diff --git a/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.json b/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.json index 9d34c25d..41c3ae56 100644 --- a/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.json +++ b/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.json @@ -10,6 +10,14 @@ }, "mode": "All", "parameters": { + "excludedRoleNames": { + "type": "array", + "metadata": { + "displayName": "Excluded Role Names", + "description": "Names of Roles to be excluded from the policy." + }, + "defaultValue": [] + }, "effect": { "type": "string", "metadata": { @@ -22,14 +30,6 @@ "Disabled" ], "defaultValue": "Audit" - }, - "excludedRoleNames": { - "type": "array", - "metadata": { - "displayName": "Excluded Role Names", - "description": "Names of Roles to be excluded from the policy." - }, - "defaultValue": [] } }, "policyRule": { diff --git a/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.parameters.json b/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.parameters.json index 39648f7d..c5639d9a 100644 --- a/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.parameters.json +++ b/policyDefinitions/Authorization/deny-custom-roles-with-exclusionlist/azurepolicy.parameters.json @@ -1,4 +1,12 @@ { + "excludedRoleNames": { + "type": "array", + "metadata": { + "displayName": "Excluded Role Names", + "description": "Names of Roles to be excluded from the policy." + }, + "defaultValue": [] + }, "effect": { "type": "string", "metadata": { @@ -11,13 +19,5 @@ "Disabled" ], "defaultValue": "Audit" - }, - "excludedRoleNames": { - "type": "array", - "metadata": { - "displayName": "Excluded Role Names", - "description": "Names of Roles to be excluded from the policy." - }, - "defaultValue": [] } } \ No newline at end of file