A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
1,747 questions with Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud tags
Migrating to new Microsoft Defender for Storage(new)
Our production subscription currently uses Microsoft Defender for Storage (Classic) at the subscription level. Can we migrate only a single Storage Account to the new Defender for Storage plan while leaving the remaining Storage Accounts on the Classic…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
Azure Databricks Ephemeral Worker Nodes Evaluated as Non-Compliant in Defender for Cloud Networking Policies
We are currently reviewing Microsoft Defender for Cloud networking policies and their impact on Azure Databricks environments. During our analysis, our team observed that several built-in Defender for Cloud networking recommendations are reporting…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Defender CSPM vulnerability assessment stuck — firstEvaluationDate == statusChangeDate unchanged for 18+ days despite fix deployed
Summary Three Defender for Cloud recommendations — "Update next", "Update postcss", "Update @babel/runtime" — on a single Azure Web App have been Unhealthy since the day Defender CSPM was first enabled, even though the…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
OpenSSL Vulnerability Remediation on Azure VMs.
We are seeing high severity OpenSSL vulnerability recommendations in Microsoft Defender for Cloud for certain Azure virtual machines, which is impacting our Secure Score. From our analysis: The OpenSSL is no longer used in the current application or…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
AWS connector in Defender
Hi i have connected AWS account to Defender for cloud foundational CSPM, it is more than 30 hours and i still cannot see resources listed in Inventory. And the status in environment variables says it is connected. Any idea what's the issue.
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
After enable On-upload malware scanning for storage account, the result tag is not created for new upload file
I have a storage account associated with a Network Security Perimeter (NSP). After enabling Defender for Storage on-upload malware scanning with "Store scan results as blob index tags", newly uploaded blobs do not get the Malware Scanning…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Microsoft defender security score showing as N/A for couple of subscriptins
For couple of my subscriptions - FAST-LOB-DCIE-PROD & FAST-LOB-DCIE-NONPROD , microsoft Defender Secure score coming as N/A, though there are security policies have been enabled similar to my other subscriptions. Can you help with this issue.
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Unable to Create Defender for Endpoint Device Groups (Machine Groups) for Web Content Filtering Scope – Tenant Shows Defender for Business Subscription State Despite MDE Plan 2 License
Hi Team, We are trying to configure Web Content Filtering in Microsoft Defender and scope the policy to a specific Device Group (Machine Group) instead of applying it to All devices in the organization. As per Microsoft documentation, Device Groups…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Microsoft Defender for Cloud Recommendations Not Refreshing After Resource Deletion and Exemption
We are experiencing an issue with Microsoft Defender for Cloud recommendations where deleted resources continue to be flagged as requiring action. It has been more than 10 days since these resources were deleted, yet they still appear as non-compliant in…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
how to remove WDAGUitilityAccount
the person i bought the laptop is still logged on as wdagutilityaccount, how do i remove him from it
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Microsoft Defender for Cloud: recommendations stuck "Unhealthy" since a fixed date despite compliant resources — assessments not re-evaluating
Service: Microsoft Defender for Cloud (Recommendations / Secure Score), Azure Resource Graph for verification. Scenario: Six Defender for Cloud recommendations have remained Unhealthy for resources that were remediated days ago and are verifiably…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Can I use Endpoint Protection without enabling Defender for Servers plan?
I'd like to confirm the actual behavior of the Endpoint Protection setting under Defender for Cloud's Settings & monitoring page when Defender for Servers is disabled on the subscription. Based on this document, I understood that Endpoint Protection…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Defender for Cloud CIEM Over-Provisioned Identity Recommendation Not Consistent Across Management Group Inherited Roles
We have enabled Defender CSPM with Permissions Management on 120 Azure subscriptions across our enterprise environment. We're trying to use the over-provisioned identity recommendations to achieve least privilege access, but we're seeing inconsistent…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Unable to add exclusions in discovery group within EASM
We are trying to add discovery group exclusions in EASM but getting authentication required error after submitting the change. We are not sure about what changes in user role should we do, as i am already logged in to EASM but still it shows…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
“Microsoft Defender for Servers must be enabled on subscriptions” – Vulnerability Assessment configuration not persisting
We are currently addressing a newly introduced Azure Tenant Security (AZTS) control: “Microsoft Defender for Servers must be enabled on subscriptions” across all subscriptions. As per the remediation guidance provided…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Storage account private endpoint recommendation not applicable – how to exempt or resolve Defender alert?
We are observing a Microsoft Defender for Cloud recommendation related to our Azure Storage account: “Storage accounts should use a private endpoint connection” Current scenario: The storage account is already secured using network/firewall rules and…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Microsoft Defender for Cloud – Secure Score dropped from 100% to 78%, seeking remediation guidance
Our Microsoft Defender for Cloud secure score has dropped from 100% to 78%. We have identified the following active recommendations and are seeking guidance on the best remediation approach so that we are able to get our secure score back up to 100%. …
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
False Positive – SQL Vulnerability Findings Control Flagged Across Subscriptions
Hi Team, The control “SQL databases should have vulnerability findings resolved” is currently being flagged across multiple subscriptions. AIA Pricing Engine AIA Pricing Engine - Prod Upon validation, we confirmed the following: There are no active…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Vulnerability Reporting Export CSV
Please provide/guide on extraction of a complete CSV tenant report containing all machine names paired with their active software vulnerabilities (CVE IDs).
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
Bulk exemption/suppression for SoftwareUpdate recommendations in Defender for Cloud
We are currently experiencing a large volume of recommendations related to software updates (SoftwareUpdate) in Microsoft Defender for Cloud. Background: Due to a recent behavior change in Defender for Cloud, recommendations are now generated per…
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations