1,212 questions with Microsoft Defender for Cloud-related tags
Transition to Microsoft Defender Vulnerability Management - java sdk, SecuritySubAssessmentInner AdditionalData problem
Hi, We want to migrate from https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-vulnerability-assessment-azure to https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-vulnerability-assessment-azure which is…
How can I manage the updates of third-party applications on the employer's device?
I'm looking for a solution with minimum administrator effort for keeping up to date on all employer's devices. In the organization, I have about 50 devices that they onboarded to Defender for Cloud's portal. All devices showing on Microsoft Defender…
Defender for Endpoint onboard Google Cloud and AWS machines
Hello Can servers hosted in other platforms like Google cloud and AWS be onboarded to defender for endpoint without using Azure arc? Thanks
Inquiry Regarding Exception Handling for Defender for Cloud and Third-Party EDR Conflict
Hello, Our organization is striving to adhere to the Microsoft Defender for Cloud recommended practice of 'EDR solution should be installed on Virtual Machines.' However, we are encountering difficulties as the button for exception handling is not…
Defender for Server Policies
Hello For servers that are onboarded to Defender for Cloud and have the server plan activated, are the AV policies controlled from the Endpoint security policies? Can Servers have endpoint security policies pushed to them, even if they are not onboarded…
Add cloud defender to workspace
I am trying to add MS Cloud Defender to the workspace but it fails and I do not know the reason
2 orphan resources pop up in Defender Inventory. How to remove?
This are the two resources I can not remove. The resource-groups do not exist: default-oms-westeurope,…
unable to remove MDE for server 2012
I installed MDE for our Windows 2012 R2 server using the installation package from the security center portal. Now, I would like to remove it, but it's been failing. I first used the offboarding package to offboarding the device…
how to get azure vulnerability assessment reports
Hello friends, Could you please let me know how to get azure vulnerability assessment reports? Thank you in advanced
differences between 2 trusted IP ranges in Azure
There are multiple places in Azure one can define trusted IP ranges. Two of them are: Security Portal\settings\cloud apps\IP address rages Entra portal \ security \ named locations What are differences between these 2 lists? Which one is used as…
WHEN was device onboarded to defender?
Hello I am attempting to see WHEN our devices were onboarded to defender, like a date and time. I can see there is a "First Seen" but that refers to a "when the device was first seen in the network or when it's first reported by the…
Get the configuration of Microsoft Defender Plans Cloud Workload Protection using Automation Account Runbook PowerShell
I am trying to get the configuration of the Microsoft Defender for Cloud in all of our subscriptions. Specifically, I want to get the Cloud Workload Protection Details. All I am able to get are the pricing details of the plans and not specific details…
query to associate the department with an MDC recommendation
How can I update the following query to associate the department with each MDC recommendation? securityresources | where type == "microsoft.security/assessments" | extend source = trim(' ',…
What is difference between Standard edition and Microsoft defender for server Plan 1 and plan 2.
HI Team, I would like to know what is the difference between Standard edition and Microsoft defender for server Plan 1 and plan 2. Assume that somebody upgraded Microsoft Defender for the cloud from the Free tier to the Standard tier. Do we still need…
assign permissions for Azure workloads
I am reading the article at https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/assigning-permissions-in-microsoft-defender-for-cloud/ba-p/1694069 It is indicated that once we re in IAM in the subscription, we should get 2 built-in roles…
Azure Defender Secure Score and Recommendation Visibility
Just want to check if visibility of Azure Defender Secure Score and Security Recommendations for a subscription is dependent on Defender for cloud plan? And if plan is expired do we get Secure Score as "Not Available". As I definitely …
Why is the threat removal process taking hours?
A few days ago Windows Defender detected a virus. I put on actions to remove it and it was taking quite some time. It took an entire day of my laptop being turned on and still, it won't go. Well after I shut down the laptop and turned it on, it said that…
What permissions do I need to manage alerts in defender
What permissions do I need to manage alerts in defender?
I want to use Microsoft Defender for Endpoint, but I only want to activate the DLP feature and turn off the other modules. Can I do that?
I want to use Microsoft Defender for Endpoint, but I only want to activate the DLP feature and turn off the other modules. Can I do that?
Microsoft Defender Endpoints - When creating or editing a device group I can only select 'No automated response' in the dropdown of 'Remediation Level'
Basically as the title says. In the create or edit device group menu, my only option is to select 'No Automated Response' in the dropdown of Remediation Level. I've read that automated response should be active by default and you cannot turn it off. My…