The guestConfigurationAssignments resource type is an extension resource, which means you can apply it to another resource.
Use the scope
property on this resource to set the scope for this resource. See Set scope on extension resources in ARM templates.
For a list of changed properties in each API version, see change log.
To create a Microsoft.GuestConfiguration/guestConfigurationAssignments resource, add the following JSON to your template.
{
"type": "Microsoft.GuestConfiguration/guestConfigurationAssignments",
"apiVersion": "2022-01-25",
"name": "string",
"location": "string",
"scope": "string",
"properties": {
"context": "string",
"guestConfiguration": {
"assignmentType": "string",
"configurationParameter": [
{
"name": "string",
"value": "string"
}
],
"configurationProtectedParameter": [
{
"name": "string",
"value": "string"
}
],
"contentHash": "string",
"contentUri": "string",
"kind": "DSC",
"name": "string",
"version": "string"
},
"latestAssignmentReport": {
"assignment": {
"configuration": {}
},
"resources": [
{
"reasons": [
{
}
]
}
],
"vm": {}
},
"vmssVMList": [
{
}
]
}
}
Name | Description | Value |
---|---|---|
type | The resource type | 'Microsoft.GuestConfiguration/guestConfigurationAssignments' |
apiVersion | The resource api version | '2022-01-25' |
name | The resource name | string (required) |
location | Region where the VM is located. | string |
scope | Use when creating an extension resource at a scope that is different than the deployment scope. | Target resource For JSON, set the value to the full name of the resource to apply the extension resource to. |
properties | Properties of the Guest configuration assignment. | GuestConfigurationAssignmentProperties |
Name | Description | Value |
---|---|---|
context | The source which initiated the guest configuration assignment. Ex: Azure Policy | string |
guestConfiguration | The guest configuration to assign. | GuestConfigurationNavigation |
latestAssignmentReport | Last reported guest configuration assignment report. | AssignmentReport |
vmssVMList | The list of VM Compliance data for VMSS | VmssvmInfo[] |
Name | Description | Value |
---|---|---|
assignmentType | Specifies the assignment type and execution of the configuration. Possible values are Audit, DeployAndAutoCorrect, ApplyAndAutoCorrect and ApplyAndMonitor. | 'ApplyAndAutoCorrect' 'ApplyAndMonitor' 'Audit' 'DeployAndAutoCorrect' |
configurationParameter | The configuration parameters for the guest configuration. | ConfigurationParameter[] |
configurationProtectedParameter | The protected configuration parameters for the guest configuration. | ConfigurationParameter[] |
contentHash | Combined hash of the guest configuration package and configuration parameters. | string |
contentUri | Uri of the storage where guest configuration package is uploaded. | string |
kind | Kind of the guest configuration. For example:DSC | 'DSC' |
name | Name of the guest configuration. | string |
version | Version of the guest configuration. | string |
Name | Description | Value |
---|---|---|
name | Name of the configuration parameter. | string |
value | Value of the configuration parameter. | string |
Name | Description | Value |
---|---|---|
assignment | Configuration details of the guest configuration assignment. | AssignmentInfo |
resources | The list of resources for which guest configuration assignment compliance is checked. | AssignmentReportResource[] |
vm | Information about the VM. | VMInfo |
Name | Description | Value |
---|---|---|
configuration | Information about the configuration. | ConfigurationInfo |
This object doesn't contain any properties to set during deployment. All properties are ReadOnly.
Name | Description | Value |
---|---|---|
reasons | Compliance reason and reason code for a resource. | AssignmentReportResourceComplianceReason[] |
This object doesn't contain any properties to set during deployment. All properties are ReadOnly.
This object doesn't contain any properties to set during deployment. All properties are ReadOnly.
This object doesn't contain any properties to set during deployment. All properties are ReadOnly.
The following quickstart templates deploy this resource type.
Template | Description |
---|---|
Windows VM with Azure secure baseline |
The template creates a virtual machine running Windows Server in a new virtual network, with a public IP address. Once the machine has deployed, the guest configuration extension is installed and the Azure secure baseline for Windows Server is applied. If the configuration of the machines drifts, you can re-apply the settings by deploying the template again. |