last sync: 2020-Jul-13 14:14:31 UTC

Azure Policy Initiative

Audit Windows VMs on which the remote host connection status does not match the specified one

Initiative DisplayName Audit Windows VMs on which the remote host connection status does not match the specified one
Initiative Id 4ddaefff-7c78-4824-9b27-5c344f3cdf90
Initiative Category Guest Configuration
Initiative Description This initiative deploys the policy requirements and audits Windows virtual machines on which the remote host connection status does not match the specified one. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol
Initiative Type BuiltIn
Initiative Changes
Date/Time (UTC ymd) (i) Change(s)
2020-06-11 19:46:04 change DisplayName Name change: '[Preview]: Audit Windows VMs on which the remote host connection status does not match the specified one' to 'Audit Windows VMs on which the remote host connection status does not match the specified one'
Initiative Policies count Total Policies: 2
Builtin Policies: 2/2
Static Policies: 0/2
Initiative Policies
Policy DisplayName Policy Id
Deploy prerequisites to audit Windows VMs on which the remote host connection status does not match the specified one 5bb36dda-8a78-4df9-affd-4f05a8612a8a
Show audit results from Windows VMs on which the remote host connection status does not match the specified one 02a84be7-c304-421f-9bb7-5d2c26af54ad
Initiative Rule
{
  "properties": {
    "displayName": "Audit Windows VMs on which the remote host connection status does not match the specified one",
    "policyType": "BuiltIn",
    "description": "This initiative deploys the policy requirements and audits Windows virtual machines on which the remote host connection status does not match the specified one. For more information on Guest Configuration policies, please visit https://aka.ms/gcpol",
    "metadata": {
      "version": "1.0.0",
      "category": "Guest Configuration"
    },
    "parameters": {
      "host": {
        "type": "String",
        "metadata": {
          "displayName": "Remote Host Name",
          "description": "Specifies the Domain Name System (DNS) name or IP address of the remote host machine."
        }
      },
      "port": {
        "type": "String",
        "metadata": {
          "displayName": "Port",
          "description": "The TCP port number on the remote host name."
        }
      },
      "shouldConnect": {
        "type": "String",
        "metadata": {
          "displayName": "Should connect to remote host",
          "description": "Must be 'True' or 'False'. 'True' indicates that the virtual machine should be able to establish a connection with the remote host specified, so the machine will be non-compliant if it cannot establish a connection. 'False' indicates that the virtual machine should not be able to establish a connection with the remote host specified, so the machine will be non-compliant if it can establish a connection."
        },
        "allowedValues": [
          "True",
          "False"
        ],
        "defaultValue": "False"
      }
    },
    "policyDefinitions": [
      {
        "policyDefinitionReferenceId": "Deploy_WindowsRemoteConnection",
        "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/5bb36dda-8a78-4df9-affd-4f05a8612a8a",
        "parameters": {
          "host": {
          "value": "[parameters('host')]"
          },
          "port": {
          "value": "[parameters('port')]"
          },
          "shouldConnect": {
          "value": "[parameters('shouldConnect')]"
          }
        }
      },
      {
        "policyDefinitionReferenceId": "Audit_WindowsRemoteConnection",
        "policyDefinitionId": "/providers/Microsoft.Authorization/policyDefinitions/02a84be7-c304-421f-9bb7-5d2c26af54ad"
      }
    ]
  },
  "id": "/providers/Microsoft.Authorization/policySetDefinitions/4ddaefff-7c78-4824-9b27-5c344f3cdf90",
  "type": "Microsoft.Authorization/policySetDefinitions",
  "name": "4ddaefff-7c78-4824-9b27-5c344f3cdf90"
}