In this session, Michael Greene and Thomas Maurer discuss Azure Policy Guest Configuration in a Hybrid Cloud environment. Learn to use services in Azure to audit the state of servers across private and public clouds and upcoming plans to expand capabilities in this area.
Azure Policy can audit settings inside a machine, both for machines running in Azure andArc Connected Machines. The validation is performed by the Guest Configuration extension and client. The extension, through the client, validates settings such as:
The configuration of the operating system
Application configuration or presence
What is Azure Arc enabled servers?
Azure Arc enabled servers allows you to manage your Windows and Linux machines hosted outside of Azure, on your corporate network, or other cloud provider consistent with how you manage native Azure virtual machines. When a hybrid machine is connected to Azure, it becomes a connected machine and is treated as a resource in Azure. Each connected machine has a Resource ID, is included in a resource group, and benefits from standard Azure constructs such as Azure Policy and applying tags. Service providers who manage a customer's on-premises infrastructure can manage their hybrid machines, just like they do today with native Azure resources, across multiple customer environments, usingAzure Lighthousewith Azure Arc.
To deliver this experience with your hybrid machines hosted outside of Azure, the Azure Connected Machine agent needs to be installed on each machine that you plan on connecting to Azure. This agent does not deliver any other functionality, and it doesn't replace the AzureLog Analytics agent. The Log Analytics agent for Windows and Linux is required when you want to proactively monitor the OS and workloads running on the machine, manage it using Automation runbooks or solutions like Update Management, or use other Azure services likeAzure Security Center.
This session includes:
0:00 Introduction 3:40 Providing Feedback and Community 5:10 Hybrid solution using Azure Arc 8:30 Demo using Azure Policy Guest Configuration 18:39 Demo How to set up Azure Policy Guest Configuration for Azure Arc machines 23:19 Azure Arc enabled servers 27:33 What is next for Azure Policy Guest Configuration 31:13 Wrap up