Thank you for posting your query on Microsoft Q&A, from above description I could understand that you have enabled defender for cloud via Azure policy and it is showing OFF/non compliant status on 2 of 23 subscription.
Please do correct me if this is not the case by responding in the comments section.
- To remediate this navigate to Azure Policy > compliance > choose "Enable Microsoft Defender for Cloud on your subscription" among the policy definition:
- Click on "create remediation task"
- You may click on the "Management Group" and choose the subscription within the MG and hit remediate, the "Applicable resources to remediate" would change to subscription:
- The remediation task will then enable Defender for Cloud's basic functionality on the non-compliant subscriptions, and you could configure the plans according to the business need.
If you don't have any further queries and the suggested answer is as per your business need, please "Accept the answer", This will help us and others in the community as well.
Thanks,
Akshay Kaushik