1,212 questions with Microsoft Defender for Cloud-related tags
Getting "Selected user account does not exist in tenant 'Microsoft Services' and cannot access the application" error.
Good afternoon: Any time I try to go to security.microsoft.com or compliance.microsoft.com and log in, I'm greeted with a "Selected user account does not exist in tenant 'Microsoft Services' and cannot access the application" error. The same…
Defender ASR policy block win32api disabled Edge and Chrome
Today all users in one of our customer's tenants started reporting their Edge and Chrome being removed from their desktop (shortcuts), Outlook issues were reported as well. When we set the asr policy Block Win32 API calls from Office macro to audit,…
Intune - Devices reported as without ATP-sensor
So we activated Defender ATP within Intune and connected it with Microsoft Defender Security Center: I can see the devices at https://securitycenter.windows.com/machines But Intune reports them as devices without ATP-sensor: …
OpenSSL vulnerabilities showing in Defender Dashboard
We have multiple devices showing up with OpenSSL vulnerabilities. It is detecting two dll files that it is flagging. Which they are libssl-3-x64.dll and libcrypto-3-x64.dll. It is flagging this for multiple different applications through out multiple…
SqlThreatDetection_Audit on all Azure SQL Virtual Machines
I recently began seeing failures in my SQL Error logs relating to SQL Audits. We do not utilize SQL Audits in our environment so I began investigating. I found that an audit named SqlThreatDetection_Audit was created and enabled on all of my IAAS…
Unable to view Healthy/Unhealthy resources in Azure (Microsoft Defender for Cloud-Regulatory Compliance Policies)
Hi. Recently I am facing issue in viewing resources list under Healthy/Unhealthy resources in Azure (Microsoft Defender for Cloud - Regulatory Compliance Policies). It shows the total count in the tab, but under the section of Healthy/Unhealthy…
Azure SQLVM: Windows web servers should be configured to use secure communication protocols
Hello Team, I'm trying to make the green below Regulatory Compliance recommendation for my Azure SQL VM. Windows web servers should be configured to use secure communication protocols I added the registry keys as per…
Application for Microsoft for Startups
Hi To apply to "Microsoft for Startups" you say that we should "ask your startup-enabling organization for the Microsoft for Startups package sign-up details unique to your organization.". We are based in Budapest. How can we find…
Defender 365 admin console - Disabled Connected to a custom indicator & Connected to a unsanctionned blocked app rules
I want to know how I can disable these two following alerts : Disabled Connected to a custom indicator Connected to an unsanctioned blocked app I didn't find these alerts on the Alerts Policy of XDR/EPP or Cloud apps. Since all the changed that…
You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named Ben Smith. You configure a Password protection for contoso.com that includes the following Custom banned passwords
You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains a user named Ben Smith. You configure a Password protection for contoso.com that includes the following Custom banned passwords settings: Enforce custom list: Yes …
Impossible to enable Defender for Storage Malware scanning
I would like to enable Azure Defender Malware scanning on my (StorageV2) Storage Account. I upgraded my subscription's MS Defender for Cloud plan. However, any attempt on enabling Malware scanning or Sensitive data discovery fails. While enabling on…
Microsoft Defender for Cloud - Server Plan 2
I am looking to implement Microsoft Defender for cloud - Server Plan 2 for my windows and linux servers in azure. Does this Plan 2 includes antivirus?
Constraints when using Microsoft Defender for Cloud and Azure Sentinel and Azure Arc against on-premises outside of Azure
I would like to use Microsoft Defender for Cloud and Azure Sentinel and Azure Arc to protect on-premises servers that exist outside of Azure. Microsoft Defender for Cloud and Azure Sentinel and Azure Arc features fall into which of the following…
Can somebody point me to the correct API to view and export Defender for Servers usage?
I am looking for a method to view and export Defender for Servers usage information. I understand this based per hour, however, I am looking for a way to automate the export of current usage at a given time.
MS Threat Modeling Tool Stencils
Is there a template containing stencils for Azure and for desktop applications, or can 2 stencils be loaded or combined? I have a medical device application with an on-premise and cloud component hosted in Azure. It seems when I load the Azure template,…
Windows Defender SenseNdr.exe Application Crashing Events
Faulting application name: SenseNdr.exe, version: 2.3.1.0, time stamp: 0x7484efee Faulting module name: SenseNdr.exe, version: 2.3.1.0, time stamp: 0x7484efee Exception code: 0xc0000409 Fault offset: 0x000000000071f9c1 Faulting process id:…
NIST checklist
Hi, we are trying to comply with NIST standard. Microfost Defender for Cloud offers NIST checklist. While I working through the list, I am quite confused. One of the failure item is 'Azure Defender for servers should be enabled' which is in regards to…
Need to block MFA registration from external network
Hello All, Hope everybody is doing good. I need to block the MFA registration from external network only, so for this I have tried to create one CA policy using using Cloud App/User Action but unfortunately it is allowing user to register user for…
Defender File Scan Count
Hello, Can we get count file scanned by defender using powershell?
app service has storage contributor role in blob storage, it is throwing AuthorizationPermissionMismatch exception
The app service has a storage contributor role in blob storage, it is throwing AuthorizationPermissionMismatch exception