Triage and Remediation
Remediation
Using Console
Using Console
The issue of “Approved Azure Machine Image In Use” occurs when an Azure virtual machine is using an image that is not approved by the organization’s policies. To remediate this issue, follow the steps below:
- Log in to the Azure portal (https://portal.azure.com/).
- Go to the virtual machine that is using the unapproved image.
- Stop the virtual machine.
- Go to the “Disks” section of the virtual machine.
- Select the OS disk of the virtual machine.
- Click on the “Create snapshot” button to create a snapshot of the OS disk.
- Go to the “Images” section of the Azure portal.
- Click on the “Add” button to create a new image.
- Fill in the necessary details for the new image, including the name, description, and the snapshot that was created in step 6.
- Click on the “Create” button to create the new image.
- Once the image is created, go back to the virtual machine that was using the unapproved image.
- Go to the “Configuration” section of the virtual machine.
- Change the “Image” setting to the new image that was created in step 10.
- Start the virtual machine.
Using CLI
Using CLI
To remediate the “Approved Azure Machine Image In Use” misconfiguration in Azure using Azure CLI, you can follow these steps:
-
Identify the virtual machine(s) that are using the unapproved image. You can use the following Azure CLI command to list all the virtual machines in your subscription:
This command will list all the virtual machines in your subscription along with their image references.
- Check if any of the virtual machines are using the unapproved image. If you find any, note down their names.
-
Create a new virtual machine using an approved image. You can use the following Azure CLI command to create a new virtual machine:
Replace the
<resource-group-name>with the name of the resource group where you want to create the new virtual machine. Replace<new-vm-name>with the name you want to give to the new virtual machine. Replace<approved-image-name>with the name of the approved image that you want to use. Replace<admin-username>and<admin-password>with the username and password that you want to use to access the new virtual machine. Replace<vm-size>with the size of the virtual machine that you want to create. Replace<location>with the location where you want to create the new virtual machine. - Once the new virtual machine is created, you can migrate the data and applications from the old virtual machine to the new one.
-
Once you have migrated all the data and applications, you can stop and delete the old virtual machine. You can use the following Azure CLI commands to stop and delete the old virtual machine:
Replace
<resource-group-name>with the name of the resource group where the old virtual machine is located. Replace<old-vm-name>with the name of the old virtual machine that you want to delete. - Verify that the new virtual machine is working as expected.
Using Python
Using Python
To remediate the misconfiguration “Approved Azure Machine Image In Use” in Azure using Python, you can follow the below steps:In this example, we are checking if the virtual machine is using the Windows Server 2016 Datacenter image from Microsoft. You can replace this with the approved image reference for your organization.In this example, we are updating the virtual machine to use the latest version of the Ubuntu Server 18.04 LTS image from Canonical. You can replace this with the approved image reference for your organization.Note: You need to have appropriate permissions to update the virtual machine.
- First, you need to identify the virtual machines that are using the unapproved images. You can use the Azure Python SDK to get a list of all virtual machines in your subscription.
- Next, you need to check the image used by each virtual machine. You can use the
osProfileproperty of the virtual machine to get the image reference.
- Finally, you need to update the virtual machine to use the approved image. You can use the
begin_updatemethod of the virtual machine to update the image reference.