A no frills script that will iterate over a resource group looking for Azure VMs to enable/disable ASR rules.
-
Run PowerShell with elevated privileges
-
Ensure your Execution Policy supports importing unsigned PowerShell scripts.
Set-ExecutionPolicy -ExecutionPolicy
-
Import the PowerShell script:
. ./azureASR.ps1
-
Enable all 16 ASR Rules in AuditMode for all Azure VM's (currently running):
Set-ASRRules -ResourceGroup 'VMtestRG' -Mode 2 -AllVMs
-
Add/Modify specific ASR Rule(s) :: [enable two ASR rules in AuditMode]:
Set-ASRRules -ResourceGroup 'VMTESTRG' -Mode 2 -VirtualMachine 'WinZo10-VM-ENT' -Rules "d4f940ab-401b-4efc-aadc-ad5f3c50688a,c1db55ab-c21a-4637-bb3f-a12568109d35"
-
Run the Set-ASRRules CmdLet with -CheckAzModules to install the two required Az modules if necessary.
- Az.Compute
- Az.Accounts
ASR Azure VM - EXAMPLE 1: ALL Azure VM's -> Disabled
Import the PowerShell script, disable ASR Rules for all Azure VMs, and check to ensure the required Az Modules are installed.
ASR Azure VM - EXAMPLE 2: ALL Azure VM's -> AuditMode
Enable all 16 ASR Rules in AuditMode on for all Azure VM's.
ASR Azure VM - EXAMPLE 3: Single Azure VM -> Disabled
Disable ASR Rules for a single Azure VM.
ASR Azure VM - EXAMPLE 4: Single Azure VM -> AuditMode
Enable all ASR Rules in AuditMode for a single Azure VM.
ASR Azure VM - EXAMPLE 5: Multiple Azure VM's -> AuditMode
Enable all ASR Rules in AuditMode for selected Azure VM's.
ASR Azure VM - EXAMPLE 6: Multiple Azure VMs modifying mutliple rules per Azure VM -> Enabled (Block)
Enable multiple ASR Rules in Block mode for selected Azure VM's.
