AzPolicyAdvertizer

last sync: 2022-May-24 16:30:29 UTC

Azure Policy definition

Windows Arc-enabled machines should have Azure Monitor Agent installed

Name

Windows Arc-enabled machines should have Azure Monitor Agent installed
Azure Portal

ec621e21-8b48-403d-a549-fc9023d4747f

Version

1.0.1
details on versioning

Category

Monitoring
Microsoft docs

Description

Windows Arc-enabled machines should be monitored and secured through the deployed Azure Monitor Agent. The Azure Monitor Agent collects telemetry data from the guest OS. Windows Arc-enabled machines in supported regions are monitored for Azure Monitor Agent deployment. Learn more: https://aka.ms/AMAOverview.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)

Used RBAC Role

none

Rule Aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.HybridCompute/machines/osName	Microsoft.HybridCompute	machines	properties.osName	false

THEN-ExistenceCondition (3)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.HybridCompute/machines/extensions/provisioningState	Microsoft.HybridCompute	machines/extensions	properties.provisioningState	false
Microsoft.HybridCompute/machines/extensions/publisher	Microsoft.HybridCompute	machines/extensions	properties.publisher	false
Microsoft.HybridCompute/machines/extensions/type	Microsoft.HybridCompute	machines/extensions	properties.type	false

Rule ResourceTypes

IF (1)
Microsoft.HybridCompute/machines

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-03-11 18:16:48	change	Patch (1.0.0 > 1.0.1) *changes on text case sensitivity are not tracked
2021-10-22 15:42:38	add	ec621e21-8b48-403d-a549-fc9023d4747f

Used in Initiatives

none

JSON Changes

Visual JSON JSON (Annotated)

Show unchanged values

JSON

AzPolicyAdvertizer

Azure Policy definition

Windows Arc-enabled machines should have Azure Monitor Agent installed

JSON Left

JSON Right