Azure Update Manager
An Azure service to centrally manages updates and compliance at scale.
357 questions
Microsoft.Maintenance/maintenanceConfigurations/visibility
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 41%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
LVB
0
Reputation points
Hello,
I'm involved on setting up Microsoft Update Manager in an Enterprise Azure Landing Zone.
I would like to understand the difference between setting the visibility setting in the maintenance Windows for Azure Update Manager from Public to Custom. (Microsoft.Maintenance/maintenanceConfigurations/visibility).
When using the Azure Console, this setting seems to be always set to "Public". I've been told by Microsoft Architects that using Public means that "everyone in the world can see it".
I would like to confirm that this is like this, and in case it's like this, why is this setting used in the UI by default with no option to change unless IaC is used.
My feeling is that in any case, this should be public maybe only the subscription where is setup or in the worst case scenario in the tenant where the subscription belongs to. If this is really published to anyone in the world this would be a major security issue.
Can anyone confirm this?
Thanks in advance
Sign in to answer