last sync: 2020-Oct-20 13:29:34 UTC

Azure Policy Initiative

[Deprecated]: Audit Windows VMs in which the Administrators group does not contain only the specified members

Name[Deprecated]: Audit Windows VMs in which the Administrators group does not contain only the specified members
Id06122b01-688c-42a8-af2e-fa97dd39aa3b
Version1.0.0-deprecated
details on versioning
CategoryGuest Configuration
DescriptionThis initiative deploys the policy requirements and audits Windows virtual machines in which the Administrators group does not contain only the specified members. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol
TypeBuiltIn
History
Date/Time (UTC ymd) (i) Changes
2020-09-09 11:24:08 Name change: 'Audit Windows VMs in which the Administrators group does not contain only the specified members' to '[Deprecated]: Audit Windows VMs in which the Administrators group does not contain only the specified members'
Policy count Total Policies: 2
Builtin Policies: 2
Static Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect
[Deprecated]: Deploy prerequisites to audit Windows VMs if the Administrators group doesn't contain only specified members b821191b-3a12-44bc-9c38-212138a29ff3 Guest Configuration Fixed: deployIfNotExists
[Deprecated]: Show audit results from Windows VMs if the Administrators group doesn't contain only specified members cc7cda28-f867-4311-8497-a526129a8d19 Guest Configuration Fixed: auditIfNotExists
Json
{
  "properties": {
  "displayName": "[Deprecated]: Audit Windows VMs in which the Administrators group does not contain only the specified members",
    "policyType": "BuiltIn",
    "description": "This initiative deploys the policy requirements and audits Windows virtual machines in which the Administrators group does not contain only the specified members. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol",
    "metadata": {
      "version": "1.0.0-deprecated",
      "category": "Guest Configuration",
      "deprecated": true
    },
    "parameters": {
      "Members": {
        "type": "String",
        "metadata": {
        "displayName": "[Deprecated]: Members",
          "description": "A semicolon-separated list of all the expected members of the Administrators local group. Ex: Administrator; myUser1; myUser2"
        }
      }
    },
    "policyDefinitions": [
      {
        "policyDefinitionReferenceId": "Deploy_AdministratorsGroupMembers",
        "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/b821191b-3a12-44bc-9c38-212138a29ff3",
        "parameters": {
          "Members": {
          "value": "[parameters('Members')]"
          }
        }
      },
      {
        "policyDefinitionReferenceId": "Audit_AdministratorsGroupMembers",
        "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/cc7cda28-f867-4311-8497-a526129a8d19"
      }
    ]
  },
  "id": "/providers/Microsoft.Authorization/policySetDefinitions/06122b01-688c-42a8-af2e-fa97dd39aa3b",
  "type": "Microsoft.Authorization/policySetDefinitions",
  "name": "06122b01-688c-42a8-af2e-fa97dd39aa3b"
}