From b8c09382627f4185007f580de792aee02d69d919 Mon Sep 17 00:00:00 2001 From: SDK Automation Date: Thu, 27 Aug 2020 15:09:30 +0000 Subject: [PATCH] Generated from 83be2a4c15b8e871f9e9dfd5f0cbc024aa08be1d exclude private apiversions for schemas generation --- .../subscriptionDeploymentTemplate.json | 18 + .../Microsoft.Security.json | 562 ++++++++ schemas/2019-01-01/Microsoft.Security.json | 100 ++ .../Microsoft.Security.json | 296 ++++ schemas/2020-01-01/Microsoft.Security.json | 1239 +++++++++++++++++ schemas/common/autogeneratedResources.json | 3 + 6 files changed, 2218 insertions(+) create mode 100644 schemas/2019-01-01-preview/Microsoft.Security.json create mode 100644 schemas/2019-01-01/Microsoft.Security.json create mode 100644 schemas/2020-01-01-preview/Microsoft.Security.json create mode 100644 schemas/2020-01-01/Microsoft.Security.json diff --git a/schemas/2018-05-01/subscriptionDeploymentTemplate.json b/schemas/2018-05-01/subscriptionDeploymentTemplate.json index 2cdb01a912..80becf9882 100644 --- a/schemas/2018-05-01/subscriptionDeploymentTemplate.json +++ b/schemas/2018-05-01/subscriptionDeploymentTemplate.json @@ -289,6 +289,24 @@ { "$ref": "https://schema.management.azure.com/schemas/2020-06-01/Microsoft.Resources.json#/unknown_resourceDefinitions/tags" }, + { + "$ref": "https://schema.management.azure.com/schemas/2019-01-01/Microsoft.Security.json#/subscription_resourceDefinitions/settings" + }, + { + "$ref": "https://schema.management.azure.com/schemas/2019-01-01-preview/Microsoft.Security.json#/subscription_resourceDefinitions/alertsSuppressionRules" + }, + { + "$ref": "https://schema.management.azure.com/schemas/2019-01-01-preview/Microsoft.Security.json#/subscription_resourceDefinitions/assessmentMetadata" + }, + { + "$ref": "https://schema.management.azure.com/schemas/2020-01-01/Microsoft.Security.json#/subscription_resourceDefinitions/assessmentMetadata" + }, + { + "$ref": "https://schema.management.azure.com/schemas/2020-01-01/Microsoft.Security.json#/subscription_resourceDefinitions/locations_applicationWhitelistings" + }, + { + "$ref": "https://schema.management.azure.com/schemas/2020-01-01-preview/Microsoft.Security.json#/subscription_resourceDefinitions/connectors" + }, { "$ref": "https://schema.management.azure.com/schemas/2019-05-01-preview/Microsoft.Support.json#/subscription_resourceDefinitions/supportTickets" }, diff --git a/schemas/2019-01-01-preview/Microsoft.Security.json b/schemas/2019-01-01-preview/Microsoft.Security.json new file mode 100644 index 0000000000..c9bf395e81 --- /dev/null +++ b/schemas/2019-01-01-preview/Microsoft.Security.json @@ -0,0 +1,562 @@ +{ + "id": "https://schema.management.azure.com/schemas/2019-01-01-preview/Microsoft.Security.json#", + "$schema": "http://json-schema.org/draft-04/schema#", + "title": "Microsoft.Security", + "description": "Microsoft Security Resource Types", + "resourceDefinitions": {}, + "subscription_resourceDefinitions": { + "alertsSuppressionRules": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2019-01-01-preview" + ] + }, + "name": { + "type": "string", + "description": "The unique name of the suppression alert rule" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/AlertsSuppressionRuleProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "describes AlertsSuppressionRule properties" + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/alertsSuppressionRules" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/alertsSuppressionRules" + }, + "assessmentMetadata": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2019-01-01-preview" + ] + }, + "name": { + "type": "string", + "description": "The Assessment Key - Unique key for the assessment type" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentMetadataProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an assessment metadata." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/assessmentMetadata" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/assessmentMetadata" + } + }, + "unknown_resourceDefinitions": { + "assessments": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2019-01-01-preview" + ] + }, + "name": { + "type": "string", + "description": "The Assessment Key - Unique key for the assessment type" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an assessment." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/assessments" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/assessments" + } + }, + "definitions": { + "AlertsSuppressionRuleProperties": { + "type": "object", + "properties": { + "alertType": { + "type": "string", + "description": "Type of the alert to automatically suppress. For all alert types, use '*'" + }, + "comment": { + "type": "string", + "description": "Any comment regarding the rule" + }, + "expirationDateUtc": { + "type": "string", + "format": "date-time", + "description": "Expiration date of the rule, if value is not provided or provided as null this field will default to the maximum allowed expiration date." + }, + "reason": { + "type": "string", + "description": "The reason for dismissing the alert" + }, + "state": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Enabled", + "Disabled", + "Expired" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Possible states of the rule." + }, + "suppressionAlertsScope": { + "oneOf": [ + { + "$ref": "#/definitions/SuppressionAlertsScope" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "required": [ + "alertType", + "reason", + "state" + ], + "description": "describes AlertsSuppressionRule properties" + }, + "AssessmentLinks": { + "type": "object", + "properties": {}, + "description": "Links relevant to the assessment" + }, + "AssessmentStatus": { + "type": "object", + "properties": { + "cause": { + "type": "string", + "description": "Programmatic code for the cause of the assessment status" + }, + "code": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Healthy", + "Unhealthy", + "NotApplicable" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Programmatic code for the status of the assessment." + }, + "description": { + "type": "string", + "description": "Human readable description of the assessment status" + } + }, + "required": [ + "code" + ], + "description": "The result of the assessment" + }, + "AzureResourceDetails": { + "type": "object", + "properties": { + "source": { + "type": "string", + "enum": [ + "Azure" + ] + } + }, + "required": [ + "source" + ], + "description": "Details of the Azure resource that was assessed" + }, + "OnPremiseResourceDetails": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/OnPremiseSqlResourceDetails" + } + ], + "properties": { + "machineName": { + "type": "string", + "description": "The name of the machine" + }, + "source": { + "type": "string", + "enum": [ + "OnPremise" + ] + }, + "sourceComputerId": { + "type": "string", + "description": "The oms agent Id installed on the machine" + }, + "vmuuid": { + "type": "string", + "description": "The unique Id of the machine" + }, + "workspaceId": { + "type": "string", + "description": "Azure resource Id of the workspace the machine is attached to" + } + }, + "required": [ + "machineName", + "source", + "sourceComputerId", + "vmuuid", + "workspaceId" + ], + "description": "Details of the On Premise resource that was assessed" + }, + "OnPremiseSqlResourceDetails": { + "type": "object", + "properties": { + "databaseName": { + "type": "string", + "description": "The Sql database name installed on the machine" + }, + "serverName": { + "type": "string", + "description": "The Sql server name installed on the machine" + }, + "source": { + "type": "string", + "enum": [ + "OnPremiseSql" + ] + } + }, + "required": [ + "databaseName", + "serverName", + "source" + ], + "description": "Details of the On Premise Sql resource that was assessed" + }, + "ResourceDetails": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/AzureResourceDetails" + }, + { + "$ref": "#/definitions/OnPremiseResourceDetails" + } + ], + "properties": {}, + "description": "Details of the resource that was assessed" + }, + "ScopeElement": { + "type": "object", + "properties": { + "additionalProperties": { + "oneOf": [ + { + "type": "object", + "additionalProperties": { + "type": "object", + "properties": {} + }, + "properties": {} + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Unmatched properties from the message are deserialized this collection" + }, + "field": { + "type": "string", + "description": "The alert entity type to suppress by." + } + }, + "description": "A more specific scope used to identify the alerts to suppress." + }, + "SecurityAssessmentMetadataProperties": { + "type": "object", + "properties": { + "assessmentType": { + "oneOf": [ + { + "type": "string", + "enum": [ + "BuiltIn", + "CustomPolicy", + "CustomerManaged" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition." + }, + "category": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string", + "enum": [ + "Compute", + "Networking", + "Data", + "IdentityAndAccess", + "IoT" + ] + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "description": { + "type": "string", + "description": "Human readable description of the assessment" + }, + "displayName": { + "type": "string", + "description": "User friendly display name of the assessment" + }, + "implementationEffort": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Moderate", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The implementation effort required to remediate this assessment." + }, + "preview": { + "oneOf": [ + { + "type": "boolean" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "True if this assessment is in preview release status" + }, + "remediationDescription": { + "type": "string", + "description": "Human readable description of what you should do to mitigate this security issue" + }, + "severity": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Medium", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The severity level of the assessment." + }, + "threats": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string", + "enum": [ + "accountBreach", + "dataExfiltration", + "dataSpillage", + "maliciousInsider", + "elevationOfPrivilege", + "threatResistance", + "missingCoverage", + "denialOfService" + ] + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "userImpact": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Moderate", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The user impact of the assessment." + } + }, + "required": [ + "assessmentType", + "displayName", + "severity" + ], + "description": "Describes properties of an assessment metadata." + }, + "SecurityAssessmentProperties": { + "type": "object", + "properties": { + "additionalData": { + "oneOf": [ + { + "type": "object", + "additionalProperties": { + "type": "string" + }, + "properties": {} + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Additional data regarding the assessment" + }, + "links": { + "oneOf": [ + { + "$ref": "#/definitions/AssessmentLinks" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Links relevant to the assessment" + }, + "resourceDetails": { + "oneOf": [ + { + "$ref": "#/definitions/ResourceDetails" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Details of the resource that was assessed" + }, + "status": { + "oneOf": [ + { + "$ref": "#/definitions/AssessmentStatus" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The result of the assessment" + } + }, + "required": [ + "resourceDetails", + "status" + ], + "description": "Describes properties of an assessment." + }, + "SuppressionAlertsScope": { + "type": "object", + "properties": { + "allOf": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/ScopeElement" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "All the conditions inside need to be true in order to suppress the alert" + } + }, + "required": [ + "allOf" + ] + } + } +} \ No newline at end of file diff --git a/schemas/2019-01-01/Microsoft.Security.json b/schemas/2019-01-01/Microsoft.Security.json new file mode 100644 index 0000000000..f7aac05951 --- /dev/null +++ b/schemas/2019-01-01/Microsoft.Security.json @@ -0,0 +1,100 @@ +{ + "id": "https://schema.management.azure.com/schemas/2019-01-01/Microsoft.Security.json#", + "$schema": "http://json-schema.org/draft-04/schema#", + "title": "Microsoft.Security", + "description": "Microsoft Security Resource Types", + "resourceDefinitions": {}, + "subscription_resourceDefinitions": { + "settings": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/DataExportSettings" + } + ], + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2019-01-01" + ] + }, + "name": { + "oneOf": [ + { + "type": "string", + "enum": [ + "MCAS", + "WDATP" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Name of setting: (MCAS/WDATP)." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/settings" + ] + } + }, + "required": [ + "apiVersion", + "name", + "type" + ], + "description": "Microsoft.Security/settings" + } + }, + "definitions": { + "DataExportSettingProperties": { + "type": "object", + "properties": { + "enabled": { + "oneOf": [ + { + "type": "boolean" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Is the data export setting is enabled" + } + }, + "required": [ + "enabled" + ], + "description": "The data export setting properties" + }, + "DataExportSettings": { + "type": "object", + "properties": { + "kind": { + "type": "string", + "enum": [ + "DataExportSettings" + ] + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/DataExportSettingProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The data export setting properties" + } + }, + "required": [ + "kind" + ], + "description": "Represents a data export setting" + } + } +} \ No newline at end of file diff --git a/schemas/2020-01-01-preview/Microsoft.Security.json b/schemas/2020-01-01-preview/Microsoft.Security.json new file mode 100644 index 0000000000..eaf5870350 --- /dev/null +++ b/schemas/2020-01-01-preview/Microsoft.Security.json @@ -0,0 +1,296 @@ +{ + "id": "https://schema.management.azure.com/schemas/2020-01-01-preview/Microsoft.Security.json#", + "$schema": "http://json-schema.org/draft-04/schema#", + "title": "Microsoft.Security", + "description": "Microsoft Security Resource Types", + "resourceDefinitions": {}, + "subscription_resourceDefinitions": { + "connectors": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01-preview" + ] + }, + "name": { + "type": "string", + "description": "Name of the cloud account connector" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/ConnectorSettingProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an connector setting" + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/connectors" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/connectors" + } + }, + "definitions": { + "AuthenticationDetailsProperties": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/AwsCredsAuthenticationDetailsProperties" + }, + { + "$ref": "#/definitions/AwAssumeRoleAuthenticationDetailsProperties" + }, + { + "$ref": "#/definitions/GcpCredentialsDetailsProperties" + } + ], + "properties": {}, + "description": "Settings for cloud authentication management" + }, + "AwAssumeRoleAuthenticationDetailsProperties": { + "type": "object", + "properties": { + "authenticationType": { + "type": "string", + "enum": [ + "awsAssumeRole" + ] + }, + "awsAssumeRoleArn": { + "type": "string", + "description": "Assumed role ID is an identifier that you can use to create temporary security credentials." + }, + "awsExternalId": { + "type": "string", + "description": "A unique identifier that is required when you assume a role in another account." + } + }, + "required": [ + "authenticationType", + "awsAssumeRoleArn", + "awsExternalId" + ], + "description": "AWS cloud account connector based assume role, the role enables delegating access to your AWS resources. The role is composed of role arn and external id, for more details, refer to Creating a Role to Delegate Permissions to an IAM User (write only)" + }, + "AwsCredsAuthenticationDetailsProperties": { + "type": "object", + "properties": { + "authenticationType": { + "type": "string", + "enum": [ + "awsCreds" + ] + }, + "awsAccessKeyId": { + "type": "string", + "description": "Public key element of the AWS credential object (write only)" + }, + "awsSecretAccessKey": { + "type": "string", + "description": "Secret key element of the AWS credential object (write only)" + } + }, + "required": [ + "authenticationType", + "awsAccessKeyId", + "awsSecretAccessKey" + ], + "description": "AWS cloud account connector based credentials, the credentials is composed of access key id and secret key, for more details, refer to Creating an IAM User in Your AWS Account (write only)" + }, + "ConnectorSettingProperties": { + "type": "object", + "properties": { + "authenticationDetails": { + "oneOf": [ + { + "$ref": "#/definitions/AuthenticationDetailsProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Settings for cloud authentication management" + }, + "hybridComputeSettings": { + "oneOf": [ + { + "$ref": "#/definitions/HybridComputeSettingsProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Settings for hybrid compute management" + } + }, + "description": "Describes properties of an connector setting" + }, + "GcpCredentialsDetailsProperties": { + "type": "object", + "properties": { + "authenticationType": { + "type": "string", + "enum": [ + "gcpCredentials" + ] + }, + "authProviderX509CertUrl": { + "type": "string", + "description": "Auth provider x509 certificate url field of the API key (write only)" + }, + "authUri": { + "type": "string", + "description": "Auth Uri field of the API key (write only)" + }, + "clientEmail": { + "type": "string", + "description": "Client email field of the API key (write only)" + }, + "clientId": { + "type": "string", + "description": "Client Id field of the API key (write only)" + }, + "clientX509CertUrl": { + "type": "string", + "description": "Client x509 certificate url field of the API key (write only)" + }, + "organizationId": { + "type": "string", + "description": "The Organization ID of the GCP cloud account" + }, + "privateKey": { + "type": "string", + "description": "Private key field of the API key (write only)" + }, + "privateKeyId": { + "type": "string", + "description": "Private key Id field of the API key (write only)" + }, + "projectId": { + "type": "string", + "description": "Project Id field of the API key (write only)" + }, + "tokenUri": { + "type": "string", + "description": "Token Uri field of the API key (write only)" + }, + "type": { + "type": "string", + "description": "Type field of the API key (write only)" + } + }, + "required": [ + "authenticationType", + "authProviderX509CertUrl", + "authUri", + "clientEmail", + "clientId", + "clientX509CertUrl", + "organizationId", + "privateKey", + "privateKeyId", + "projectId", + "tokenUri", + "type" + ], + "description": "GCP cloud account connector based service to service credentials, the credentials is composed of organization id and json api key (write only)" + }, + "HybridComputeSettingsProperties": { + "type": "object", + "properties": { + "autoProvision": { + "oneOf": [ + { + "type": "string", + "enum": [ + "On", + "Off" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Whether or not to automatically install Azure Arc (hybrid compute) agents on machines." + }, + "proxyServer": { + "oneOf": [ + { + "$ref": "#/definitions/ProxyServerProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "For a non-Azure machine that is not connected directly to the internet, specify a proxy server that the non-Azure machine can use." + }, + "region": { + "type": "string", + "description": "The location where the meta data of machines will be stored" + }, + "resourceGroupName": { + "type": "string", + "description": "The name of the resource group where Arc (Hybrid Compute) connectors are connected." + }, + "servicePrincipal": { + "oneOf": [ + { + "$ref": "#/definitions/ServicePrincipalProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Details of the service principal." + } + }, + "required": [ + "autoProvision" + ], + "description": "Settings for hybrid compute management" + }, + "ProxyServerProperties": { + "type": "object", + "properties": { + "ip": { + "type": "string", + "description": "Proxy server IP" + }, + "port": { + "type": "string", + "description": "Proxy server port" + } + }, + "description": "For a non-Azure machine that is not connected directly to the internet, specify a proxy server that the non-Azure machine can use." + }, + "ServicePrincipalProperties": { + "type": "object", + "properties": { + "applicationId": { + "type": "string", + "description": "Application id of service principal." + }, + "secret": { + "type": "string", + "description": "A secret string that the application uses to prove its identity, also can be referred to as application password (write only)." + } + }, + "description": "Details of the service principal." + } + } +} \ No newline at end of file diff --git a/schemas/2020-01-01/Microsoft.Security.json b/schemas/2020-01-01/Microsoft.Security.json new file mode 100644 index 0000000000..116df6202b --- /dev/null +++ b/schemas/2020-01-01/Microsoft.Security.json @@ -0,0 +1,1239 @@ +{ + "id": "https://schema.management.azure.com/schemas/2020-01-01/Microsoft.Security.json#", + "$schema": "http://json-schema.org/draft-04/schema#", + "title": "Microsoft.Security", + "description": "Microsoft Security Resource Types", + "resourceDefinitions": { + "locations_jitNetworkAccessPolicies": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01" + ] + }, + "kind": { + "type": "string", + "description": "Kind of the resource" + }, + "name": { + "type": "string", + "description": "Name of a Just-in-Time access configuration policy." + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/JitNetworkAccessPolicyProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/locations/jitNetworkAccessPolicies" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/locations/jitNetworkAccessPolicies" + } + }, + "subscription_resourceDefinitions": { + "assessmentMetadata": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01" + ] + }, + "name": { + "type": "string", + "description": "The Assessment Key - Unique key for the assessment type" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentMetadataProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an assessment metadata." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/assessmentMetadata" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/assessmentMetadata" + }, + "locations_applicationWhitelistings": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01" + ] + }, + "name": { + "type": "string", + "description": "Name of an application control machine group" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/AdaptiveApplicationControlGroupData" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Represents a machines group and set of rules to be allowed running on a machine" + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/locations/applicationWhitelistings" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/locations/applicationWhitelistings" + } + }, + "extension_resourceDefinitions": { + "serverVulnerabilityAssessments": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01" + ] + }, + "name": { + "type": "string", + "enum": [ + "default" + ], + "description": "ServerVulnerabilityAssessment status. only a 'default' value is supported." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/serverVulnerabilityAssessments" + ] + } + }, + "required": [ + "apiVersion", + "name", + "type" + ], + "description": "Microsoft.Security/serverVulnerabilityAssessments" + } + }, + "unknown_resourceDefinitions": { + "assessments": { + "type": "object", + "properties": { + "apiVersion": { + "type": "string", + "enum": [ + "2020-01-01" + ] + }, + "name": { + "type": "string", + "description": "The Assessment Key - Unique key for the assessment type" + }, + "properties": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an assessment." + }, + "type": { + "type": "string", + "enum": [ + "Microsoft.Security/assessments" + ] + } + }, + "required": [ + "apiVersion", + "name", + "properties", + "type" + ], + "description": "Microsoft.Security/assessments" + } + }, + "definitions": { + "AdaptiveApplicationControlGroupData": { + "type": "object", + "properties": { + "enforcementMode": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Audit", + "Enforce", + "None" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "pathRecommendations": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/PathRecommendation" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "protectionMode": { + "oneOf": [ + { + "$ref": "#/definitions/ProtectionMode" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The protection mode of the collection/file types. Exe/Msi/Script are used for Windows, Executable is used for Linux." + }, + "vmRecommendations": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/VmRecommendation" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "description": "Represents a machines group and set of rules to be allowed running on a machine" + }, + "AssessmentLinks": { + "type": "object", + "properties": {}, + "description": "Links relevant to the assessment" + }, + "AssessmentStatus": { + "type": "object", + "properties": { + "cause": { + "type": "string", + "description": "Programmatic code for the cause of the assessment status" + }, + "code": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Healthy", + "Unhealthy", + "NotApplicable" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Programmatic code for the status of the assessment." + }, + "description": { + "type": "string", + "description": "Human readable description of the assessment status" + } + }, + "required": [ + "code" + ], + "description": "The result of the assessment" + }, + "AzureResourceDetails": { + "type": "object", + "properties": { + "source": { + "type": "string", + "enum": [ + "Azure" + ] + } + }, + "required": [ + "source" + ], + "description": "Details of the Azure resource that was assessed" + }, + "JitNetworkAccessPolicyProperties": { + "type": "object", + "properties": { + "requests": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/JitNetworkAccessRequest" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "virtualMachines": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/JitNetworkAccessPolicyVirtualMachine" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Configurations for Microsoft.Compute/virtualMachines resource type." + } + }, + "required": [ + "virtualMachines" + ] + }, + "JitNetworkAccessPolicyVirtualMachine": { + "type": "object", + "properties": { + "id": { + "type": "string", + "description": "Resource ID of the virtual machine that is linked to this policy" + }, + "ports": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/JitNetworkAccessPortRule" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Port configurations for the virtual machine" + }, + "publicIpAddress": { + "type": "string", + "description": "Public IP address of the Azure Firewall that is linked to this policy, if applicable" + } + }, + "required": [ + "id", + "ports" + ] + }, + "JitNetworkAccessPortRule": { + "type": "object", + "properties": { + "allowedSourceAddressPrefix": { + "type": "string", + "description": "Mutually exclusive with the \"allowedSourceAddressPrefixes\" parameter. Should be an IP address or CIDR, for example \"192.168.0.3\" or \"192.168.0.0/16\"." + }, + "allowedSourceAddressPrefixes": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Mutually exclusive with the \"allowedSourceAddressPrefix\" parameter." + }, + "maxRequestAccessDuration": { + "type": "string", + "description": "Maximum duration requests can be made for. In ISO 8601 duration format. Minimum 5 minutes, maximum 1 day" + }, + "number": { + "oneOf": [ + { + "type": "integer", + "minimum": 0, + "maximum": 65535 + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "protocol": { + "oneOf": [ + { + "type": "string", + "enum": [ + "TCP", + "UDP", + "*" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "required": [ + "maxRequestAccessDuration", + "number", + "protocol" + ] + }, + "JitNetworkAccessRequest": { + "type": "object", + "properties": { + "justification": { + "type": "string", + "description": "The justification for making the initiate request" + }, + "requestor": { + "type": "string", + "description": "The identity of the person who made the request" + }, + "startTimeUtc": { + "type": "string", + "format": "date-time", + "description": "The start time of the request in UTC" + }, + "virtualMachines": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/JitNetworkAccessRequestVirtualMachine" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "required": [ + "requestor", + "startTimeUtc", + "virtualMachines" + ] + }, + "JitNetworkAccessRequestPort": { + "type": "object", + "properties": { + "allowedSourceAddressPrefix": { + "type": "string", + "description": "Mutually exclusive with the \"allowedSourceAddressPrefixes\" parameter. Should be an IP address or CIDR, for example \"192.168.0.3\" or \"192.168.0.0/16\"." + }, + "allowedSourceAddressPrefixes": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Mutually exclusive with the \"allowedSourceAddressPrefix\" parameter." + }, + "endTimeUtc": { + "type": "string", + "format": "date-time", + "description": "The date & time at which the request ends in UTC" + }, + "mappedPort": { + "oneOf": [ + { + "type": "integer" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The port which is mapped to this port's `number` in the Azure Firewall, if applicable" + }, + "number": { + "oneOf": [ + { + "type": "integer", + "minimum": 0, + "maximum": 65535 + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "status": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Revoked", + "Initiated" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The status of the port." + }, + "statusReason": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Expired", + "UserRequested", + "NewerRequestInitiated" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "A description of why the `status` has its value." + } + }, + "required": [ + "endTimeUtc", + "number", + "status", + "statusReason" + ] + }, + "JitNetworkAccessRequestVirtualMachine": { + "type": "object", + "properties": { + "id": { + "type": "string", + "description": "Resource ID of the virtual machine that is linked to this policy" + }, + "ports": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/JitNetworkAccessRequestPort" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The ports that were opened for the virtual machine" + } + }, + "required": [ + "id", + "ports" + ] + }, + "OnPremiseResourceDetails": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/OnPremiseSqlResourceDetails" + } + ], + "properties": { + "machineName": { + "type": "string", + "description": "The name of the machine" + }, + "source": { + "type": "string", + "enum": [ + "OnPremise" + ] + }, + "sourceComputerId": { + "type": "string", + "description": "The oms agent Id installed on the machine" + }, + "vmuuid": { + "type": "string", + "description": "The unique Id of the machine" + }, + "workspaceId": { + "type": "string", + "description": "Azure resource Id of the workspace the machine is attached to" + } + }, + "required": [ + "machineName", + "source", + "sourceComputerId", + "vmuuid", + "workspaceId" + ], + "description": "Details of the On Premise resource that was assessed" + }, + "OnPremiseSqlResourceDetails": { + "type": "object", + "properties": { + "databaseName": { + "type": "string", + "description": "The Sql database name installed on the machine" + }, + "serverName": { + "type": "string", + "description": "The Sql server name installed on the machine" + }, + "source": { + "type": "string", + "enum": [ + "OnPremiseSql" + ] + } + }, + "required": [ + "databaseName", + "serverName", + "source" + ], + "description": "Details of the On Premise Sql resource that was assessed" + }, + "PathRecommendation": { + "type": "object", + "properties": { + "action": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Recommended", + "Add", + "Remove" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "common": { + "oneOf": [ + { + "type": "boolean" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Whether the application is commonly run on the machine" + }, + "configurationStatus": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Configured", + "NotConfigured", + "InProgress", + "Failed", + "NoStatus" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "fileType": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Exe", + "Dll", + "Msi", + "Script", + "Executable", + "Unknown" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "path": { + "type": "string", + "description": "The full path of the file, or an identifier of the application" + }, + "publisherInfo": { + "oneOf": [ + { + "$ref": "#/definitions/PublisherInfo" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Represents the publisher information of a process/rule" + }, + "type": { + "oneOf": [ + { + "type": "string", + "enum": [ + "File", + "FileHash", + "PublisherSignature", + "ProductSignature", + "BinarySignature", + "VersionAndAboveSignature" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "usernames": { + "oneOf": [ + { + "type": "array", + "items": { + "$ref": "#/definitions/UserRecommendation" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "userSids": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string" + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "description": "Represents a path that is recommended to be allowed and its properties" + }, + "ProtectionMode": { + "type": "object", + "properties": { + "exe": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Audit", + "Enforce", + "None" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "executable": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Audit", + "Enforce", + "None" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "msi": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Audit", + "Enforce", + "None" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "script": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Audit", + "Enforce", + "None" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + } + }, + "description": "The protection mode of the collection/file types. Exe/Msi/Script are used for Windows, Executable is used for Linux." + }, + "PublisherInfo": { + "type": "object", + "properties": { + "binaryName": { + "type": "string", + "description": "The \"OriginalName\" field taken from the file's version resource" + }, + "productName": { + "type": "string", + "description": "The product name taken from the file's version resource" + }, + "publisherName": { + "type": "string", + "description": "The Subject field of the x.509 certificate used to sign the code, using the following fields - O = Organization, L = Locality, S = State or Province, and C = Country" + }, + "version": { + "type": "string", + "description": "The binary file version taken from the file's version resource" + } + }, + "description": "Represents the publisher information of a process/rule" + }, + "ResourceDetails": { + "type": "object", + "oneOf": [ + { + "$ref": "#/definitions/AzureResourceDetails" + }, + { + "$ref": "#/definitions/OnPremiseResourceDetails" + } + ], + "properties": {}, + "description": "Details of the resource that was assessed" + }, + "SecurityAssessmentMetadataPartnerData": { + "type": "object", + "properties": { + "partnerName": { + "type": "string", + "description": "Name of the company of the partner" + }, + "productName": { + "type": "string", + "description": "Name of the product of the partner that created the assessment" + }, + "secret": { + "type": "string", + "description": "Secret to authenticate the partner and verify it created the assessment - write only" + } + }, + "required": [ + "partnerName", + "secret" + ], + "description": "Describes the partner that created the assessment" + }, + "SecurityAssessmentMetadataProperties": { + "type": "object", + "properties": { + "assessmentType": { + "oneOf": [ + { + "type": "string", + "enum": [ + "BuiltIn", + "CustomPolicy", + "CustomerManaged", + "VerifiedPartner" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "BuiltIn if the assessment based on built-in Azure Policy definition, Custom if the assessment based on custom Azure Policy definition." + }, + "category": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string", + "enum": [ + "Compute", + "Networking", + "Data", + "IdentityAndAccess", + "IoT" + ] + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "description": { + "type": "string", + "description": "Human readable description of the assessment" + }, + "displayName": { + "type": "string", + "description": "User friendly display name of the assessment" + }, + "implementationEffort": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Moderate", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The implementation effort required to remediate this assessment." + }, + "partnerData": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentMetadataPartnerData" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes the partner that created the assessment" + }, + "preview": { + "oneOf": [ + { + "type": "boolean" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "True if this assessment is in preview release status" + }, + "remediationDescription": { + "type": "string", + "description": "Human readable description of what you should do to mitigate this security issue" + }, + "severity": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Medium", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The severity level of the assessment." + }, + "threats": { + "oneOf": [ + { + "type": "array", + "items": { + "type": "string", + "enum": [ + "accountBreach", + "dataExfiltration", + "dataSpillage", + "maliciousInsider", + "elevationOfPrivilege", + "threatResistance", + "missingCoverage", + "denialOfService" + ] + } + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "userImpact": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Low", + "Moderate", + "High" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The user impact of the assessment." + } + }, + "required": [ + "assessmentType", + "displayName", + "severity" + ], + "description": "Describes properties of an assessment metadata." + }, + "SecurityAssessmentPartnerData": { + "type": "object", + "properties": { + "partnerName": { + "type": "string", + "description": "Name of the company of the partner" + }, + "secret": { + "type": "string", + "description": "secret to authenticate the partner - write only" + } + }, + "required": [ + "partnerName", + "secret" + ], + "description": "Data regarding 3rd party partner integration" + }, + "SecurityAssessmentProperties": { + "type": "object", + "properties": { + "additionalData": { + "oneOf": [ + { + "type": "object", + "additionalProperties": { + "type": "string" + }, + "properties": {} + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Additional data regarding the assessment" + }, + "links": { + "oneOf": [ + { + "$ref": "#/definitions/AssessmentLinks" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Links relevant to the assessment" + }, + "metadata": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentMetadataProperties" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Describes properties of an assessment metadata." + }, + "partnersData": { + "oneOf": [ + { + "$ref": "#/definitions/SecurityAssessmentPartnerData" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Data regarding 3rd party partner integration" + }, + "resourceDetails": { + "oneOf": [ + { + "$ref": "#/definitions/ResourceDetails" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "Details of the resource that was assessed" + }, + "status": { + "oneOf": [ + { + "$ref": "#/definitions/AssessmentStatus" + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ], + "description": "The result of the assessment" + } + }, + "required": [ + "resourceDetails", + "status" + ], + "description": "Describes properties of an assessment." + }, + "UserRecommendation": { + "type": "object", + "properties": { + "recommendationAction": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Recommended", + "Add", + "Remove" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "username": { + "type": "string", + "description": "Represents a user that is recommended to be allowed for a certain rule" + } + }, + "description": "Represents a user that is recommended to be allowed for a certain rule" + }, + "VmRecommendation": { + "type": "object", + "properties": { + "configurationStatus": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Configured", + "NotConfigured", + "InProgress", + "Failed", + "NoStatus" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "enforcementSupport": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Supported", + "NotSupported", + "Unknown" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "recommendationAction": { + "oneOf": [ + { + "type": "string", + "enum": [ + "Recommended", + "Add", + "Remove" + ] + }, + { + "$ref": "https://schema.management.azure.com/schemas/common/definitions.json#/definitions/expression" + } + ] + }, + "resourceId": { + "type": "string", + "description": "The full resource id of the machine" + } + }, + "description": "Represents a machine that is part of a machine group" + } + } +} \ No newline at end of file diff --git a/schemas/common/autogeneratedResources.json b/schemas/common/autogeneratedResources.json index 0251c4c399..1ec9a41cf9 100644 --- a/schemas/common/autogeneratedResources.json +++ b/schemas/common/autogeneratedResources.json @@ -3943,6 +3943,9 @@ { "$ref": "https://schema.management.azure.com/schemas/2020-03-13/Microsoft.Search.json#/resourceDefinitions/searchServices_sharedPrivateLinkResources" }, + { + "$ref": "https://schema.management.azure.com/schemas/2020-01-01/Microsoft.Security.json#/resourceDefinitions/locations_jitNetworkAccessPolicies" + }, { "$ref": "https://schema.management.azure.com/schemas/2015-08-01/Microsoft.ServiceBus.json#/resourceDefinitions/namespaces" },