Ce navigateur n’est plus pris en charge.
Effectuez une mise à niveau vers Microsoft Edge pour tirer parti des dernières fonctionnalités, des mises à jour de sécurité et du support technique.
Translate
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 76%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
Bonjour à tous,
Je souhaite interroger via API les machines gérées par Azure Update Manager, afin d’obtenir leur statut de mise à jour (Updatestatus).
Merci pour votre aide.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Hi @zonx93 ,
Vous trouverez ci-dessous la requête Azure Resource Graph qui récupère l’état de mise à jour de chaque machine virtuelle, ainsi qu’une liste détaillée des champs pris en charge. Faites-nous savoir si vous avez besoin d’informations supplémentaires ou d’une assistance supplémentaire.
resources
| extend joinId = tolower(id)
| extend vmName = name
| extend azureOs = tostring(properties.storageProfile.osDisk.osType)
| extend arcOs = coalesce(tostring(properties.osName), tostring(properties.osType))
| extend os = coalesce(azureOs, arcOs)
| extend osType = iff(os =~ "Windows", "Windows", "Linux")
| join kind=leftouter (
resources
| where type in~ ("Microsoft.SqlVirtualMachine/sqlVirtualMachines", "microsoft.azurearcdata/sqlserverinstances")
| project resourceId = iff(type =~ "Microsoft.SqlVirtualMachine/sqlVirtualMachines", tolower(properties.virtualMachineResourceId), tolower(properties.containerResourceId)), sqlType = type
| summarize by resourceId, sqlType
) on $left.joinId == $right.resourceId
| extend type = iff(isnotempty(sqlType), sqlType, type)
| project-away sqlType, resourceId
| join kind = leftouter (
patchassessmentresources
| where type in~ ("microsoft.compute/virtualmachines/patchassessmentresults/softwarePatches", "microsoft.hybridcompute/machines/patchassessmentresults/softwarePatches")
| parse id with resourceId "/patchAssessmentResults" *
| extend joinId = tolower(resourceId)
| extend uniquePatchNameWithVersion = iff(isnull(properties.kbId), strcat(tostring(properties.patchName), '_', tostring(properties.version)), properties.patchName)
| extend publishedDateTime = iff(isnotnull(properties.publishedDateTime), properties.publishedDateTime, "N/A")
| extend rebootRequired = iff(isnotnull(properties.rebootBehavior), properties.rebootBehavior, "N/A")
| extend classification = iff(properties.classifications[0] =~ "UpdateRollUp", "UpdateRollup", iff(isempty(properties.classifications[0]), "Unsupported", properties.classifications[0]))
| extend msrcSeverity = iff(isnotnull(properties.msrcSeverity), properties.msrcSeverity, "NotAvailable")
| extend classificationPriority = iff(classification contains "Security", 0, (iff(classification == "Critical" , 1, 2)))
| project joinId, assessProperties = properties, publishedDateTime, rebootRequired, classification, msrcSeverity, classificationPriority
) on $left.joinId == $right.joinId
| where isnotnull(assessProperties)
| extend osUpdateClassification = iff(osType =~ "Linux", strcat("linux", tolower(classification)), tolower(classification))
// Count will indicate the number of machines with said update pending across selected subscription(s)
| summarize count() by vmName, publishedDateTime, tostring(assessProperties.patchId), tostring(assessProperties.patchName), tostring(assessProperties.version), tostring(assessProperties.kbId), rebootRequired, osType, tostring(classification), msrcSeverity, classificationPriority
Veuillez trouver la capture d’écran de sortie ci-dessous
Je vous remercie
Please let me know if you face any challenge here, I can help you to resolve this issue further
Please provide your valuable comments
Please do not forget to "Accept the answer” and “upvote it” wherever the information provided helps you, this can be beneficial to other community members.it would be greatly appreciated and helpful to others.
Hi @zonx93 ,
Just want to check if the above answer worked for you or else please let us know if any help, we are always here to help whenever you need us.
Please do not forget to "Accept the answer” and “upvote it” wherever the information provided helps you, this can be beneficial to other community members.it would be greatly appreciated and helpful to others.
hello,
Thx u for ur answer, im acutually need api request for a postman
Hi @zonx93 ,
STEP 1: Create App Registration in Azure and note the Application (client) ID and Directory (tenant) ID
STEP 2: Create Client Secret and note the secret value
STEP 3: Assign reader permissions to the app registration on subscription level. STEP 4: Get Access Token in Postman using below steps
a) Open Postman → New POST request
b) URL: https://login.microsoftonline.com/<tenant-id>/oauth2/token
c)Headers: Content-Type: application/x-www-form-urlencoded
d)Body (x-www-form-urlencoded):
Key Value
grant_type client_credentials
client_id (Your App’s Client ID)
client_secret (Your App’s Client Secret)
resource https://management.azure.com/
e) Hit Send → Copy the access_token from the response
STEP 5: Run Azure Resource Graph Query in Postman
a) Open Postman → New POST request
b) URL:
https://management.azure.com/providers/Microsoft.ResourceGraph/resources?api-version=2022-10-01
c)Headers:
Key Value
Authorization Bearer <paste_access_token>
Content-Type application/json
d)Body:
Select raw and json and paste the KQL query
{
"subscriptions": ["subscription-id"],
"query": "resources | extend joinId = tolower(id) | extend vmName = name | extend azureOs = tostring(properties.storageProfile.osDisk.osType) | extend arcOs = coalesce(tostring(properties.osName), tostring(properties.osType)) | extend os = coalesce(azureOs, arcOs) | extend osType = iff(os =~ \"Windows\", \"Windows\", \"Linux\") | join kind=leftouter ( resources | where type in~ (\"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", \"microsoft.azurearcdata/sqlserverinstances\") | project resourceId = iff(type =~ \"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", tolower(properties.virtualMachineResourceId), tolower(properties.containerResourceId)), sqlType = type | summarize by resourceId, sqlType ) on $left.joinId == $right.resourceId | extend type = iff(isnotempty(sqlType), sqlType, type) | project-away sqlType, resourceId | join kind = leftouter ( patchassessmentresources | where type in~ (\"microsoft.compute/virtualmachines/patchassessmentresults/softwarePatches\", \"microsoft.hybridcompute/machines/patchassessmentresults/softwarePatches\") | parse id with resourceId \"/patchAssessmentResults\" * | extend joinId = tolower(resourceId) | extend uniquePatchNameWithVersion = iff(isnull(properties.kbId), strcat(tostring(properties.patchName), '_', tostring(properties.version)), properties.patchName) | extend publishedDateTime = iff(isnotnull(properties.publishedDateTime), properties.publishedDateTime, \"N/A\") | extend rebootRequired = iff(isnotnull(properties.rebootBehavior), properties.rebootBehavior, \"N/A\") | extend classification = iff(properties.classifications[0] =~ \"UpdateRollUp\", \"UpdateRollup\", iff(isempty(properties.classifications[0]), \"Unsupported\", properties.classifications[0])) | extend msrcSeverity = iff(isnotnull(properties.msrcSeverity), properties.msrcSeverity, \"NotAvailable\") | extend classificationPriority = iff(classification contains \"Security\", 0, (iff(classification == \"Critical\" , 1, 2))) | project joinId, assessProperties = properties, publishedDateTime, rebootRequired, classification, msrcSeverity, classificationPriority ) on $left.joinId == $right.joinId | where isnotnull(assessProperties) | extend osUpdateClassification = iff(osType =~ \"Linux\", strcat(\"linux\", tolower(classification)), tolower(classification)) | summarize count() by vmName, publishedDateTime, tostring(assessProperties.patchId), tostring(assessProperties.patchName), tostring(assessProperties.version), tostring(assessProperties.kbId), rebootRequired, osType, tostring(classification), msrcSeverity, classificationPriority"
}
Replace the subscription-id and click on send
output of step-4:
output of step-5:
Please let me know if you face any challenge here, I can help you to resolve this issue further
Please provide your valuable comments
Please do not forget to "Accept the answer” and “upvote it” wherever the information provided helps you, this can be beneficial to other community members.it would be greatly appreciated and helpful to others.
Hello,
Thank you — it works, but in the JSON response I only see Azure Arc machines.
I would like to see all machines, including Azure Virtual Machines — without any filters.
This means:
ect .....
Hi @zonx93 ,
Thanks for letting me that it worked.
The query works as expected when applied to virtual machines.
As per the request, the output now includes the updated columns such as Resource Group, Resource Type, OS Type, and Classification Type. Below is the updated query:
{
"subscriptions": ["subscription-id"],
"query": "resources
| extend joinId = tolower(id)
| extend vmName = name
| extend resourceGroup = resourceGroup
| extend resourceType = type
| extend azureOs = tostring(properties.storageProfile.osDisk.osType)
| extend arcOs = coalesce(tostring(properties.osName), tostring(properties.osType))
| extend os = coalesce(azureOs, arcOs)
| extend osType = iff(os =~ \"Windows\", \"Windows\", \"Linux\")
| join kind=leftouter (
resources
| where type in~ (\"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", \"microsoft.azurearcdata/sqlserverinstances\")
| project resourceId = iff(type =~ \"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", tolower(properties.virtualMachineResourceId), tolower(properties.containerResourceId)),
sqlType = type
| summarize by resourceId, sqlType
) on $left.joinId == $right.resourceId
| extend type = iff(isnotempty(sqlType), sqlType, type)
| project-away sqlType, resourceId
| join kind = leftouter (
patchassessmentresources
| where type in~ (\"microsoft.compute/virtualmachines/patchassessmentresults/softwarePatches\", \"microsoft.hybridcompute/machines/patchassessmentresults/softwarePatches\")
| parse id with resourceId \"/patchAssessmentResults\" *
| extend joinId = tolower(resourceId)
| extend uniquePatchNameWithVersion = iff(isnull(properties.kbId), strcat(tostring(properties.patchName), '_', tostring(properties.version)), properties.patchName)
| extend publishedDateTime = iff(isnotnull(properties.publishedDateTime), properties.publishedDateTime, \"N/A\")
| extend rebootRequired = iff(isnotnull(properties.rebootBehavior), properties.rebootBehavior, \"N/A\")
| extend classification = iff(properties.classifications[0] =~ \"UpdateRollUp\", \"UpdateRollup\", iff(isempty(properties.classifications[0]), \"Unsupported\", properties.classifications[0]))
| extend msrcSeverity = iff(isnotnull(properties.msrcSeverity), properties.msrcSeverity, \"NotAvailable\")
| extend classificationPriority = iff(classification contains \"Security\", 0, (iff(classification == \"Critical\" , 1, 2)))
| project joinId, assessProperties = properties, publishedDateTime, rebootRequired, classification, msrcSeverity, classificationPriority
) on $left.joinId == $right.joinId
| where isnotnull(assessProperties)
| extend osUpdateClassification = iff(osType =~ \"Linux\", strcat(\"linux\", tolower(classification)), tolower(classification))
| summarize count() by vmName, resourceGroup, resourceType, publishedDateTime, tostring(assessProperties.patchId), tostring(assessProperties.patchName), tostring(assessProperties.version), tostring(assessProperties.kbId), rebootRequired, osType, tostring(classification), msrcSeverity, classificationPriority"
}
Note:
To convert this JSON response to Excel/CSV, you can use Postman scripts or utilize an online converter tool.
Below is the sample output from our test environment.
Resource Group, Resource Type, OS Type, and Classification Type.
Please let me know if you face any challenge here, I can help you to resolve this issue further
Please provide your valuable comments
Hope this helps you well!
Please do not forget to "Accept the answer” and “upvote it” wherever the information provided helps you, this can be beneficial to other community members.it would be greatly appreciated and helpful to others.
Hello,
Thx u for ur help,
When i run the request i can see only "resourcegroup" : "azure- arc"
The script has erreur format :
Hi @zonx93 ,
To avoid any errors, please use the format provided below.
Regarding the resource group, it reflects the group where the virtual machine (VM) resides. The name of the resource group is directly associated with the VM’s location in Azure. For reference, please see the snippet below.
{ "subscriptions": [ "subscription-id" ], "query": "resources | extend joinId = tolower(id) | extend vmName = name | extend resourceGroup = resourceGroup | extend resourceType = type | extend azureOs = tostring(properties.storageProfile.osDisk.osType) | extend arcOs = coalesce(tostring(properties.osName), tostring(properties.osType)) | extend os = coalesce(azureOs, arcOs) | extend osType = iff(os =~ \"Windows\", \"Windows\", \"Linux\") | join kind=leftouter ( resources | where type in~ (\"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", \"microsoft.azurearcdata/sqlserverinstances\") | project resourceId = iff(type =~ \"Microsoft.SqlVirtualMachine/sqlVirtualMachines\", tolower(properties.virtualMachineResourceId), tolower(properties.containerResourceId)), sqlType = type | summarize by resourceId, sqlType ) on $left.joinId == $right.resourceId | extend type = iff(isnotempty(sqlType), sqlType, type) | project-away sqlType, resourceId | join kind = leftouter ( patchassessmentresources | where type in~ (\"microsoft.compute/virtualmachines/patchassessmentresults/softwarePatches\", \"microsoft.hybridcompute/machines/patchassessmentresults/softwarePatches\") | parse id with resourceId \"/patchAssessmentResults\" * | extend joinId = tolower(resourceId) | extend uniquePatchNameWithVersion = iff(isnull(properties.kbId), strcat(tostring(properties.patchName), '_', tostring(properties.version)), properties.patchName) | extend publishedDateTime = iff(isnotnull(properties.publishedDateTime), properties.publishedDateTime, \"N/A\") | extend rebootRequired = iff(isnotnull(properties.rebootBehavior), properties.rebootBehavior, \"N/A\") | extend classification = iff(properties.classifications[0] =~ \"UpdateRollUp\", \"UpdateRollup\", iff(isempty(properties.classifications[0]), \"Unsupported\", properties.classifications[0])) | extend msrcSeverity = iff(isnotnull(properties.msrcSeverity), properties.msrcSeverity, \"NotAvailable\") | extend classificationPriority = iff(classification contains \"Security\", 0, (iff(classification == \"Critical\" , 1, 2))) | project joinId, assessProperties = properties, publishedDateTime, rebootRequired, classification, msrcSeverity, classificationPriority ) on $left.joinId == $right.joinId | where isnotnull(assessProperties) | extend osUpdateClassification = iff(osType =~ \"Linux\", strcat(\"linux\", tolower(classification)), tolower(classification)) | summarize count() by vmName, resourceGroup, resourceType, publishedDateTime, tostring(assessProperties.patchId), tostring(assessProperties.patchName), tostring(assessProperties.version), tostring(assessProperties.kbId), rebootRequired, osType, tostring(classification), msrcSeverity, classificationPriority" }
Hope this helps you well!
Please do not forget to "Accept the answer” and “upvote it” wherever the information provided helps you, this can be beneficial to other community members.it would be greatly appreciated and helpful to others.
Hi,
thx u , i steel can't see resourcetype "microsoft.compute" i dont know why but with the same request api and body row json :
{
"query": "
resources
| where type =~ 'microsoft.compute/virtualmachines' or type =~ 'microsoft.hybridcompute/machines'
| project name, resourceGroup, location, id , type
",
"subscriptions": ["xxxxxxxx"]
}
i can see everything and total machine in azure update manager
Hi @zonx93 ,
I have reached out to you in a private message
Thx u for ur help