358 questions with Microsoft Defender for Cloud-related tags
How Defender ATP works on IOS ?
Hello everyone, I am currently a student and intern in cybersecurity, and I am curious about how Defender operates on mobile devices, particularly on iOS (after deployed with Intune). I have been trying to find a flow chart that outlines the workings of…
shared settings : Number of days until partner is unresponsive
Hello, I hope this message finds you well. I am seeking clarification on the “Shared settings: Number of days until partner is unresponsive” option found under Endpoint Security > Microsoft Defender for Endpoint. Specifically, I would like to…
Defender for Endpoint Policies
Hello If a workstation or server is onboarded to defender for endpoint and no security policies have been pushed to the endpoint, what are the default settings or configuration that defender uses? does it stay dormant until policies are pushed? Thanks
Microsoft Vulnerability Manager Security Recommendations - Python
Microsoft Vulnerability Manager Security Recommendations is advising to Update Python as it is currently version 3.7.7.0 however, when installing Python latest version (3.12.30) from https://www.python.org/downloads/ it is still reporting on Microsoft…
Choosing between Defender for Endpoint and Defender for Server for servers with no internet connectivity
We are planning to migrate from Symantec® Endpoint Security to Microsoft, specifically looking for EDR and XDR features for our On Prem servers that have no connectivity to the internet. Should we use Defender for Endpoint or Defender for Servers? We are…
Is there a way to enable Defender for Servers in Azure by resource group within a subscription?
Working on deploying Defender for Cloud and wanting to enable Defender for Servers in Azure on a subscription but don't want all servers within the subscription to have it enabled just yet. Would prefer to target servers in specific resource groups…
Defender P2 Qualys Deprecation -> switch to MDE for MDVM
Qualys is being deprecated to be used together with Cloud Defender for Servers Plan 2. In the documentation I read that MDVM is part of MDE, either plan 1 or plan 2. Plan 1 has basic vulnerability scanning and p2 supplies addons to that basic…
Custom detection in MDE
I am trying to create Custom Detection in Microsoft Security Center where my query has multiple Join and summarize statements. Whenever I am running query its providing results but after saving in Custom Detection form and under its results section its…
Setting Defender for Server Pricing Plan per resource + disable MDE auto-provision
I have some question related Defender for server and the added ability to set the pricing plans on a resource level as well as outlined here:…
Integrating Defender for Endpoint with Defender for Cloud by server not by Subscription
Please give me a guide on how to integrate Defender for Endpoint and Defender for Cloud by server, not by subscription. Do I need to set "Vulnerability Machine needs to be installed" in policy mdc to integrate with mde? I'm trying to…
How to secure container in container apps using Defender for cloud
Hi, I want to know how can I protect the containers during runtime and scan the images with Defender for containers. Listing down my questions How to configure Defender for Containers for runtime protection. And what action to take post…
The Address you provided is invalid, please provide a valid address and try again!!!
Hi, While I was trying to schedule the SC-200 Exam, I got the error message that the billing address isn't valid. How can I fix this issue. Thanks! Best Regards, Jasmina Jakob
Defender Plans page throwing error "rt is null"§
Its been a couple of days i am getting this error in my subscription.. Is this a temporary glitch, or ..?
How to deploy Microsoft Defender for a storage account with bicep
I'm trying to use bicep to enable Microsoft Defender for Cloud for a storage account in Azure. However, the defender is enabled but the "On-upload malware scanning" is not enabled even though I set the property to "true" in the bicep…
API defender for endpoint bad request
I am trying advanced hunting queries towards the endpoint "[https://api-eu.securitycenter.microsoft.com/api/advancedqueries/run" The permissions, tokens and app permissions is already configured. The problem now is that some queries give me…
Dedicated management console with Microsoft defender for Endpoint
Hello, I am working for a customer and they have all their resources in a Azure subscription. As an External supporter, I need to have dedicated management console for the resources I am allowed to manage. Is it possible to create multiple management…
Defender for Endpoint onboard Google Cloud and AWS machines
Hello Can servers hosted in other platforms like Google cloud and AWS be onboarded to defender for endpoint without using Azure arc? Thanks
Defender for Server Policies
Hello For servers that are onboarded to Defender for Cloud and have the server plan activated, are the AV policies controlled from the Endpoint security policies? Can Servers have endpoint security policies pushed to them, even if they are not onboarded…
unable to remove MDE for server 2012
I installed MDE for our Windows 2012 R2 server using the installation package from the security center portal. Now, I would like to remove it, but it's been failing. I first used the offboarding package to offboarding the device…
Microsoft recommendation error
Got the recommendation by defender "Diagnostic logs in Key Vault should be enabled". So I enabled diagnostic settings on the key vault and attached a storage account to it. Later when I went to check the recommendation status in the defender,…