Cross-tenant management in Security Center

Cross-tenant management enables you to view and manage the security posture of multiple tenants in Security Center by leveraging Azure delegated resource management . Manage multiple tenants efficiently, from a single view, without having to sign in to each tenant's directory.

  • Service providers can manage the security posture of resources, for multiple customers, from within their own tenant.

  • Security teams of organizations with multiple tenants can view and manage their security posture from a single location.

Set up cross-tenant management

Set up cross-tenant management by delegating access to resources of managed tenants to your own tenant using Azure delegated resource management.

Note

Azure delegated resource management is one of the key components of Azure Lighthouse.

How does cross-tenant management work in Security Center

You are able to review and manage subscriptions across multiple tenants in the same way that you manage multiple subscriptions in a single tenant.

From the top menu bar, click the filter icon, and select the subscriptions, from each tenant's directory, you'd like to view.

Filter tenants

The views and actions are basically the same. Here are some examples:

  • Manage security policies: From one view, manage the security posture of many resources with policies, take actions with security recommendations, and collect and manage security-related data.

  • Improve secure score and compliance posture: Cross-tenant visibility enables you to view the overall security posture of all your tenants and where and how to best improve the secure score and compliance posture for each of them.

  • Remediate recommendations: Monitor and remediate a recommendation for many resources from various tenants at one time. You can then immediately tackle the vulnerabilities that present the highest risk across all tenants.

  • Manage Alerts: Detect alerts throughout the different tenants. Take action on resources that are out of compliance with actionable remediation steps.

  • Manage advanced cloud defense features and more: Manage the various threat detection and protection services, such as just-in-time (JIT) VM access, Adaptive Network Hardening, adaptive application controls, and more.

Next steps

This article explains how cross-tenant management works in Security Center. To learn more about Security Center, see the following: