Control: Virtual machines should be migrated to new Azure Resource Manager resources
Description
Use new Azure Resource Manager for your virtual machines to provide security enhancements such as: stronger access control (RBAC), better auditing, Azure Resource Manager based deployment and governance, access to managed identities, access to key vault for secrets, Azure AD-based authentication and support for tags and resource groups for easier security management.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.compute_vm_uses_azure_resource_managerSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.compute_vm_uses_azure_resource_manager --shareSQL
This control uses a named query:
select vm.vm_id as resource, case when resource_group is not null then 'ok' else 'alarm' end as status, case when resource_group is not null then vm.title || ' uses azure resource manager.' else vm.title || ' not uses azure resource manager.' end as reason , vm.resource_group as resource_group , sub.display_name as subscriptionfrom azure_compute_virtual_machine as vm, azure_subscription as subwhere sub.subscription_id = vm.subscription_id;