JSON compareHide
compare mode:
side-by-side
line-by-line
version left: 6.0.0-preview 5.0.0-preview 3.0.0-preview 2.0.0-preview 1.0.0-preview
version right: 6.1.0-preview 6.0.0-preview 5.0.0-preview 3.0.0-preview 2.0.0-preview 1.0.0-preview
@@ -4,9 +4,9 @@
4
"mode": "Indexed",
5
"description": "Configure supported Linux virtual machines scale sets to automatically install the Guest Attestation extension to allow Azure Security Center to proactively attest and monitor the boot integrity. Boot integrity is attested via Remote Attestation.",
6
"metadata": {
7
"category": "Security Center",
8
-
"version": "6.0.0-preview",
9
"preview": true
10
},
11
"parameters": {
12
"effect": {
@@ -218,15 +218,8 @@
218
},
219
{
220
"field": "Microsoft.Compute/virtualMachineScaleSets/extensions/type",
221
"equals": "GuestAttestation"
222
-
},
223
-
{
224
-
"field": "Microsoft.Compute/virtualMachineScaleSets/extensions/provisioningState",
225
-
"in": [
226
-
"Succeeded",
227
-
"Provisioning succeeded"
228
-
]
229
}
230
]
231
},
232
"roleDefinitionIds": [
@@ -277,9 +270,8 @@
277
"publisher": "[variables('extensionPublisher')]",
278
"type": "[variables('extensionName')]",
279
"typeHandlerVersion": "[variables('extensionVersion')]",
280
"autoUpgradeMinorVersion": true,
281
-
"enableAutomaticUpgrade": true,
282
"settings": {
283
"AttestationConfig": {
284
"MaaSettings": {
285
"maaEndpoint": "[parameters('attestationEndpoint')]",
4
"mode": "Indexed",
5
"description": "Configure supported Linux virtual machines scale sets to automatically install the Guest Attestation extension to allow Azure Security Center to proactively attest and monitor the boot integrity. Boot integrity is attested via Remote Attestation.",
6
"metadata": {
7
"category": "Security Center",
8
+
"version": "6.1 .0-preview",
9
"preview": true
10
},
11
"parameters": {
12
"effect": {
218
},
219
{
220
"field": "Microsoft.Compute/virtualMachineScaleSets/extensions/type",
221
"equals": "GuestAttestation"
222
}
223
]
224
},
225
"roleDefinitionIds": [
270
"publisher": "[variables('extensionPublisher')]",
271
"type": "[variables('extensionName')]",
272
"typeHandlerVersion": "[variables('extensionVersion')]",
273
"autoUpgradeMinorVersion": true,
274
"settings": {
275
"AttestationConfig": {
276
"MaaSettings": {
277
"maaEndpoint": "[parameters('attestationEndpoint')]",
JSON
api-version=2021-06-01
Copy definition Copy definition 4 EPAC EPAC
{ 7 items displayName: "[Preview]: Configure supported Linux virtual machine scale sets to automatically install the Guest Attestation extension" , policyType: "BuiltIn" , mode: "Indexed" , description: "Configure supported Linux virtual machines scale sets to automatically install the Guest Attestation extension to allow Azure Security Center to proactively attest and monitor the boot integrity. Boot integrity is attested via Remote Attestation." , metadata: { 3 items category: "Security Center" , version: "6.1.0-preview" , preview: true } , parameters: { 2 items } , policyRule: { 2 items if: { 1 item allOf: [ 6 items { 2 items field: "type" , equals: "Microsoft.Compute/virtualMachineScaleSets" } , { 1 item anyOf: [ 9 items { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "Canonical" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "UbuntuServer" } , { 2 items field: "Microsoft.Compute/imageSku" , like: "18_04-lts-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "Canonical" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "0001-com-ubuntu-server-focal" } , { 2 items field: "Microsoft.Compute/imageSku" , like: "20_04-lts-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "Canonical" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "0001-com-ubuntu-confidential-vm-focal" } , { 2 items field: "Microsoft.Compute/imageSku" , like: "20_04-lts-cvm" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "RedHat" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "RHEL" } , { 2 items field: "Microsoft.Compute/imageSku" , like: "83-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "SUSE" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "SLES-15-SP2" } , { 2 items field: "Microsoft.Compute/imageSku" , like: "gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "OpenLogic" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "CENTOS" } , { 2 items field: "Microsoft.Compute/imageSku" , equals: "8_3-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "Oracle" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "Oracle-Linux" } , { 2 items field: "Microsoft.Compute/imageSku" , equals: "ol83-lvm-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "microsoftcblmariner" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "cbl-mariner" } , { 2 items field: "Microsoft.Compute/imageSku" , equals: "1-gen2" } ] } , { 1 item allOf: [ 3 items { 2 items field: "Microsoft.Compute/imagePublisher" , equals: "debian" } , { 2 items field: "Microsoft.Compute/imageOffer" , equals: "debian-11" } , { 2 items field: "Microsoft.Compute/imageSku" , equals: "11-gen2" } ] } ] } , { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/virtualMachineProfile.securityProfile.securityType" , in: [ 2 items "TrustedLaunch" , "ConfidentialVM" ] } , { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/virtualMachineProfile.securityProfile.uefiSettings" , exists: "true" } , { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/virtualMachineProfile.securityProfile.uefiSettings.vTpmEnabled" , equals: "true" } , { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/virtualMachineProfile.securityProfile.uefiSettings.secureBootEnabled" , equals: "true" } ] } , then: { 2 items effect: "[parameters('effect')]" , details: { 4 items type: "Microsoft.Compute/virtualMachineScaleSets/extensions" , existenceCondition: { 1 item allOf: [ 2 items { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/extensions/publisher" , equals: "Microsoft.Azure.Security.LinuxAttestation" } , { 2 items field: "Microsoft.Compute/virtualMachineScaleSets/extensions/type" , equals: "GuestAttestation" } ] } , roleDefinitionIds: [ 1 item ] , deployment: { 1 item properties: { 3 items mode: "incremental" , parameters: { 3 items } , template: { 5 items $schema: "http://schema.management.azure.com/schemas/2015-01-01/deploymentTemplate.json#" , contentVersion: "1.0.0.0" , parameters: { 3 items } , variables: { 5 items extensionName: "GuestAttestation" , extensionPublisher: "Microsoft.Azure.Security.LinuxAttestation" , extensionVersion: "1.0" , maaTenantName: "GuestAttestation" , ascReportingEndpoint: "" } , resources: [ 1 item { 5 items type: "Microsoft.Compute/virtualMachineScaleSets/extensions" , apiVersion: "2019-12-01" , name: 🔍 "[
concat(
parameters('vmssName'),
'/',
variables(
'extensionName'
)
)
]", location: "[parameters('location')]" , properties: { 5 items publisher: "[variables('extensionPublisher')]" , type: "[variables('extensionName')]" , typeHandlerVersion: "[variables('extensionVersion')]" , autoUpgradeMinorVersion: true , settings: { 1 item } } } ] } } } } } } }