AzPolicyAdvertizer

last sync: 2022-Sep-27 16:35:32 UTC

Azure Policy definition

Name

Log Analytics extension should be enabled in virtual machine scale sets for listed virtual machine images
Azure Portal

5c3bc7b8-a64c-4e08-a9cd-7ff0f31e1138

Version

Category

Description

Reports virtual machine scale sets as non-compliant if the virtual machine image is not in the list defined and the extension is not installed.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)

Used RBAC Role

none

Rule Aliases

IF (4)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Compute/imageId	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.id properties.virtualMachineProfile.storageProfile.imageReference.id properties.creationData.imageReference.id	false false false
Microsoft.Compute/imageOffer	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.offer properties.virtualMachineProfile.storageProfile.imageReference.offer properties.creationData.imageReference.id	false false false
Microsoft.Compute/imagePublisher	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.publisher properties.virtualMachineProfile.storageProfile.imageReference.publisher properties.creationData.imageReference.id	false false false
Microsoft.Compute/imageSKU	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.sku properties.virtualMachineProfile.storageProfile.imageReference.sku properties.creationData.imageReference.id	false false false

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Compute/virtualMachineScaleSets/extensions/publisher	Microsoft.Compute	virtualMachineScaleSets/extensions	properties.publisher	false

Rule ResourceTypes

IF (1)
Microsoft.Compute/virtualMachineScaleSets

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-09-27 15:52:17	change	Patch (2.0.0 > 2.0.1) *changes on text case sensitivity are not tracked
2021-03-02 15:11:40	change	Major (1.0.1 > 2.0.0)
2020-04-22 04:43:16	change	Previous DisplayName: [Preview]: Audit Log Analytics Agent Deployment in Virtual Machine Scale Sets - VM Image (OS) unlisted
2020-02-29 21:43:10	change	Previous DisplayName: [Preview]: Audit Log Analytics Agent Deployment in VMSS - VM Image (OS) unlisted

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
[Deprecated]: DoD Impact Level 4	8d792a84-723c-4d92-a3c3-e4ed16a2d133	Regulatory Compliance	Deprecated	BuiltIn
[Preview]: CMMC 2.0 Level 2	4e50fd13-098b-3206-61d6-d1d78205cb45	Regulatory Compliance	Preview	BuiltIn
[Preview]: Reserve Bank of India - IT Framework for NBFC	7f89f09c-48c1-f28d-1bd5-84f3fb22f86c	Regulatory Compliance	Preview	BuiltIn
[Preview]: RMIT Malaysia	97a6d4f1-3bed-4cf4-ac5b-0e444c0408d6	Regulatory Compliance	Preview	BuiltIn
[Preview]: SWIFT CSP-CSCF v2021	abf84fac-f817-a70c-14b5-47eec767458a	Regulatory Compliance	Preview	BuiltIn
Canada Federal PBMM	4c4a5f27-de81-430b-b4e5-9cbd50595a87	Regulatory Compliance	GA	BuiltIn
CMMC Level 3	b5629c75-5c77-4422-87b9-2509e680f8de	Regulatory Compliance	GA	BuiltIn
IRS1075 September 2016	105e0327-6175-4eb2-9af4-1fba43bdb39d	Regulatory Compliance	GA	BuiltIn
ISO 27001:2013	89c6cddc-1c73-4ac1-b19c-54d1a15a42f2	Regulatory Compliance	GA	BuiltIn
Legacy - Enable Azure Monitor for Virtual Machine Scale Sets	75714362-cae7-409e-9b99-a8e5075b7fad	Monitoring	GA	BuiltIn
New Zealand ISM Restricted	d1a462af-7e6d-4901-98ac-61570b4ed22a	Regulatory Compliance	GA	BuiltIn
SWIFT CSP-CSCF v2022	7bc7cd6c-4114-ff31-3cac-59be3157596d	Regulatory Compliance	GA	BuiltIn

JSON Changes

Visual JSON JSON (Annotated)

Show unchanged values

JSON