last sync: 2022-Dec-02 17:43:04 UTC

Azure Policy Initiative

Deploy Windows Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule

NameDeploy Windows Azure Monitor Agent with user-assigned managed identity-based auth and associate with Data Collection Rule
Azure Portal
Id0d1b56c6-6d1f-4a5d-8695-b15efbea6b49
Version1.0.0
details on versioning
CategoryMonitoring
Microsoft docs
DescriptionMonitor your Windows virtual machines and virtual machine scale sets by deploying the Azure Monitor Agent extension with user-assigned managed identity authentication and associating with specified Data Collection Rule. Azure Monitor Agent Deployment will occur on machines with supported OS images (or machines matching the provided list of images) in supported regions.
TypeBuiltIn
DeprecatedFalse
PreviewFalse
History
Date/Time (UTC ymd) (i) Changes
2022-06-16 16:34:43 add Initiative 0d1b56c6-6d1f-4a5d-8695-b15efbea6b49
Policy count Total Policies: 5
Builtin Policies: 5
Static Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State
[Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machine Scale Sets 516187d4-ef64-4a1b-ad6b-a7348502976c Managed Identity Default
DeployIfNotExists
Allowed
AuditIfNotExists, DeployIfNotExists, Disabled
2 Contributor, User Access Administrator Preview
[Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines d367bd60-64ca-4364-98ea-276775bddd94 Managed Identity Default
DeployIfNotExists
Allowed
AuditIfNotExists, DeployIfNotExists, Disabled
2 Contributor, User Access Administrator Preview
Configure Windows Machines to be associated with a Data Collection Rule eab1f514-22e3-42e3-9a1f-e1dc9199355c Monitoring Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
2 Log Analytics Contributor, Monitoring Contributor GA
Configure Windows virtual machine scale sets to run Azure Monitor Agent with user-assigned managed identity-based authentication 98569e20-8f32-4f31-bf34-0e91590ae9d3 Monitoring Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Virtual Machine Contributor GA
Configure Windows virtual machines to run Azure Monitor Agent with user-assigned managed identity-based authentication 637125fd-7c39-4b94-bb0a-d331faf333a9 Monitoring Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Virtual Machine Contributor GA
Roles used Total Roles usage: 8
Total Roles unique usage: 5
Role Role Id Policies count Policies
User Access Administrator 18d7d88d-d35e-4fb5-a5c3-7773c20a72d9 2 [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machine Scale Sets, [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines
Monitoring Contributor 749f88d5-cbae-40b8-bcfc-e573ddc772fa 1 Configure Windows Machines to be associated with a Data Collection Rule
Virtual Machine Contributor 9980e02c-c2be-4d73-94e8-173b1dc7cf3c 2 Configure Windows virtual machine scale sets to run Azure Monitor Agent with user-assigned managed identity-based authentication, Configure Windows virtual machines to run Azure Monitor Agent with user-assigned managed identity-based authentication
Contributor b24988ac-6180-42a0-ab88-20f7382dd24c 2 [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machine Scale Sets, [Preview]: Assign Built-In User-Assigned Managed Identity to Virtual Machines
Log Analytics Contributor 92aaf0da-9dab-42b6-94a3-d43ce8d16293 1 Configure Windows Machines to be associated with a Data Collection Rule
JSON