@Viktor Korokhov In addition to the response provided by Shayoni above, the following information should help you:
- "...I have noticed that some servers in Arc don't have needed Extensions."
Azure Arc is used to connect the non-Azure machines to Azure for their management and governance. It simply connects the machine to the Azure platform so that it can be managed from there. However, it will not install the extensions/agents unless it is required, or you have configured it for it to be installed. For example,
AzureMonitorWindowsAgent
is the extension name for Azure Monitor Agent installed on Windows Machines. If you have not created and associated any DCR to this Arc Server, this extension won't be installed. - "I'd like to install MS Windows updates in Arc servers using Update management center..." I was not able to understand this question. Using Update Management Center (Preview), the update scan and installation can be done one time or it can be scheduled to happen on periodic basis. Please see the following link for detailed step about the same - Quickstart: Check and install on-demand updates or configure periodic assessment. In case your question was about something else, please share additional details with screenshots/example to help us better understand it.
- "I have configure a Policy "Enable Azure Monitor for Hybrid VMs with AMA..."
Please note that it is an Initiative which is a collection of multiple policies to achieve this purpose. When you assign this Initiative, the Parameters tab has option to override the default values of parameters, when you uncheck the "Only show parameters that need input or review", as shown in the following image.
Regarding "Data Collection Endpoint", you only need it if one of the following is required to be set up. Otherwise, the data gets collected from on-prem to the Log Analytics workspace even without DCE. - "....how to link existed Data collection endpoint to each arc server automatically?" The Data Collection Endpoints are linked to VMs using the "Data Collection Rule"-->Resources. After the DCRs have been created, you will find this option below (depending on whether an existing DCE (if available) can be used or not, you will see the option to "create" or "select" a DCE here. Please see the image below for details: The Data Collection Endpoints are region specific, i.e., An endpoint in a given region can only be associated with machines in the same region. Therefore, the generic way of associating the Data collection endpoint to rule is not going to be an easy thing (check for region of VM, see if there is an DCE available in that region etc.). Therefore, it is not included in the policy/initiative at the moment. However, using the Azure PowerShell/Azure Cli, the scripts can be created to perform this task based on your requirement. The following resources should help:
Hope this helps. Please let me know if you have any questions.
Please click Accept answer and Yes if the answer helped so that it can help others in the community looking for help on similar topics.
1.
-