[Feature Request]: Update API version and disable local auth.

[ChrisSidebotham]

ResourceModules/modules/Microsoft.Automation/automationAccounts/deploy.bicep

Lines 174 to 196 in a2fdd5a

	resource automationAccount 'Microsoft.Automation/automationAccounts@2020-01-13-preview' = {
	name: name
	location: location
	tags: tags
	identity: identity
	properties: {
	sku: {
	name: skuName
	}
	encryption: !empty(cMKKeyName) ? {
	keySource: 'Microsoft.KeyVault'
	identity: {
	userAssignedIdentity: cMKUserAssignedIdentityResourceId
	}
	keyVaultProperties: {
	keyName: cMKKeyName
	keyVaultUri: cMKKeyVault.properties.vaultUri
	keyVersion: !empty(cMKKeyVersion) ? cMKKeyVersion : last(split(cMKKeyVaultKey.properties.keyUriWithVersion, '/'))
	}
	} : null
	publicNetworkAccess: !empty(publicNetworkAccess) ? (publicNetworkAccess == 'Disabled' ? false : true) : (!empty(privateEndpoints) ? false : null)
	}
	}

Azure Policy has a built-in definition for deny resource deployment if local authentication is not disabled. The newer Resource Provider API Versions support this parameter and allows for a Managed Identity to be leveraged.