last sync: 2022-Nov-25 17:41:58 UTC

Azure Policy definition

[Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines

Name [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines
Azure Portal
Id d367bd60-64ca-4364-98ea-276775bddd94
Version 1.0.2-preview
details on versioning
Category Managed Identity
Microsoft docs
Description Create and assign a built-in user-assigned managed identity or assign a pre-created user-assigned managed identity at scale to virtual machines. For more detailed documentation, visit aka.ms/managedidentitypolicy.
Mode Indexed
Type BuiltIn
Preview True
Deprecated FALSE
Effect Default
DeployIfNotExists
Allowed
AuditIfNotExists, DeployIfNotExists, Disabled
RBAC
Role(s)
Role Name Role Id
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c
User Access Administrator 18d7d88d-d35e-4fb5-a5c3-7773c20a72d9
Rule
Aliases
Rule
ResourceTypes
IF (1)
Microsoft.Compute/virtualMachines
THEN-Deployment (5)
Microsoft.Authorization/locks
Microsoft.Compute/virtualMachines
Microsoft.ManagedIdentity/userAssignedIdentities
Microsoft.Resources/deployments
Microsoft.Resources/resourceGroups
Compliance Not a Compliance control
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-07-08 16:32:07 change Patch, suffix remains equal (1.0.1-preview > 1.0.2-preview)
2022-06-07 16:30:19 change Patch, new suffix: preview (1.0.0 > 1.0.1-preview)
2022-05-23 08:52:47 add d367bd60-64ca-4364-98ea-276775bddd94
Initiatives
usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Configure machines to create the default Microsoft Defender for Cloud pipeline using Azure Monitor Agent 362ab02d-c362-417e-a525-45805d58e21d Security Center Preview BuiltIn
[Preview]: Configure machines to create the user-defined Microsoft Defender for Cloud pipeline using Azure Monitor Agent 500ab3a2-f1bd-4a5a-8e47-3e09d9a294c3 Security Center Preview BuiltIn
[Preview]: Enable Azure Monitor for VMs with Azure Monitoring Agent(AMA) 9dffaf29-5905-4145-883c-957eb442c226 Monitoring Preview BuiltIn
Deploy Linux Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule babf8e94-780b-4b4d-abaa-4830136a8725 Monitoring GA BuiltIn
Deploy Windows Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule 0d1b56c6-6d1f-4a5d-8695-b15efbea6b49 Monitoring GA BuiltIn
JSON
changes

JSON