Azure Policy built-in packages for guest configuration
This page is an index of Azure Policy built-in packages for the guest configuration feature.
How to use Guest configuration package details
Each row represents a package used by a built-in policy definition.
- Definition: Links to the policy definition in the Azure portal.
- Configuration: Links to the
.moffile in the Azure Policy GitHub repo containing the configuration that is used to audit and/or remediate machines. - Required modules: Links to the PowerShell Desired State Configuration (DSC) modules used by each configuration. The resource modules contain the script logic used to evaluate each setting in the configuration.
To understand what settings are checked in Windows or Linux, and how, find the name of the policy definition in the left column and navigate to the DSC Resource in the right column to review the PowerShell scripts.
The table doesn't include details of packages used to evaluate baseline configurations. Baselines are written in C++ rather than PowerShell Desired State Configuration.
Next steps
- See the built-ins on the Azure Policy GitHub repo.
- Review the Azure Policy definition structure.
- Review Understanding policy effects.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for