All courses
Hamburger Icon
  • Labs icon Lab
  • Cloud
Azure icon
Labs

Monitor and Secure Arc-enabled Servers

Azure Arc enables cloud-native monitoring and security capabilities for hybrid and multi-cloud servers. In this hands-on lab, you'll work with existing Arc-enabled servers to enable these monitoring and security features provided by Azure Arc.

Get started Contact sales
Azure icon
Labs

Path Info

Level
Clock icon Intermediate
Duration
Clock icon 1h 0m
Published
Clock icon Feb 18, 2025

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Configure VM Insights for Arc-enabled Servers Individually and at-scale

    Configure VM Insights for Arc-enabled Servers Individually

    1. Configure VM Insights for Arc-WinVM using the Azure portal, create a new data collection rule named Insights, and use the existing Log Analytics workspace named law-default.

    Configure VM Insights for Arc-enabled Servers at-scale

    1. Configure VM Insights for Arc-enabled Linux Servers at scale using Azure Policy, the built-in Policy definition named Configure Linux Arc Machines to be associated with a Data Collection Rule or a Data Collection Endpoint can be used.
      • Scope the policy assigment to the Resource Group.
      • Use the data collection rule you created in the previous step.
      • Use the existing managed identity named id-policyremediation for policy remediation.

    Important: Ensure Policy remediation is performed using the existing managed identity named id-policyremediation. This user assigned Managed identity has the approprate role-based access control assignements to perform policy remedation.

  2. Challenge

    Remediate Non-compliant Resources

    1. Remediate any non-compliant Policy assignments using Remediation tasks.

    Note: Change the Scope of the remediation tasks blade to the Resource Group to remove the Access is denied to the requested resource... when the remediation tasks list is scoped to the subscription. You have access to the resource group in this lab, not the entire subscription.

  3. Challenge

    Review Performance Data

    1. Review the performance data for Arc-WinVM using VM Insights.

  4. Challenge

    Enable Microsoft Sentinel

    1. Enable Microsoft Sentinel on the existing Log Analytics Workspace law-default.

  5. Challenge

    Install Sentinel Solutions

    1. Install the Endpoint Threat Protection Essentials solution.

  6. Challenge

    Configure Data Connectors

    1. Configure the Windows Security Events via AMA data connector to collect security events from Arc-WinVM.

  7. Challenge

    Configure Analytics Rules

    1. Create an Analytics Rule based on the template named NRT Security Event log cleared, using the following properties:
      • Group related alerts, triggered by this analytics rule, into incidents: Enabled

  8. Challenge

    Simulate Security Events

    1. Connect to WinVM and run the command Clear-EventLog -LogName Security within Windows PowerShell (Admin) to generate a security event.
    2. Review security incidents in Microsoft Sentinel.

    Note: Wait up to 15 minutes for incidents to be created.

Pluralsight - Labs - Monitor and Secure Arc-enabled Servers
Author
Pluralsight

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.
Ready to get started?
View individual plans View team plans