AzPolicyAdvertizer

last sync: 2023-Sep-29 17:58:48 UTC

Azure Policy definition

[Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines

Source Azure Portal
Display name [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines
Id d367bd60-64ca-4364-98ea-276775bddd94
Version 1.0.6-preview
details on versioning
Category Managed Identity
Microsoft docs
Description Create and assign a built-in user-assigned managed identity or assign a pre-created user-assigned managed identity at scale to virtual machines. For more detailed documentation, visit aka.ms/managedidentitypolicy.
Mode Indexed
Type BuiltIn
Preview True
Deprecated False
Effect Default
DeployIfNotExists
Allowed
AuditIfNotExists, DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
User Access Administrator 18d7d88d-d35e-4fb5-a5c3-7773c20a72d9
Rule aliases none
Rule resource types IF (1)
Microsoft.Compute/virtualMachines
THEN-Deployment (5)
Microsoft.Authorization/locks
Microsoft.Compute/virtualMachines
Microsoft.ManagedIdentity/userAssignedIdentities
Microsoft.Resources/deployments
Microsoft.Resources/resourceGroups
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Deprecated]: Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA) 9dffaf29-5905-4145-883c-957eb442c226 Monitoring Deprecated BuiltIn
[Preview]: Configure machines to create the default Microsoft Defender for Cloud pipeline using Azure Monitor Agent 362ab02d-c362-417e-a525-45805d58e21d Security Center Preview BuiltIn
[Preview]: Configure machines to create the user-defined Microsoft Defender for Cloud pipeline using Azure Monitor Agent 500ab3a2-f1bd-4a5a-8e47-3e09d9a294c3 Security Center Preview BuiltIn
[Preview]: Enable ChangeTracking and Inventory for virtual machines 92a36f05-ebc9-4bba-9128-b47ad2ea3354 ChangeTrackingAndInventory Preview BuiltIn
Deploy Linux Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule babf8e94-780b-4b4d-abaa-4830136a8725 Monitoring GA BuiltIn
Deploy Windows Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule 0d1b56c6-6d1f-4a5d-8695-b15efbea6b49 Monitoring GA BuiltIn
Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA) 924bfe3a-762f-40e7-86dd-5c8b95eb09e6 Monitoring GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-09-01 18:00:13 change Patch, suffix remains equal (1.0.5-preview > 1.0.6-preview)
2023-07-10 18:02:26 change Patch, suffix remains equal (1.0.4-preview > 1.0.5-preview)
2023-05-12 17:41:51 change Patch, suffix remains equal (1.0.3-preview > 1.0.4-preview)
2023-02-10 18:41:56 change Patch, suffix remains equal (1.0.2-preview > 1.0.3-preview)
2022-07-08 16:32:07 change Patch, suffix remains equal (1.0.1-preview > 1.0.2-preview)
2022-06-07 16:30:19 change Patch, new suffix: preview (1.0.0 > 1.0.1-preview)
2022-05-23 08:52:47 add d367bd60-64ca-4364-98ea-276775bddd94
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01