fix: Add missing private dns zones to applicable policy assignment and module (#903)

* Fix private dns zone list in policy assignment

* Remove unused dns zone ids and update param names

* Remove unused dns zone ids and update param names

* Update generated docs

* Add param to accelerator

* Generate Parameter Markdowns [oZakari/1618d0f4]

* Fix value for param

* Add prefix to dependabot title

* Update test values

* Updated param table

* Generate Parameter Markdowns [oZakari/640a1dbc]

* Update logic

* Update spacing

* Add params to parameter file

* Generate Parameter Markdowns [oZakari/0a582834]

---------

Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>

Author: oZakari

.github/dependabot.yml

@@ -7,3 +7,6 @@ updates:
     labels:
       - "Type: Hygiene :broom:"
       - "Needs: Attention :wave:"
+    commit-message:
+      prefix: 'build: '
+

accelerator/.config/ALZ-Powershell-Auto.config.json

@@ -304,6 +304,10 @@
               "Name": "parVirtualWanHubs.value[0].parHubLocation",
               "Destination": "Parameters"
             },
+            {
+              "Name": "parPrivateDnsZonesLocation.value",
+              "Destination": "Parameters"
+            },
             {
               "Name": "LOCATION",
               "Destination": "Environment"

infra-as-code/bicep/modules/policy/assignments/alzDefaults/alzDefaultPolicyAssignments.bicep

@@ -26,6 +26,7 @@ parMsDefenderForCloudEmailSecurityContact | No       | Email address for Microso
 parDdosEnabled | No       | Enable/disable DDoS Network Protection. True enforces Enable-DDoS-VNET policy; false disables.
 parDdosProtectionPlanId | No       | Resource ID of the DDoS Protection Plan for Virtual Networks.
 parPrivateDnsResourceGroupId | No       | Resource ID of the Resource Group for Private DNS Zones. Empty to skip assigning the Deploy-Private-DNS-Zones policy.
+parPrivateDnsZonesLocation | No       | Location of Private DNS Zones.
 parPrivateDnsZonesNamesToAuditInCorp | No       | List of Private DNS Zones to audit under the Corp Management Group. This overwrites default values.
 parDisableAlzDefaultPolicies | No       | Disable all default ALZ policies.
 parDisableSlzDefaultPolicies | No       | Disable all default sovereign policies.
@@ -178,6 +179,12 @@ Resource ID of the DDoS Protection Plan for Virtual Networks.
 
 Resource ID of the Resource Group for Private DNS Zones. Empty to skip assigning the Deploy-Private-DNS-Zones policy.
 
+### parPrivateDnsZonesLocation
+
+![Parameter Setting](https://img.shields.io/badge/parameter-optional-green?style=flat-square)
+
+Location of Private DNS Zones.
+
 ### parPrivateDnsZonesNamesToAuditInCorp
 
 ![Parameter Setting](https://img.shields.io/badge/parameter-optional-green?style=flat-square)
@@ -307,6 +314,9 @@ Opt out of deployment telemetry.
         "parPrivateDnsResourceGroupId": {
             "value": ""
         },
+        "parPrivateDnsZonesLocation": {
+            "value": ""
+        },
         "parPrivateDnsZonesNamesToAuditInCorp": {
             "value": []
         },

infra-as-code/bicep/modules/policy/assignments/alzDefaults/generateddocs/alzDefaultPolicyAssignments.bicep.md

@@ -71,6 +71,9 @@
     "parPrivateDnsResourceGroupId": {
       "value": "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/resourceGroups/rg-alz-hub-networking-001"
     },
+    "parPrivateDnsZonesLocation": {
+      "value": "eastus"
+    },
     "parPrivateDnsZonesNamesToAuditInCorp": {
       "value": []
     },

infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.all.json

@@ -35,8 +35,11 @@
         "parMsDefenderForCloudEmailSecurityContact": {
             "value": "security_contact@replace_me.com"
         },
+        "parPrivateDnsZonesLocation": {
+          "value": "eastus"
+        },
         "parTelemetryOptOut": {
-            "value": false
+          "value": false
         }
     }
 }

infra-as-code/bicep/modules/policy/assignments/alzDefaults/parameters/alzDefaultPolicyAssignments.parameters.min.json

@@ -13,164 +13,206 @@
       "effect1": {
         "value": "deployIfNotExists"
       },
-      "azureFilePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureFilePrivateDnsZoneId]"
+      "azureAcrPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAcrPrivateDnsZoneId"
       },
-      "azureAutomationWebhookPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationWebhookPrivateDnsZoneId]"
+      "azureAppPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAppPrivateDnsZoneId"
+      },
+      "azureAppServicesPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAppServicesPrivateDnsZoneId"
+      },
+      "azureArcGuestconfigurationPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureArcGuestconfigurationPrivateDnsZoneId"
+      },
+      "azureArcHybridResourceProviderPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureArcHybridResourceProviderPrivateDnsZoneId"
+      },
+      "azureArcKubernetesConfigurationPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureArcKubernetesConfigurationPrivateDnsZoneId"
+      },
+      "azureAsrPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAsrPrivateDnsZoneId"
       },
       "azureAutomationDSCHybridPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationDSCHybridPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationDSCHybridPrivateDnsZoneId"
       },
-      "azureCosmosSQLPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosSQLPrivateDnsZoneId]"
+      "azureAutomationWebhookPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAutomationWebhookPrivateDnsZoneId"
       },
-      "azureCosmosMongoPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosMongoPrivateDnsZoneId]"
+      "azureBatchPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureBatchPrivateDnsZoneId"
+      },
+      "azureBotServicePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureBotServicePrivateDnsZoneId"
+      },
+      "azureCognitiveSearchPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveSearchPrivateDnsZoneId"
+      },
+      "azureCognitiveServicesPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveServicesPrivateDnsZoneId"
       },
       "azureCosmosCassandraPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosCassandraPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosCassandraPrivateDnsZoneId"
       },
       "azureCosmosGremlinPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosGremlinPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosGremlinPrivateDnsZoneId"
       },
-      "azureCosmosTablePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosTablePrivateDnsZoneId]"
+      "azureCosmosMongoPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosMongoPrivateDnsZoneId"
       },
-      "azureDataFactoryPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPrivateDnsZoneId]"
+      "azureCosmosSQLPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosSQLPrivateDnsZoneId"
+      },
+      "azureCosmosTablePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCosmosTablePrivateDnsZoneId"
       },
       "azureDataFactoryPortalPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPortalPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPortalPrivateDnsZoneId"
+      },
+      "azureDataFactoryPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDataFactoryPrivateDnsZoneId"
       },
       "azureDatabricksPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDatabricksPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDatabricksPrivateDnsZoneId"
       },
-      "azureHDInsightPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureHDInsightPrivateDnsZoneId]"
+      "azureDiskAccessPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDiskAccessPrivateDnsZoneId"
       },
-      "azureMigratePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMigratePrivateDnsZoneId]"
+      "azureEventGridDomainsPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridDomainsPrivateDnsZoneId"
       },
-      "azureStorageBlobPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobPrivateDnsZoneId]"
+      "azureEventGridTopicsPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridTopicsPrivateDnsZoneId"
       },
-      "azureStorageBlobSecPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobSecPrivateDnsZoneId]"
+      "azureEventHubNamespacePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventHubNamespacePrivateDnsZoneId"
       },
-      "azureStorageQueuePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueuePrivateDnsZoneId]"
+      "azureFilePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureFilePrivateDnsZoneId"
       },
-      "azureStorageQueueSecPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueueSecPrivateDnsZoneId]"
+      "azureHDInsightPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureHDInsightPrivateDnsZoneId"
       },
-      "azureStorageFilePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageFilePrivateDnsZoneId]"
+      "azureIotCentralPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotCentralPrivateDnsZoneId"
       },
-      "azureStorageStaticWebPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebPrivateDnsZoneId]"
+      "azureIotDeviceupdatePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotDeviceupdatePrivateDnsZoneId"
       },
-      "azureStorageStaticWebSecPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebSecPrivateDnsZoneId]"
+      "azureIotHubsPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotHubsPrivateDnsZoneId"
       },
-      "azureStorageDFSPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSPrivateDnsZoneId]"
+      "azureIotPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotPrivateDnsZoneId"
       },
-      "azureStorageDFSSecPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSSecPrivateDnsZoneId]"
+      "azureKeyVaultPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureKeyVaultPrivateDnsZoneId"
       },
-      "azureSynapseSQLPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLPrivateDnsZoneId]"
+      "azureMachineLearningWorkspacePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspacePrivateDnsZoneId"
       },
-      "azureSynapseSQLODPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLODPrivateDnsZoneId]"
+      "azureMachineLearningWorkspaceSecondPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspaceSecondPrivateDnsZoneId"
       },
-      "azureSynapseDevPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseDevPrivateDnsZoneId]"
+      "azureManagedGrafanaWorkspacePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureManagedGrafanaWorkspacePrivateDnsZoneId"
       },
       "azureMediaServicesKeyPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesKeyPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesKeyPrivateDnsZoneId"
       },
       "azureMediaServicesLivePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesLivePrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesLivePrivateDnsZoneId"
       },
       "azureMediaServicesStreamPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesStreamPrivateDnsZoneId]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMediaServicesStreamPrivateDnsZoneId"
+      },
+      "azureMigratePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMigratePrivateDnsZoneId"
       },
       "azureMonitorPrivateDnsZoneId1": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId1]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId1"
       },
       "azureMonitorPrivateDnsZoneId2": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId2]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId2"
       },
       "azureMonitorPrivateDnsZoneId3": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId3]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId3"
       },
       "azureMonitorPrivateDnsZoneId4": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId4]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId4"
       },
       "azureMonitorPrivateDnsZoneId5": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId5]"
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMonitorPrivateDnsZoneId5"
       },
-      "azureWebPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureWebPrivateDnsZoneId]"
+      "azureRedisCachePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureRedisCachePrivateDnsZoneId"
       },
-      "azureBatchPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureBatchPrivateDnsZoneId]"
+      "azureServiceBusNamespacePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureServiceBusNamespacePrivateDnsZoneId"
       },
-      "azureAppPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAppPrivateDnsZoneId]"
+      "azureSignalRPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSignalRPrivateDnsZoneId"
       },
-      "azureAsrPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAsrPrivateDnsZoneId]"
+      "azureSiteRecoveryBackupPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryBackupPrivateDnsZoneId"
       },
-      "azureIotPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotPrivateDnsZoneId]"
+      "azureSiteRecoveryBlobPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryBlobPrivateDnsZoneId"
       },
-      "azureKeyVaultPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureKeyVaultPrivateDnsZoneId]"
+      "azureSiteRecoveryQueuePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSiteRecoveryQueuePrivateDnsZoneId"
       },
-      "azureSignalRPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSignalRPrivateDnsZoneId]"
+      "azureStorageBlobPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobPrivateDnsZoneId"
       },
-      "azureAppServicesPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAppServicesPrivateDnsZoneId]"
+      "azureStorageBlobSecPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageBlobSecPrivateDnsZoneId"
       },
-      "azureEventGridTopicsPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridTopicsPrivateDnsZoneId]"
+      "azureStorageDFSPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSPrivateDnsZoneId"
       },
-      "azureDiskAccessPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureDiskAccessPrivateDnsZoneId]"
+      "azureStorageDFSSecPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageDFSSecPrivateDnsZoneId"
       },
-      "azureCognitiveServicesPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveServicesPrivateDnsZoneId]"
+      "azureStorageFilePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageFilePrivateDnsZoneId"
       },
-      "azureIotHubsPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureIotHubsPrivateDnsZoneId]"
+      "azureStorageQueuePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueuePrivateDnsZoneId"
       },
-      "azureEventGridDomainsPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventGridDomainsPrivateDnsZoneId]"
+      "azureStorageQueueSecPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageQueueSecPrivateDnsZoneId"
       },
-      "azureRedisCachePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureRedisCachePrivateDnsZoneId]"
+      "azureStorageStaticWebPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebPrivateDnsZoneId"
       },
-      "azureAcrPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureAcrPrivateDnsZoneId]"
+      "azureStorageStaticWebSecPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageStaticWebSecPrivateDnsZoneId"
       },
-      "azureEventHubNamespacePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureEventHubNamespacePrivateDnsZoneId]"
+      "azureStorageTablePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageTablePrivateDnsZoneId"
       },
-      "azureMachineLearningWorkspacePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspacePrivateDnsZoneId]"
+      "azureStorageTableSecondaryPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureStorageTableSecondaryPrivateDnsZoneId"
       },
-      "azureMachineLearningWorkspaceSecondPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureMachineLearningWorkspaceSecondPrivateDnsZoneId]"
+      "azureSynapseDevPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseDevPrivateDnsZoneId"
       },
-      "azureServiceBusNamespacePrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureServiceBusNamespacePrivateDnsZoneId]"
+      "azureSynapseSQLPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLPrivateDnsZoneId"
       },
-      "azureCognitiveSearchPrivateDnsZoneId": {
-        "value": "${varPrivateDnsZonesFinalResourceIds}.azureCognitiveSearchPrivateDnsZoneId]"
+      "azureSynapseSQLODPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureSynapseSQLODPrivateDnsZoneId"
+      },
+      "azureVirtualDesktopHostpoolPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureVirtualDesktopHostpoolPrivateDnsZoneId"
+      },
+      "azureVirtualDesktopWorkspacePrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureVirtualDesktopWorkspacePrivateDnsZoneId"
+      },
+      "azureWebPrivateDnsZoneId": {
+        "value": "${varPrivateDnsZonesFinalResourceIds}.azureWebPrivateDnsZoneId"
       }
     },
     "policyDefinitionId": "${varTopLevelManagementGroupResourceId}/providers/Microsoft.Authorization/policySetDefinitions/Deploy-Private-DNS-Zones",