1,236 questions with Microsoft Defender for Cloud-related tags
How to let an email with specific header bypass all filters
Why, why, why can we not do this? I have Transport rules, Threat policies--all kinds of stuff set up to just. stop. blocking. But it seems I don't get to decide that. I know the rules are matching because when I look in the administrators' view of…
Defender Vulnerability Remediation Query
I have some Linux azure vm for which we have vulnerability to be resolved as per defender for cloud vulnerability recommendation. What is know is there a way to remediate all vulnerability findings through azure portal. And 2. We are using…
windows defender become black screen after open and watch whatsapp
windows defender become black screen after open and watch whatsapp at between 8:00 a.m . and 8:45 a.m. HKT 18/6/2024 when i open windows defender , it show a logo hangs there, then i close and force stop it, and open again, it show black screen. then I…
Issue with Defender Recommendations - Linux virtual machines should enable Azure Disk Encryption or EncryptionAtHost.
HI i have 3 virtual machines in azure i have enabled one week back Encryption at host for all machines - Now am seeing - Recommendations - Virtual machines and virtual machine scale sets should have encryption at host enabled is now in healthy…
How can i enable defender on particular app service plan.
Hi i have 7 app plan and they have 7 instance correspondigly. when i go to app plan there is no option for defender. when i go to app service defender option is there but i dont have option to apply it. At defender page > Environment Setting > we…
Need suggestion for malware scan for blob in Azure Storage, file size approx. 100GB
We're uploading virtual machine backup files using AzCopy with extension .vmdk, .vdi, etc and size are huge around 100GB and it's a single file to Azure Storage as a blob. We thought to do malware scan once file uploaded. The Defender of Azure Storage…
![](https://techprofile.blob.core.windows.net/images/PSIvIE6m-0C4iL5bgDfeyA.png?8D9C7B)
Custom recommendation I created doesn't get triggered as a recommendation in defender for cloud
I am trying to make custom recommendations work. I created a custom recommendation that looks meta data of a keyvault and checks if PublicNetworkAccess is enabled if so then it finds "iprules" in meta data. If it can see the word…
Troubleshooting missing secure score for Microsoft Cloud Defender continuous export
I have 5 subscriptions that are configured for continuous export. However, when I look at the workbooks for secure score over time, only 3 out of the 5 subscriptions are showing the current score. I have checked all the settings, and everything seems to…
![](https://techprofile.blob.core.windows.net/images/SbBXW6wumkK4XgZSyURk4A.png?8D926C)
SQL Server: Defender for SQL Server Configuration Issues – Status Not Displayed
I have an SQL Server, and I attempted to configure Defender for SQL Server. However, even after a day, it has not been configured properly, and the menu showing the "Protected" or "Not Protected" status does not appear as expected.…
New teams not in defender for endpoint
Hello everyone, In the company we're curently moving from teams classic to new teams. However I don't see the new teams in defender. Is the new teams not visible in defender for endpoint ? I can no longer see vulnerabilities and who has the new teams…
Understanding why full and quick scans are out of 7 days
Hi, We have been receiving security recommendations for our virtual machines, and one of the findings states that "Both full and quick scans are out of 7 days": EDR configuration issues should be resolved on virtual machines-> Findings->…
Defender for container - Pricing question
Hello, I added an AKS-HCI Kubernetes cluster on Azure Arc, and I activated Defender for Containers. I’m not using the Azure registry. It has been 40 days since I integrated this, but I still don’t see any charges for Defender, even though it’s clearly…
OpenSSL Vulnerability
Hello, We received a critical alert from Microsoft Defender (CVE-2023-49210) which tells us that 90 of our devices have vulnerabilities due to the version Openssl which is not supported anymore. We don't have any software on these PCs that include…
'Wacatac' malware was detected (Agentless preview)
Hi Team on one of the linux machine Microsoft Defender for Cloud in Security alerts shows malware how to remediate it.
How to Onboard Windows servers to Microsoft Defender for Endpoint using Defender for Cloud
We have configured Microsoft Defender for Server Plan 1 in our environment. How to Onboard windows server automatically in Microsoft defender for endpoint using Defender for cloud. Where we can see the device reporting and logs. What are the RBAC…
IaaSAntimalware and MDE.Windows VM extensions
Are there any benefits to having both the IaaSAntimalware and MDE.Windows extensions installed on an Azure hosted virtual machine or are they just redundant?
How to block SAM, LSA dump through Microsoft Defender for Endpoint
Hello, I am trying to see if the EDR Microsoft Defender for Endpoint or other solutions from Microsoft offer options to block the following hive dump SAM, LSA and optionaly DPAPI. I am aware that suspicious dumps are detected but is there a possibility…
Microsoft Defender for Containers in AKS-HCI - pricing questions
Hello, I added a new AKS-HCI kubernetes cluster on premises to arc, and enabled defender for containers and installed the extensions in the cluster. but billing has still been 0 since 1 month. can you explain why. given that it is stated that billing…
Info required for migration of MMA to Windows defender Unified agent.
Please help me to identify the specific process for that Microsoft Defender unified agent is running on the server. Scenario is that there are some servers in the environment running with 2012R2 and 2016. And MMA is running on the servers. As a result,…
What's the exact definition of 'Timegenerated' in an Azure Resource Graph query output for Container Image Vulnerabilities?
When we run a query to find vulnerabilities in Container Images, there's a 'timegenerated' column in the query output. I've tried to find this documented somewhere, but can't, I've only found a document for Azure Monitor. Does this mean it's the last…