1,747 questions with Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud tags

Sort by: Updated
0 answers

Migrating to new Microsoft Defender for Storage(new)

Our production subscription currently uses Microsoft Defender for Storage (Classic) at the subscription level. Can we migrate only a single Storage Account to the new Defender for Storage plan while leaving the remaining Storage Accounts on the Classic…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-07-02T11:49:49.8733333+00:00
Boev Boyan (BD/SWD-BEA3) 0 Reputation points
1 answer

Azure Databricks Ephemeral Worker Nodes Evaluated as Non-Compliant in Defender for Cloud Networking Policies

We are currently reviewing Microsoft Defender for Cloud networking policies and their impact on Azure Databricks environments. During our analysis, our team observed that several built-in Defender for Cloud networking recommendations are reporting…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-25T15:50:15.28+00:00
Marisa GG 20 Reputation points
edited an answer 2026-06-29T08:48:45.54+00:00
Jyotishree Moharana 1,865 Reputation points Microsoft External Staff Moderator
0 answers

Defender CSPM vulnerability assessment stuck — firstEvaluationDate == statusChangeDate unchanged for 18+ days despite fix deployed

Summary Three Defender for Cloud recommendations — "Update next", "Update postcss", "Update @babel/runtime" — on a single Azure Web App have been Unhealthy since the day Defender CSPM was first enabled, even though the…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-26T18:45:33.6566667+00:00
LC-Developer 0 Reputation points
1 answer

OpenSSL Vulnerability Remediation on Azure VMs.

We are seeing high severity OpenSSL vulnerability recommendations in Microsoft Defender for Cloud for certain Azure virtual machines, which is impacting our Secure Score. From our analysis: The OpenSSL is no longer used in the current application or…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-15T10:46:06.8833333+00:00
Chandana Paritala 0 Reputation points
edited a comment 2026-06-26T06:50:19.2966667+00:00
Shikha Maan 0 Reputation points
0 answers

AWS connector in Defender

Hi i have connected AWS account to Defender for cloud foundational CSPM, it is more than 30 hours and i still cannot see resources listed in Inventory. And the status in environment variables says it is connected. Any idea what's the issue.

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-16T19:55:51.9966667+00:00
Nadoda, Rijens (CA) 0 Reputation points
commented 2026-06-25T15:57:31.27+00:00
Nadoda, Rijens (CA) 0 Reputation points
0 answers

After enable On-upload malware scanning for storage account, the result tag is not created for new upload file

I have a storage account associated with a Network Security Perimeter (NSP). After enabling Defender for Storage on-upload malware scanning with "Store scan results as blob index tags", newly uploaded blobs do not get the  Malware Scanning…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-24T22:26:23.2166667+00:00
Bingran Luo 0 Reputation points Microsoft Employee
0 answers

Microsoft defender security score showing as N/A for couple of subscriptins

For couple of my subscriptions - FAST-LOB-DCIE-PROD & FAST-LOB-DCIE-NONPROD , microsoft Defender Secure score coming as N/A, though there are security policies have been enabled similar to my other subscriptions. Can you help with this issue.

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-22T12:03:16.7933333+00:00
Kiran Kumar Reddy Kandimalla 0 Reputation points Microsoft Employee
commented 2026-06-22T14:08:48.1533333+00:00
Sridevi Machavarapu 33,475 Reputation points Microsoft External Staff Moderator
2 answers One of the answers was accepted by the question author.

Unable to Create Defender for Endpoint Device Groups (Machine Groups) for Web Content Filtering Scope – Tenant Shows Defender for Business Subscription State Despite MDE Plan 2 License

Hi Team, We are trying to configure Web Content Filtering in Microsoft Defender and scope the policy to a specific Device Group (Machine Group) instead of applying it to All devices in the organization. As per Microsoft documentation, Device Groups…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-18T15:41:48.7233333+00:00
Niharika P 60 Reputation points
commented 2026-06-19T08:35:47.0833333+00:00
Niharika P 60 Reputation points
1 answer One of the answers was accepted by the question author.

Microsoft Defender for Cloud Recommendations Not Refreshing After Resource Deletion and Exemption

We are experiencing an issue with Microsoft Defender for Cloud recommendations where deleted resources continue to be flagged as requiring action. It has been more than 10 days since these resources were deleted, yet they still appear as non-compliant in…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-16T21:16:24.7666667+00:00
Mohanish Mate 41 Reputation points Microsoft External Staff
accepted 2026-06-19T00:59:07.07+00:00
Mohanish Mate 41 Reputation points Microsoft External Staff
1 answer

how to remove WDAGUitilityAccount

the person i bought the laptop is still logged on as wdagutilityaccount, how do i remove him from it

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2025-10-18T13:44:23.9066667+00:00
Khatan Shaibi 0 Reputation points
commented 2026-06-18T20:17:39.2133333+00:00
William Tipton 0 Reputation points
1 answer

Microsoft Defender for Cloud: recommendations stuck "Unhealthy" since a fixed date despite compliant resources — assessments not re-evaluating

Service: Microsoft Defender for Cloud (Recommendations / Secure Score), Azure Resource Graph for verification. Scenario: Six Defender for Cloud recommendations have remained Unhealthy for resources that were remediated days ago and are verifiably…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-15T17:42:07.09+00:00
Simon Hugosson 0 Reputation points
edited an answer 2026-06-18T16:42:48.1566667+00:00
Rukmini 43,095 Reputation points Microsoft External Staff Moderator
3 answers One of the answers was accepted by the question author.

Can I use Endpoint Protection without enabling Defender for Servers plan?

I'd like to confirm the actual behavior of the Endpoint Protection setting under Defender for Cloud's Settings & monitoring page when Defender for Servers is disabled on the subscription. Based on this document, I understood that Endpoint Protection…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-04T04:30:47.6033333+00:00
Dev SS 20 Reputation points
accepted 2026-06-15T09:22:59.74+00:00
Dev SS 20 Reputation points
0 answers

Defender for Cloud CIEM Over-Provisioned Identity Recommendation Not Consistent Across Management Group Inherited Roles

We have enabled Defender CSPM with Permissions Management on 120 Azure subscriptions across our enterprise environment. We're trying to use the over-provisioned identity recommendations to achieve least privilege access, but we're seeing inconsistent…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-05T19:30:27.4566667+00:00
Dikshant Lather 40 Reputation points
commented 2026-06-12T16:53:37.79+00:00
Rukmini 43,095 Reputation points Microsoft External Staff Moderator
1 answer

Unable to add exclusions in discovery group within EASM

We are trying to add discovery group exclusions in EASM but getting authentication required error after submitting the change. We are not sure about what changes in user role should we do, as i am already logged in to EASM but still it shows…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-12T15:14:12.13+00:00
Adarsh Sheelavantar 0 Reputation points
commented 2026-06-12T15:55:57.1533333+00:00
Sridevi Machavarapu 33,475 Reputation points Microsoft External Staff Moderator
1 answer

“Microsoft Defender for Servers must be enabled on subscriptions” – Vulnerability Assessment configuration not persisting

We are currently addressing a newly introduced Azure Tenant Security (AZTS) control: “Microsoft Defender for Servers must be enabled on subscriptions” across all subscriptions. As per the remediation guidance provided…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-11T05:36:22.7533333+00:00
Rani Chidaraboina (LTIMindtree Limited) 0 Reputation points Microsoft External Staff
commented 2026-06-12T06:54:40.81+00:00
VEMULA SRISAI 13,700 Reputation points Microsoft External Staff Moderator
1 answer One of the answers was accepted by the question author.

Storage account private endpoint recommendation not applicable – how to exempt or resolve Defender alert?

We are observing a Microsoft Defender for Cloud recommendation related to our Azure Storage account: “Storage accounts should use a private endpoint connection” Current scenario: The storage account is already secured using network/firewall rules and…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-05-15T06:09:58.84+00:00
Rishabh Gupta (MAQ LLC) 40 Reputation points Microsoft External Staff
edited the question 2026-06-11T13:19:21.4933333+00:00
Sridevi Machavarapu 33,475 Reputation points Microsoft External Staff Moderator
0 answers

Microsoft Defender for Cloud – Secure Score dropped from 100% to 78%, seeking remediation guidance

Our Microsoft Defender for Cloud secure score has dropped from 100% to 78%. We have identified the following active recommendations and are seeking guidance on the best remediation approach so that we are able to get our secure score back up to 100%. …

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-08T13:52:21.6333333+00:00
Adam Carson 0 Reputation points
commented 2026-06-09T12:54:40.32+00:00
Sridevi Machavarapu 33,475 Reputation points Microsoft External Staff Moderator
0 answers

False Positive – SQL Vulnerability Findings Control Flagged Across Subscriptions

Hi Team, The control “SQL databases should have vulnerability findings resolved” is currently being flagged across multiple subscriptions. AIA Pricing Engine AIA Pricing Engine - Prod Upon validation, we confirmed the following: There are no active…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-05-28T21:47:03.6966667+00:00
Mohan Srinivas Subramanian (MINDTREE LIMITED) 21 Reputation points Microsoft External Staff
commented 2026-06-09T07:40:19.22+00:00
Sridevi Machavarapu 33,475 Reputation points Microsoft External Staff Moderator
2 answers

Vulnerability Reporting Export CSV

Please provide/guide on extraction of a complete CSV tenant report containing all machine names paired with their active software vulnerabilities (CVE IDs).

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-09T04:50:05.9533333+00:00
Soam prakash reddy Patnala 0 Reputation points
answered 2026-06-09T05:26:15.9666667+00:00
VEMULA SRISAI 13,700 Reputation points Microsoft External Staff Moderator
2 answers One of the answers was accepted by the question author.

Bulk exemption/suppression for SoftwareUpdate recommendations in Defender for Cloud

We are currently experiencing a large volume of recommendations related to software updates (SoftwareUpdate) in Microsoft Defender for Cloud. Background: Due to a recent behavior change in Defender for Cloud, recommendations are now generated per…

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
asked 2026-06-03T02:57:16.4433333+00:00
KAMADA, MIZUHO 20 Reputation points
commented 2026-06-08T14:09:30.1966667+00:00
VEMULA SRISAI 13,700 Reputation points Microsoft External Staff Moderator