last sync: 2022-Jun-28 16:32:57 UTC

Azure Policy definition

[Preview]: Secure Boot should be enabled on supported Windows virtual machines

Name [Preview]: Secure Boot should be enabled on supported Windows virtual machines
Azure Portal
Id 97566dd7-78ae-4997-8b36-1c7bfe0d8121
Version 3.0.0-preview
details on versioning
Category Security Center
Microsoft docs
Description Enable Secure Boot on supported Windows virtual machines to mitigate against malicious and unauthorized changes to the boot chain. Once enabled, only trusted bootloaders, kernel and kernel drivers will be allowed to run. This assessment only applies to trusted launch enabled Windows virtual machines.
Mode Indexed
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default: Audit
Allowed: (Audit, Disabled)
Used RBAC Role none
Rule Aliases IF (5)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Compute/virtualMachines/securityProfile.securityType Microsoft.Compute virtualMachines properties.securityProfile.securityType false
Microsoft.Compute/virtualMachines/securityProfile.uefiSettings Microsoft.Compute virtualMachines properties.securityProfile.uefiSettings false
Microsoft.Compute/virtualMachines/securityProfile.uefiSettings.secureBootEnabled Microsoft.Compute virtualMachines properties.securityProfile.uefiSettings.secureBootEnabled false
Microsoft.Compute/virtualMachines/storageProfile.imageReference.offer Microsoft.Compute virtualMachines properties.storageProfile.imageReference.offer true
Microsoft.Compute/virtualMachines/storageProfile.osDisk.osType Microsoft.Compute virtualMachines properties.storageProfile.osDisk.osType true
Rule ResourceTypes IF (1)
Date/Time (UTC ymd) (i) Change type Change detail
2021-11-12 16:23:07 change Major, suffix remains equal (1.0.0-preview > 3.0.0-preview)
2021-05-04 14:34:06 add 97566dd7-78ae-4997-8b36-1c7bfe0d8121
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Reserve Bank of India - IT Framework for NBFC 7f89f09c-48c1-f28d-1bd5-84f3fb22f86c Regulatory Compliance Preview BuiltIn
Azure Security Benchmark 1f3afdf9-d0c9-4c3d-847f-89da613e70a8 Security Center GA BuiltIn
JSON Changes