AzPolicyAdvertizer

last sync: 2023-Jun-09 17:46:13 UTC

Azure Policy definition

Configure Linux virtual machine scale sets to run Azure Monitor Agent with system-assigned managed identity-based authentication

Name

Configure Linux virtual machine scale sets to run Azure Monitor Agent with system-assigned managed identity-based authentication
Azure Portal

56a3e4f8-649b-4fac-887e-5564d11e8d3a

Version

3.1.0
details on versioning

Category

Monitoring
Microsoft docs

Description

Automate the deployment of Azure Monitor Agent extension on your Linux virtual machine scale sets for collecting telemetry data from the guest OS. This policy will install the extension if the OS and region are supported and system-assigned managed identity is enabled, and skip install otherwise. Learn more: https://aka.ms/AMAOverview.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC
Role(s)

Role Name	Role Id
Virtual Machine Contributor	9980e02c-c2be-4d73-94e8-173b1dc7cf3c

Rule
Aliases

IF (5)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Compute/imageId	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.id properties.virtualMachineProfile.storageProfile.imageReference.id properties.creationData.imageReference.id	false false false
Microsoft.Compute/imageOffer	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.offer properties.virtualMachineProfile.storageProfile.imageReference.offer properties.creationData.imageReference.id	false false false
Microsoft.Compute/imagePublisher	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.publisher properties.virtualMachineProfile.storageProfile.imageReference.publisher properties.creationData.imageReference.id	false false false
Microsoft.Compute/imageSku	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.sku properties.virtualMachineProfile.storageProfile.imageReference.sku properties.creationData.imageReference.id	false false false
Microsoft.Compute/virtualMachineScaleSets/virtualMachineProfile.storageProfile.osDisk.osType	Microsoft.Compute	virtualMachineScaleSets	properties.virtualMachineProfile.storageProfile.osDisk.osType	false

THEN-ExistenceCondition (3)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Compute/virtualMachineScaleSets/extensions/provisioningState	Microsoft.Compute	virtualMachineScaleSets/extensions	properties.provisioningState	false
Microsoft.Compute/virtualMachineScaleSets/extensions/publisher	Microsoft.Compute	virtualMachineScaleSets/extensions	properties.publisher	false
Microsoft.Compute/virtualMachineScaleSets/extensions/type	Microsoft.Compute	virtualMachineScaleSets/extensions	properties.type	false

Rule
ResourceTypes

IF (1)
Microsoft.Compute/virtualMachineScaleSets
THEN-Deployment (1)
Microsoft.Compute/virtualMachineScaleSets/extensions

Compliance

Not a Compliance control

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2023-04-06 17:42:16	change	Minor (3.0.0 > 3.1.0)
2022-09-13 16:35:29	change	Major (2.1.0 > 3.0.0)
2022-08-12 16:33:43	change	Minor (2.0.0 > 2.1.0)
2022-05-06 16:29:23	change	Major (1.0.1 > 2.0.0)
2022-04-01 20:29:14	change	Patch (1.0.0 > 1.0.1) *changes on text case sensitivity are not tracked
2021-10-19 19:10:32	add	56a3e4f8-649b-4fac-887e-5564d11e8d3a

Initiatives
usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Configure Linux machines to run Azure Monitor Agent and associate them to a Data Collection Rule	118f04da-0375-44d1-84e3-0fd9e1849403	Monitoring	GA	BuiltIn

JSON