Request Types

When writing your own checks for Azure, you can list the aggregate JSON document by using a request type without json_transform, regex or expect fields.

The following lists currently supported action types and their API endpoints.

For more information, see the Azure REST API Reference.

User/role

listUsers - uri: 'https://graph.microsoft.com/v1.0/users');
listRoleAssignments - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Authorization/roleassignments?api-version=2017-10-01-preview
listRoleDefinitions - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Authorization/roleDefinitions?api-version=2017-05-01
listSQLServerAdmins - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/administrators?api-version=2014-04-01

General

listSubscriptions - uri: 'https://management.azure.com/subscriptions?api-version=2015-01-01
listResourceGroups - uri: 'https://management.azure.com/subscriptions/{subscription}/resourcegroups?api-version=2015-01-01

SQL Servers/DBs

listSQLServers - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Sql/servers?api-version=2015-05-01-preview
listSQLServersByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers?api-version=2015-05-01-preview
listMYSQLServersByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.DBforMySQL/servers?api-version=2017-12-01
listPostgreSQLServersByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.DBforPostgreSQL/servers?api-version=2017-12-01
listPostgreSQLServerConfigurations - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.DBforPostgreSQL/servers/{pgservers}/configurations?api-version=2017-12-01
listSQLServerDatabases - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/databases?api-version=2017-10-01-preview
listSQLServerFirewallRules - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/firewallrules?api-version=2014-04-01
getSQLDBAuditingPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/databases/{sqldb}/auditingPolicies/Default?api-version=2014-04-01
getSQLDBBlobAuditingPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/databases/{sqldb}/auditingSettings/default?api-version=2017-03-01-preview
getSQLServerBlobAuditingPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/auditingSettings/default?api-version=2017-03-01-preview
getSQLServerAuditingPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/auditingSettings/default?api-version=2017-03-01-preview
getSQLServerSecurityAlertPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/securityAlertPolicies/default?api-version=2017-03-01-preview
getSQLDBSecurityAlertPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/databases/{sqldb}/securityAlertPolicies/default?api-version=2014-01-01
getSQLDBTransparentDataEncryptions - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/databases/{sqldb}/transparentDataEncryption/current?api-version=2014-04-01
getSQLServerEncryptionProtector - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Sql/servers/{sqlservers}/encryptionProtector?api-version=2015-05-01-preview

Storage Services

listStorageAccounts - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/microsoft.storage/storageAccounts?api-version=2018-02-01
listDisksByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Compute/disks?api-version=2018-06-01
listDisksBySubscription - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Compute/disks?api-version=2017-03-30

Websites

listWebSitesByGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Web/sites?api-version=2016-08-01

VMs

listVMs - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Compute/virtualMachines?api-version=2017-12-01
listVMExtensions - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Compute/virtualMachines/{vmname}/extensions?api-version=2017-12-01
listVMInstanceView - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Compute/virtualMachines/{vmname}/instanceView?api-version=2017-12-01

Network

listNetworkSecurityGroups - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Network/networkSecurityGroups?api-version=2018-02-01
listNetworkWatcher - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Network/networkWatchers?api-version=2018-02-01

Vaults/Policies

listVaultDiagnosticSetting - uri: 'https://management.azure.com{vaultResourceID}/providers/microsoft.insights/diagnosticSettings?api-version=2017-05-01-preview
listVaultsByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.KeyVault/vaults?api-version=2016-10-01
listSecurityPolicies - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/microsoft.Security/policies?api-version=2015-06-01-preview
listLogProfiles - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/microsoft.insights/logprofiles?api-version=2016-03-01
listActivityLogAlert - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/microsoft.insights/activityLogAlerts?api-version=2017-04-01
listManagementLocksByResourceGroup - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Authorization/locks?api-version=2016-09-01
listAutoProvisioningSettings - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Security/autoProvisioningSettings/default?api-version=2017-08-01-preview
listSecurityCenterBuiltIns - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Authorization/policyAssignments/SecurityCenterBuiltIn?api-version=2018-05-01
listSecurityContacts - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Security/securityContacts?api-version=2017-08-01-preview

Kubernetes/Web Apps

listAksManagedClusters - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.ContainerService/managedClusters?api-version=2019-02-01
listWebApps - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Web/sites?api-version=2016-08-01
listAppServiceEnvironment - uri: 'https://management.azure.com/subscriptions/{subscription}/providers/Microsoft.Web/hostingEnvironments?api-version=2016-09-01
listAppConfig - uri: 'https://management.azure.com/subscriptions/{subscription}/resourceGroups/{group}/providers/Microsoft.Web/sites/{webapps}/config?api-version=2016-08-01