1,250 questions with Microsoft Defender for Cloud-related tags
Error installing Microsoft.Azure.AzureDefenderForServers.MDE.Windows
Hi Guys, We have seen an issue on 2 Windows 2012 R2 server when Defender for Cloud tries to install the MDE extension. Any ideas? Extension failed to process settings. Extension returned non-zero exit code for Enable: 1. Extension Error:…
How to deploy Microsoft Defender for a storage account with bicep
I'm trying to use bicep to enable Microsoft Defender for Cloud for a storage account in Azure. However, the defender is enabled but the "On-upload malware scanning" is not enabled even though I set the property to "true" in the bicep…
API defender for endpoint bad request
I am trying advanced hunting queries towards the endpoint "[https://api-eu.securitycenter.microsoft.com/api/advancedqueries/run" The permissions, tokens and app permissions is already configured. The problem now is that some queries give me…
Dedicated management console with Microsoft defender for Endpoint
Hello, I am working for a customer and they have all their resources in a Azure subscription. As an External supporter, I need to have dedicated management console for the resources I am allowed to manage. Is it possible to create multiple management…
When ISO27001:2022 will be available for Defender regulatory compliance security framework
We have to add ISO270001:2022 framework in regulatory compliance in Defender for Cloud. However i am only able to see ISO27001:2013 Could you please confirm when 2022 will be available
Microsoft Defender against Palo Alto Cortex
I am tasked to compare Palo Alto Cortex solution on our existing Windows workstations against MS Defender for Endpoint. There is several articles about this and my first conclusion is, that Defender might have only small weakness against Palo Alto but I…
Transition to Microsoft Defender Vulnerability Management - java sdk, SecuritySubAssessmentInner AdditionalData problem
Hi, We want to migrate from https://video2.skills-academy.com/en-us/azure/defender-for-cloud/defender-for-containers-vulnerability-assessment-azure to https://video2.skills-academy.com/en-us/azure/defender-for-cloud/agentless-vulnerability-assessment-azure which is…
How can I manage the updates of third-party applications on the employer's device?
I'm looking for a solution with minimum administrator effort for keeping up to date on all employer's devices. In the organization, I have about 50 devices that they onboarded to Defender for Cloud's portal. All devices showing on Microsoft Defender…
Defender for Endpoint onboard Google Cloud and AWS machines
Hello Can servers hosted in other platforms like Google cloud and AWS be onboarded to defender for endpoint without using Azure arc? Thanks
Inquiry Regarding Exception Handling for Defender for Cloud and Third-Party EDR Conflict
Hello, Our organization is striving to adhere to the Microsoft Defender for Cloud recommended practice of 'EDR solution should be installed on Virtual Machines.' However, we are encountering difficulties as the button for exception handling is not…
Defender for Server Policies
Hello For servers that are onboarded to Defender for Cloud and have the server plan activated, are the AV policies controlled from the Endpoint security policies? Can Servers have endpoint security policies pushed to them, even if they are not onboarded…
Add cloud defender to workspace
I am trying to add MS Cloud Defender to the workspace but it fails and I do not know the reason
2 orphan resources pop up in Defender Inventory. How to remove?
This are the two resources I can not remove. The resource-groups do not exist: default-oms-westeurope,…
unable to remove MDE for server 2012
I installed MDE for our Windows 2012 R2 server using the installation package from the security center portal. Now, I would like to remove it, but it's been failing. I first used the offboarding package to offboarding the device…
how to get azure vulnerability assessment reports
Hello friends, Could you please let me know how to get azure vulnerability assessment reports? Thank you in advanced
differences between 2 trusted IP ranges in Azure
There are multiple places in Azure one can define trusted IP ranges. Two of them are: Security Portal\settings\cloud apps\IP address rages Entra portal \ security \ named locations What are differences between these 2 lists? Which one is used as…
WHEN was device onboarded to defender?
Hello I am attempting to see WHEN our devices were onboarded to defender, like a date and time. I can see there is a "First Seen" but that refers to a "when the device was first seen in the network or when it's first reported by the…
Get the configuration of Microsoft Defender Plans Cloud Workload Protection using Automation Account Runbook PowerShell
I am trying to get the configuration of the Microsoft Defender for Cloud in all of our subscriptions. Specifically, I want to get the Cloud Workload Protection Details. All I am able to get are the pricing details of the plans and not specific details…
query to associate the department with an MDC recommendation
How can I update the following query to associate the department with each MDC recommendation? securityresources | where type == "microsoft.security/assessments" | extend source = trim(' ',…
What is difference between Standard edition and Microsoft defender for server Plan 1 and plan 2.
HI Team, I would like to know what is the difference between Standard edition and Microsoft defender for server Plan 1 and plan 2. Assume that somebody upgraded Microsoft Defender for the cloud from the Free tier to the Standard tier. Do we still need…