Azure-VirtualMachines-Scale-Sets-Health-Monitoring-Enabled

Severity : Medium

Description: This control ensures that health monitoring feature is enabled for all the instances running within your Azure virtual machine scale set. Application Health extension is deployed inside a virtual machine scale set instance and reports on VM health from inside the scale set instance. Monitoring application health is an important signal for managing and upgrading deployment. Azure virtual machine scale sets provide support for rolling upgrades which rely on health monitoring of the individual instances to upgrade deployment.

Remediation Steps:

Perform following to configure health monitoring on VMs in Scale Set :

1. Login to Azure Portal using https://portal.azure.com.

2. Navigate to All resources.

3. Select the Subscription for resources.

4. Filter Virtual machine scale set to list VM scale set.

5. Select the name of scale set from the list.

6. Under Settings, Select Health and repair.

7. On the Health and repair page , configure following

   1. Select Enabled, Under Monitor application health.

   2. Select Application Health extension, Under Monitor application health.

   3. Select the protocol options HTTPS, from Protocol.

   4. Under Port number, enter network port for application health monitor

   5. Under Path, enter application endpoint path.

   6. In the Automatic repair policy, select automatic repair if require.

   7. Select Save.

Important:

Reference:

• https://docs.microsoft.com/en-us/azure/virtual-machine-scale-sets/virtual-machine-scale-sets-health-extension