Quickstart: Onboard Defender for IoT to an agent-based solution

This article explains how to enable the Defender for IoT service on your existing IoT Hub. If you don't currently have an IoT Hub, see Create an IoT hub using the Azure portal to get started.

You can manage your IoT security through the IoT Hub in Defender for IoT. The management portal located in the IoT Hub allows you to do the following:

• Manage IoT Hub security.

• Basic management of an IoT device's security without installing an agent based on the IoT Hub telemetry.

• Advanced management for the security of an IoT device based on the micro agent.

Prerequisites

None

Onboard Defender for IoT to an IoT Hub

For all new IoT hubs, Defender for IoT is set to On by default. You can verify that Defender for IoT is toggled to On during the IoT Hub creation process.

To verify the toggle is set to On:

1. Navigate to the Azure portal.

2. Select IoT Hub from the list of Azure services.

3. Select Create.

   

4. Select the Management tab, and verify that Defender for IoT toggle is set to On.

   

Onboard Defender for IoT to an existing IoT Hub

You can onboard Defender for IoT to an existing IoT Hub, where you can then monitor the device identity management, device to cloud, and cloud to device communication patterns.

To onboard Defender for IoT to an existing IoT Hub:

1. Navigate to the IoT Hub.

2. Select the IoT Hub to be onboarded.

3. Select any option under the Security section.

4. Click Secure your IoT solution and complete the onboarding form.

   

The Secure your IoT solution button will only appear if the IoT Hub has not already been onboarded, or if while onboarding you left the Defender for IoT toggle on Off.

Next steps

Advance to the next article to configure your solution...