Merge pull request #893 from denver-reed/arc-automanage-updatemanager

Added ARG query for "Use Azure Arc-enabled servers to control software updates deployments to servers" in azure_arc_checklist.en.json
Azure · Oct 21, 2024 · 1f84a18 · 1f84a18
2 parents 8212166 + 8faee26
commit 1f84a18
Showing 1 changed file with 7 additions and 6 deletions.
diff --git a/checklists/azure_arc_checklist.en.json b/checklists/azure_arc_checklist.en.json
@@ -191,11 +191,11 @@
             "category": "Management and Monitoring",
             "subcategory": "Management",
             "waf": "Operations",
-            "text": "Consider using Azure Automanage to control settings and avoid configuration drift on servers",
-            "description": "Azure Automanage help implement Microsoft best-practices for servers management in Azure",
+            "text": "Consider using Azure Machine Configuration to control settings and avoid configuration drift on servers",
+            "description": "Azure Machine Configuration to help implement Microsoft best-practices for servers management in Azure",
             "guid": "7a927c39-74d1-4102-aac6-aae01e6a84de",
             "severity": "Medium",
-            "link": "https://learn.microsoft.com/azure/automanage/automanage-arc"
+            "link": "https://learn.microsoft.com/azure/governance/machine-configuration/overview"
         },
         {
             "category": "Management and Monitoring",
@@ -247,10 +247,11 @@
             "subcategory": "Security",
             "waf": "Operations",
             "text": "Use Azure Arc-enabled servers to control software updates deployments to servers",
-            "description": "Use Update Management in Azure Automation or the new Update Management Center (preview) functionality to ensure update management of servers",
+            "description": "Use Azure Update Manager to manage and schedule updates at scale across your Azure Arc-enabled servers",
             "guid": "ae2cc84c-37b6-4b78-8cba-fe6c46589d45",
             "severity": "Low",
-            "link": "https://learn.microsoft.com/azure/cloud-adoption-framework/manage/hybrid/server/best-practices/arc-update-management"
+            "graph": "resources | where type =~ 'microsoft.hybridcompute/machines' | project id = tolower(id), arcMachineName = name | join kind=leftouter (maintenanceresources | extend baseIdParts = split(tolower(id), '/providers/microsoft.maintenance/') | extend maintenanceMachineId = tostring(baseIdParts[0]) | project maintenanceMachineId, maintenanceId = id) on $left.id == $right.maintenanceMachineId | extend compliant = iif(maintenanceMachineId == '', 'No', 'Yes') | project id, compliant",
+            "link": "https://learn.microsoft.com/azure/update-manager/scheduled-patching?tabs=schedule-updates-single-machine%2Cschedule-updates-scale-overview%2Cwindows-maintenance"
         },
         {
             "category": "Networking",
@@ -525,4 +526,4 @@
         "state": "Preview",
         "timestamp": "April 05, 2023"
     }
-}
+}