AzPolicyAdvertizer

last sync: 2025-Jun-13 17:23:19 UTC

[Deprecated]: Show audit results from Windows VMs if the Administrators group contains any of the specified members

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Deprecated]: Show audit results from Windows VMs if the Administrators group contains any of the specified members

bde62c94-ccca-4821-a815-92c1d31a76de

Version

1.0.0-deprecated
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.0 (1.0.0-deprecated)
Built-in Versioning [Preview]

Category

Guest Configuration
Microsoft Learn

Description

This policy should only be used along with its corresponding deploy policy in an initiative. This definition allows Azure Policy to process the results of auditing Windows virtual machines in which the Administrators group contains any of the specified members. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol

Cloud environments

AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown

Available in AzUSGov

The Policy is available in AzureUSGovernment cloud. Version: '3.0.0-deprecated'
Repository: Azure-Policy bde62c94-ccca-4821-a815-92c1d31a76de

Mode

All

Type

BuiltIn

Preview

False

Deprecated

True

Effect

Fixed
auditIfNotExists

RBAC role(s)

none

Rule aliases

IF (6)

Alias	Namespace	ResourceType	Path	PathIsDefault	Modifiable
Microsoft.Compute/imageOffer	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.offer properties.virtualMachineProfile.storageProfile.imageReference.offer properties.creationData.imageReference.id	True True True	False False False
Microsoft.Compute/imagePublisher	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.publisher properties.virtualMachineProfile.storageProfile.imageReference.publisher properties.creationData.imageReference.id	True True True	False False False
Microsoft.Compute/imageSKU	Microsoft.Compute Microsoft.Compute Microsoft.Compute	virtualMachines virtualMachineScaleSets disks	properties.storageProfile.imageReference.sku properties.virtualMachineProfile.storageProfile.imageReference.sku properties.creationData.imageReference.id	True True True	False False False
Microsoft.Compute/virtualMachines/osProfile.windowsConfiguration	Microsoft.Compute	virtualMachines	properties.osProfile.windowsConfiguration	True	True
Microsoft.Compute/virtualMachines/storageProfile.osDisk.osType	Microsoft.Compute	virtualMachines	properties.storageProfile.osDisk.osType	True	True
Microsoft.HybridCompute/imageOffer	Microsoft.HybridCompute	machines	properties.osName	True	False

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.GuestConfiguration/guestConfigurationAssignments/complianceStatus	Microsoft.GuestConfiguration	guestConfigurationAssignments	properties.complianceStatus	True		False

Rule resource types

IF (2)

Microsoft.Compute/virtualMachines
Microsoft.HybridCompute/machines

Compliance

Not a Compliance control

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
[Deprecated]: Audit Windows VMs in which the Administrators group contains any of the specified members	add1999e-a61c-46d3-b8c3-f35fb8398175	Guest Configuration	Deprecated	BuiltIn	true

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2020-09-16 13:09:49	change	Previous DisplayName: [Deprecated]: Show audit results from Windows VMs in which the Administrators group contains any of the specified members
2020-09-09 11:24:03	change	Previous DisplayName: Show audit results from Windows VMs in which the Administrators group contains any of the specified members

JSON compare

n/a

JSON

api-version=2021-06-01
EPAC