AzPolicyAdvertizer

last sync: 2023-Sep-29 17:58:48 UTC

Azure Policy definition

[Preview]: ChangeTracking extension should be installed on your Linux Arc machine

Source

Azure Portal

Display name

[Preview]: ChangeTracking extension should be installed on your Linux Arc machine

fc47609f-4d9b-4aed-806b-446816cc63a3

Version

1.0.0-preview
details on versioning

Category

Security Center
Microsoft docs

Description

Install ChangeTracking Extension on Linux Arc machines to enable File Integrity Monitoring(FIM) in Azure Security Center. FIM examines operating system files, Windows registries, application software, Linux system files, and more, for changes that might indicate an attack. The extension can be installed in virtual machines and locations supported by Azure Monitoring Agent.

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

False

Effect

Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled

RBAC role(s)

none

Rule aliases

IF (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.HybridCompute/imageOffer	Microsoft.HybridCompute	machines	properties.osName	false

THEN-ExistenceCondition (3)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.HybridCompute/machines/extensions/provisioningState	Microsoft.HybridCompute	machines/extensions	properties.provisioningState	false
Microsoft.HybridCompute/machines/extensions/Publisher	Microsoft.HybridCompute	machines/extensions	properties.publisher	false
Microsoft.HybridCompute/machines/extensions/type	Microsoft.HybridCompute	machines/extensions	properties.type	false

Rule resource types

IF (1)
Microsoft.HybridCompute/machines

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-11-12 16:23:07	add	fc47609f-4d9b-4aed-806b-446816cc63a3

JSON compare

n/a

JSON

api-version=2021-06-01