last sync: 2025-Jul-25 17:39:48 UTC

[Preview]: Deploy Microsoft Defender for Endpoint agent on Windows Azure Arc machines

Azure BuiltIn Policy definition

Source Azure Portal
Display name [Preview]: Deploy Microsoft Defender for Endpoint agent on Windows Azure Arc machines
Id 37c043a6-6d64-656d-6465-b362dfeb354a
Version 2.0.1-preview
Details on versioning
Versioning Versions supported for Versioning: 1
2.0.1-preview
Built-in Versioning [Preview]
Category Security Center
Microsoft Learn
Description Deploys Microsoft Defender for Endpoint on Windows Azure Arc machines.
Cloud environments AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown
Available in AzUSGov Unknown, no evidence if Policy definition is/not available in AzureUSGovernment
Mode Indexed
Type BuiltIn
Preview True
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, AuditIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
Rule aliases IF (2)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.HybridCompute/machines/osName Microsoft.HybridCompute machines properties.osName True False
Microsoft.HybridCompute/machines/osSku Microsoft.HybridCompute machines properties.osSku True False
THEN-ExistenceCondition (3)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.HybridCompute/machines/extensions/provisioningState Microsoft.HybridCompute machines/extensions properties.provisioningState True False
Microsoft.HybridCompute/machines/extensions/publisher Microsoft.HybridCompute machines/extensions properties.publisher True False
Microsoft.HybridCompute/machines/extensions/type Microsoft.HybridCompute machines/extensions properties.type True False
Rule resource types IF (1)
THEN-Deployment (2)
Compliance Not a Compliance control
Initiatives usage
Rows: 1-1 / 1
Records:
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, [empty], [nonempty], rgx:
Learn more

TableFilter v0.7.3

https://www.tablefilter.com/
©2015-2025 Max Guglielmi
?
Page of 1
Initiative DisplayName Initiative Id Initiative Category State Type polSet in AzUSGov
[Preview]: Deploy Microsoft Defender for Endpoint agent e20d08c5-6d64-656d-6465-ce9e37fd0ebc Security Center Preview BuiltIn unknown
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-06-07 16:30:19 change Patch, suffix remains equal (2.0.0-preview > 2.0.1-preview)
2022-04-15 17:17:14 change Major, suffix remains equal (1.0.0-preview > 2.0.0-preview)
2022-02-18 17:44:00 add 37c043a6-6d64-656d-6465-b362dfeb354a
JSON compare
compare mode: version left: version right:
2.0.0-preview → 2.0.1-preview RENAMED
@@ -4,9 +4,9 @@
4
  "mode": "Indexed",
5
  "description": "Deploys Microsoft Defender for Endpoint on Windows Azure Arc machines.",
6
  "metadata": {
7
  "category": "Security Center",
8
- "version": "2.0.0-preview",
9
  "preview": true
10
  },
11
  "parameters": {
12
  "effect": {
@@ -71,9 +71,9 @@
71
  "then": {
72
  "effect": "[parameters('effect')]",
73
  "details": {
74
  "roleDefinitionIds": [
75
- "/providers/microsoft.authorization/roleDefinitions/fb1c8493-542b-48eb-b624-b4c8fea62acd"
76
  ],
77
  "type": "Microsoft.HybridCompute/machines/extensions",
78
  "name": "MDE.Windows",
79
  "existenceCondition": {
@@ -132,9 +132,10 @@
132
  "type": "MDE.Windows",
133
  "typeHandlerVersion": "1.0",
134
  "settings": {
135
  "azureResourceId": "[parameters('azureResourceId')]",
136
- "vNextEnabled": "true"
 
137
  },
138
  "protectedSettings": {
139
  "defenderForEndpointOnboardingScript": "[reference(subscriptionResourceId('Microsoft.Security/mdeOnboardings', 'Windows'), '2021-10-01-preview', 'full').properties.onboardingPackageWindows]"
140
  }
 
4
  "mode": "Indexed",
5
  "description": "Deploys Microsoft Defender for Endpoint on Windows Azure Arc machines.",
6
  "metadata": {
7
  "category": "Security Center",
8
+ "version": "2.0.1-preview",
9
  "preview": true
10
  },
11
  "parameters": {
12
  "effect": {
 
71
  "then": {
72
  "effect": "[parameters('effect')]",
73
  "details": {
74
  "roleDefinitionIds": [
75
+ "/providers/microsoft.authorization/roleDefinitions/b24988ac-6180-42a0-ab88-20f7382dd24c"
76
  ],
77
  "type": "Microsoft.HybridCompute/machines/extensions",
78
  "name": "MDE.Windows",
79
  "existenceCondition": {
 
132
  "type": "MDE.Windows",
133
  "typeHandlerVersion": "1.0",
134
  "settings": {
135
  "azureResourceId": "[parameters('azureResourceId')]",
136
+ "vNextEnabled": "true",
137
+ "installedBy": "Policy"
138
  },
139
  "protectedSettings": {
140
  "defenderForEndpointOnboardingScript": "[reference(subscriptionResourceId('Microsoft.Security/mdeOnboardings', 'Windows'), '2021-10-01-preview', 'full').properties.onboardingPackageWindows]"
141
  }
JSON
api-version=2021-06-01
EPAC
{7 items}