AzPolicyAdvertizer

last sync: 2024-Sep-18 17:50:24 UTC

[Preview]: Nexus Compute Machines should meet Security Baseline

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

[Preview]: Nexus Compute Machines should meet Security Baseline

ec2c1bce-5ad3-4b07-bb4f-e041410cd8db

Version

1.1.0-preview
Details on versioning

Versioning

Versions supported for Versioning: 2
1.0.0-preview
1.1.0-preview
Built-in Versioning [Preview]

Category

Guest Configuration
Microsoft Learn

Description

Utilizes the Azure Policy Guest Configuration agent for auditing. This policy ensures that machines adhere to the Nexus compute security baseline, encompassing various recommendations designed to fortify machines against a range of vulnerabilities and unsafe configurations (Linux only).

Mode

Indexed

Type

BuiltIn

Preview

True

Deprecated

False

Effect

Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled

RBAC role(s)

none

Rule aliases

IF (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.HybridCompute/imageOffer	Microsoft.HybridCompute	machines	properties.osName	True		False

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.GuestConfiguration/guestConfigurationAssignments/complianceStatus	Microsoft.GuestConfiguration	guestConfigurationAssignments	properties.complianceStatus	True		False

Rule resource types

IF (1)
Microsoft.HybridCompute/machines

Compliance

Not a Compliance control

Initiatives usage

none

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2024-01-05 19:11:18	change	Minor, suffix remains equal (1.0.0-preview > 1.1.0-preview)
2023-11-17 19:29:28	add	ec2c1bce-5ad3-4b07-bb4f-e041410cd8db

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC