This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 65%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Hi, I want to know how can I protect the containers during runtime and scan the images with Defender for containers. Listing down my questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 1%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Hi DiptiRanjan Swain, thanks fro your questions.
I want to help you with this questions.
As I understand, you want to know how you can start with Defender for Containers and how you configure them to protect container apps, as well as notify developers about finding and what are the cost of the DfC, right?
First, you can enable Defender for Containers via the Defender for Cloud service in Azure.
There you have to enable the payed plan, on default you have already security features in place but they are limited and not includes Defender for containers.
After you set the Defender for Containers to On for the subscriptions, microsoft starts automatically with the deamon provision on the existing container in the scope.
But if you dont want to have this process automatically you can disable the auto provisioning in the settings as well (in the plan activation blade on the left choose "Auto provisioning")
After the privioning is done you should see the list of all containers in the Inventory blade of defender for cloud.
To view the recommendations there are several ways for. As a developer the easiest way is to view it in the specific subscriptions. There are all recommendations listed, filtered for this specific subscription. Please consider the necessary permissions to see the recommendations blade in the subscription
This is a quick overview about Defender for containers but you can read more here:
Here you can read more about the architecture of Defender for Containers and how they work:
About the Costs:
When you activate Defender for Containers you pay for every virtual core per hour on the containers you activated with Defender for Containers.
If the reply was helpful, please don’t forget to upvote or accept it as an answer, thank you!
Thank you @Patchfox for answering to my questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 53%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
This is only for Kubernetes, not Container Apps
@BEVEN You are right. MS confirmed that.