last sync: 2022-Dec-02 17:43:06 UTC

Azure Policy definition

[Preview]: Configure ChangeTracking Extension for Windows Arc machines

Name [Preview]: Configure ChangeTracking Extension for Windows Arc machines
Azure Portal
Id 4bb303db-d051-4099-95d2-e3e1428a4cd5
Version 1.1.0-preview
details on versioning
Category Security Center
Microsoft docs
Description Configure Windows Arc machines to automatically install the ChangeTracking Extension to enable File Integrity Monitoring(FIM) in Azure Security Center. FIM examines operating system files, Windows registries, application software, Linux system files, and more, for changes that might indicate an attack. The extension can be installed in virtual machines and locations supported by Azure Monitor Agent.
Mode Indexed
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293
Rule
Aliases
IF (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.HybridCompute/imageOffer Microsoft.HybridCompute machines properties.osName false
THEN-ExistenceCondition (3)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.HybridCompute/machines/extensions/provisioningState Microsoft.HybridCompute machines/extensions properties.provisioningState false
Microsoft.HybridCompute/machines/extensions/Publisher Microsoft.HybridCompute machines/extensions properties.publisher false
Microsoft.HybridCompute/machines/extensions/type Microsoft.HybridCompute machines/extensions properties.type false
Rule
ResourceTypes
IF (1)
Microsoft.HybridCompute/machines
THEN-Deployment (1)
Microsoft.HybridCompute/machines/extensions
Compliance Not a Compliance control
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-09-23 16:35:49 change Minor, suffix remains equal (1.0.0-preview > 1.1.0-preview)
2021-11-12 16:23:07 add 4bb303db-d051-4099-95d2-e3e1428a4cd5
Initiatives
usage
none
JSON
changes

JSON