This main bicep file creates a Azure Virtual Desktop environment in Azure, based on Bicep 0.2 creating Resource Groups, AVD Backplane components, Vnet with Subnet, Storage container with FileShare, Storage Private Endpoint, Log Analytics Workspace, Shared Image Gallery and Azure Image Builder Template. This main bicep file calls the bicep modules as outlined below.

• AVD-backplane-module.bicep
• AVD-network-module.bicep
• AVD-fileservices-module.bicep
• AVD-fileservices-privateendpoint-module.bicep
• AVD-LogAnalytics.bicep
• AVD-monitor-diag.bicep
• AVD-sig-module.bicep
• AVD-image-builder-module.bicep

This Bicep Module creates AVD backplane components in Azure and connects all objects. The following objetcs are created.

• AVD Hostpool
• AVD AppGroup
• AVD Workspace This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates networking components in Azure. The following objects are created.

• Virtual Network
• Subnet This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates File Services components in Azure. The following objects are created.

• Storage Account
• File Share This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates a File Services Private Endpoint in Azure connected to the AVD VNET. The following objects are created.

• Private Endpoint
• Private DNS Zone Group
• Private DNS Zone This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates Log Analytics components in Azure. The following objects are created.

• Log Analytics Workspace This Bicep module can be run separatly or as part of main.bicep

This Bicep Module configures Log Analytics diagnostics settings for AVD components in Azure. The following objects are configured for Log Analytics

• Workspace
• Hostpool This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates a Shared Image Gallery and Image Definition. The following objects are created

• Shared Image Gallery
• Shared Image Gallery Image Definition This Bicep module can be run separatly or as part of main.bicep

This Bicep Module creates components to run Azure Image Builder and update the Shared Image Gallery Image Definition. The following objects are created

• User Assigned Managed Identity (UAMI)
• Role for the UAMI to Modify Gallery and Template Images
• Image Template - Optional Customisations to run Optimization Teams install Powershell scripts and Windows Updates (Uncomment if needed)

Optional (Experimental) If parameter InvokeRunImageBuildThroughDeploymentScript in main.bicep is set to True then the following will be triggered:

• Additional Role definitions created and assigned to UAMI to be able to run Image Template builds, become a managed identity operator and create the relevant container and storage accounts needed to run a script deployment using the Microsoft.Resources/deploymentScripts provider.
• Using the Microsoft.Resources/deploymentScripts provider, spins up a container and storage account and runs a Powershell script to start the build of the AIB Image and upload the image once complete to the SIG definition created earlier.

This process may leave some orphaned Resource Groups from Image Builder in your Subscription usually prefixed 'IT_SIGRESOUCEGROUPNAME'. Make sure to delete if not required and to avoid unecessary charges.

This Bicep module can be run separatly or as part of main.bicep

This file is the JSON output after transpiling 'main.bicep' The following command was used: bicep build '.\main.bicep'

This project welcomes contributions and suggestions.