AzPolicyAdvertizer

last sync: 2022-Jul-01 16:32:34 UTC

Azure Policy definition

[Preview]: Configure supported Windows machines to automatically install the Azure Security agent

Name [Preview]: Configure supported Windows machines to automatically install the Azure Security agent
Azure Portal
Id 1537496a-b1e8-482b-a06a-1cc2415cdc7b
Version 4.0.0-preview
details on versioning
Category Security Center
Microsoft docs
Description Configure supported Windows machines to automatically install the Azure Security agent. Security Center collects events from the agent and uses them to provide security alerts and tailored hardening tasks (recommendations). Target virtual machines must be in a supported location.
Mode Indexed
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default: DeployIfNotExists
Allowed: (DeployIfNotExists, Disabled)
Used RBAC Role
Role Name Role Id
Virtual Machine Contributor 9980e02c-c2be-4d73-94e8-173b1dc7cf3c
Rule Aliases IF (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Compute/imageOffer Microsoft.Compute
Microsoft.Compute
Microsoft.Compute		 virtualMachines
virtualMachineScaleSets
disks		 properties.storageProfile.imageReference.offer
properties.virtualMachineProfile.storageProfile.imageReference.offer
properties.creationData.imageReference.id		 false
false
false
Microsoft.Compute/imagePublisher Microsoft.Compute
Microsoft.Compute
Microsoft.Compute		 virtualMachines
virtualMachineScaleSets
disks		 properties.storageProfile.imageReference.publisher
properties.virtualMachineProfile.storageProfile.imageReference.publisher
properties.creationData.imageReference.id		 false
false
false
Microsoft.Compute/imageSKU Microsoft.Compute
Microsoft.Compute
Microsoft.Compute		 virtualMachines
virtualMachineScaleSets
disks		 properties.storageProfile.imageReference.sku
properties.virtualMachineProfile.storageProfile.imageReference.sku
properties.creationData.imageReference.id		 false
false
false
THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Compute/virtualMachines/extensions/provisioningState Microsoft.Compute virtualMachines/extensions properties.provisioningState false
Microsoft.Compute/virtualMachines/extensions/Publisher Microsoft.Compute virtualMachines/extensions properties.publisher false
Microsoft.Compute/virtualMachines/extensions/type Microsoft.Compute virtualMachines/extensions properties.type false
Rule ResourceTypes IF (1)
Microsoft.Compute/virtualMachines
THEN-Deployment (1)
Microsoft.Compute/virtualMachines/extensions
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-09-13 16:35:32 change Major, suffix remains equal (3.0.0-preview > 4.0.0-preview)
2021-06-22 14:29:30 change Major, suffix remains equal (2.0.0-preview > 3.0.0-preview)
2021-06-02 22:44:52 change Major, suffix remains equal (1.0.0-preview > 2.0.0-preview)
2021-01-22 09:14:53 add 1537496a-b1e8-482b-a06a-1cc2415cdc7b
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Configure machines to automatically install the Azure Monitor and Azure Security agents on virtual machines a15f3269-2e10-458c-87a4-d5989e678a73 Monitoring Preview BuiltIn
[Preview]: Configure virtual and Arc-enabled machines to create the default Microsoft Defender for Cloud pipeline 362ab02d-c362-417e-a525-45805d58e21d Security Center Preview BuiltIn
[Preview]: Configure virtual and Arc-enabled machines to create the user-defined Microsoft Defender for Cloud pipeline 500ab3a2-f1bd-4a5a-8e47-3e09d9a294c3 Security Center Preview BuiltIn
JSON Changes

JSON