Security recommendations in Azure Security Center

This topic explains how to view and understand the recommendations in Azure Security Center to help you protect your Azure resources.


This document introduces the service by using an example deployment. This document is not a step-by-step guide.

What are security recommendations?

Recommendations are actions for you to take in order to secure your resources.

Security Center periodically analyzing the security state of your Azure resources to identify potential security vulnerabilities. It then provides you with recommendations on how to remove them.

Each recommendation provides you with:

  • A short description of what is being recommended.
  • The remediation steps to carry out in order to implement the recommendation.
  • Which resources are in need of you performing the recommended action on them.
  • The Secure Score impact, which is the amount that your Secure Score will go up if you implement this recommendation.

Monitor recommendations

Security Center analyzes the security state of your resources to identify potential vulnerabilities. The Recommendations tile under Overview shows the total number of recommendations identified by Security Center.

Security center overview

  1. Select the Recommendations tile under Overview. The Recommendations list opens.

    View recommendations

    You can filter recommendations. To filter the recommendations, select Filter on the Recommendations blade. The Filter blade opens and you select the severity and state values you wish to see.

    • RECOMMENDATIONS: The recommendation.
    • SECURE SCORE IMPACT: A score generated by Security Center using your security recommendations, and applying advanced algorithms to determine how crucial each recommendation is. For more information, see Secure Score calculation.
    • RESOURCE: Lists the resources to which this recommendation applies.
    • STATUS BARS: Describes the severity of that particular recommendation:
      • High (Red): A vulnerability exists with a meaningful resource (such as an application, a VM, or a network security group) and requires attention.
      • Medium (Orange): A vulnerability exists and non-critical or additional steps are required to eliminate it or to complete a process.
      • Low (Blue): A vulnerability exists that should be addressed but does not require immediate attention. (By default, low recommendations aren't presented, but you can filter on low recommendations if you want to see them.)
      • Healthy (Green):
      • Not Available (Grey):
  2. To view each recommendation's details, click on the recommendation.

    Recommendation details


See classic and Resource Manager deployment models for Azure resources.

Next steps

In this document, you were introduced to security recommendations in Security Center. To learn how to remediate the recommendations: