. Use --debug for full debug logs.
+metadata:
+  description: Commands to generate security policies for confidential containers in Azure.
diff --git a/2017-03-09-profile/docs-ref-autogen/connectedvmware/vm/extension.yml b/2017-03-09-profile/docs-ref-autogen/connectedvmware/vm/extension.yml
@@ -18,9 +18,8 @@ directCommands:
                                            --resource-group
                                            --vm-name
                                            [--auto-upgrade-minor {false, true}]
+                                           [--enable-auto-upgrade {false, true}]
                                            [--force-update-tag]
-                                           [--inst-handler-version]
-                                           [--instance-view-type]
                                            [--no-wait]
                                            [--protected-settings]
                                            [--publisher]
@@ -53,15 +52,13 @@ directCommands:
     parameterValueGroup: "false, true"
     summary: Indicate whether the extension should use a newer minor version if one is available at deployment time. Once deployed, however, the extension will not upgrade minor versions unless redeployed, even with this property set to true.
     description: ''
+  - name: --enable-auto-upgrade
+    parameterValueGroup: "false, true"
+    summary: Indicates whether the extension should be automatically upgraded by the platform if there is a newer version available.
+    description: ''
   - name: --force-update-tag
     summary: How the extension handler should be forced to update even if the extension configuration has not changed.
     description: ''
-  - name: --inst-handler-version
-    summary: Specify the version of the script handler.
-    description: ''
-  - name: --instance-view-type
-    summary: Specify the type of the extension; an example is "CustomScriptExtension".
-    description: ''
   - name: --no-wait
     defaultValue: "False"
     summary: Do not wait for the long-running operation to finish.
@@ -185,6 +182,7 @@ directCommands:
                                            --resource-group
                                            --vm-name
                                            [--auto-upgrade-minor {false, true}]
+                                           [--enable-auto-upgrade {false, true}]
                                            [--force-update-tag]
                                            [--no-wait]
                                            [--protected-settings]
@@ -214,6 +212,10 @@ directCommands:
     parameterValueGroup: "false, true"
     summary: Indicate whether the extension should use a newer minor version if one is available at deployment time. Once deployed, however, the extension will not upgrade minor versions unless redeployed, even with this property set to true.
     description: ''
+  - name: --enable-auto-upgrade
+    parameterValueGroup: "false, true"
+    summary: Indicates whether the extension should be automatically upgraded by the platform if there is a newer version available.
+    description: ''
   - name: --force-update-tag
     summary: How the extension handler should be forced to update even if the extension configuration has not changed.
     description: ''

diff --git a/2017-03-09-profile/docs-ref-autogen/containerapp.yml b/2017-03-09-profile/docs-ref-autogen/containerapp.yml
@@ -710,6 +710,7 @@ commands:
 - az_containerapp_delete
 - az_containerapp_env
 - az_containerapp_env_certificate
+- az_containerapp_env_certificate_create
 - az_containerapp_env_certificate_delete
 - az_containerapp_env_certificate_list
 - az_containerapp_env_certificate_upload
@@ -736,6 +737,7 @@ commands:
 - az_containerapp_github-action_delete
 - az_containerapp_github-action_show
 - az_containerapp_hostname
+- az_containerapp_hostname_add
 - az_containerapp_hostname_bind
 - az_containerapp_hostname_delete
 - az_containerapp_hostname_list

diff --git a/2017-03-09-profile/docs-ref-autogen/containerapp/env.yml b/2017-03-09-profile/docs-ref-autogen/containerapp/env.yml
@@ -256,6 +256,7 @@ directCommands:
     description: ''
 commands:
 - az_containerapp_env_certificate
+- az_containerapp_env_certificate_create
 - az_containerapp_env_certificate_delete
 - az_containerapp_env_certificate_list
 - az_containerapp_env_certificate_upload