Security Center supports virtual machines / servers on different types of hybrid environments:
- Only Azure
- Azure and on-premises
- Azure and other clouds
- Azure, other clouds, and on-premises
For an Azure environment activated on an Azure subscription, Azure Security Center will automatically discover IaaS resources that are deployed within the subscription.
To receive the full set of security features, you must have the Log Analytics Agent, which is used by Azure Security Center, installed and properly configured to send data to Azure Security Center.
The following sections list the supported server operating systems on which the Log Analytics Agent, which is used by Azure Security Center, can run.
- Windows Server 2019
- Windows Server 2016
- Windows Server 2012 R2
- Windows Server 2012
- Windows Server 2008 R2
- Windows Server 2008
Integration with Microsoft Defender ATP supports only Windows Server 2012 R2 and Windows Server 2016.
To learn more about the supported features for the Windows operating systems, listed above, see Virtual machine / server supported features.
- CentOS 6 and 7
- Amazon Linux 2017.09
- Oracle Linux 6 and 7
- Red Hat Enterprise Linux Server 6 and 7
- Debian GNU/Linux 8 and 9
- Ubuntu Linux 14.04 LTS, 16.04 LTS, and 18.04 LTS
- SUSE Linux Enterprise Server 12
- CentOS 6
- Oracle Linux 6
- Red Hat Enterprise Linux Server 6
- Debian GNU/Linux 8 and 9
- Ubuntu Linux 14.04 LTS, and 16.04 LTS
Since the list of supported Linux operating systems is constantly changing, if you prefer, click here to view the most up-to-date list of supported versions, in case there have been changes since this topic was last published.
To learn more about the supported features for the Linux operating systems, listed above, see Virtual machine / server supported features.
Virtual machines are also created in a customer subscription as part of some Azure managed services as well, such as Azure Kubernetes (AKS), Azure Databricks, and more. These virtual machines are also discovered by Azure Security Center, and the Log analytics agent can be installed and configured according the supported Windows/Linux operating systems, listed above.
Virtual machines that run in a cloud service are also supported. Only cloud services web and worker roles that run in production slots are monitored. To learn more about cloud services, see Overview of Azure Cloud Services.
The following Azure PaaS resources are supported by Azure Security Center:
- Storage account
- App service
- Cloud Service
- Batch account
- Service fabric account
- Automation account
- Load balancer
- Service bus namespace
- Stream analytics
- Event hub namespace
- Logic apps
- Data Lake Analytics
- Data Lake Store
- Key vault
To learn more about the supported features for the above list of PaaS resources, see PaaS services supported features.
- Learn how Security Center collects data and the Log Analytics Agent.
- Learn how Security Center manages and safeguards data.
- Learn how to plan and understand the design considerations to adopt Azure Security Center.
- Learn about features available for the different cloud environments.
- Learn more about threat detection for VMs & servers in Azure Security Center.
- Find frequently asked questions about using Azure Security Center.
- Find blog posts about Azure security and compliance.