1,420 questions with Microsoft Defender for Cloud-related tags

Sort by: Updated
1 answer

"Disabled accounts with X permissions on Azure resources should be removed" is Showing Active Accounts

I review our Microsoft Defender Secure Score for each of 3 subscriptions weekly and noticed a huge reduction in one of them. The following are the recommendations for this subscription in particular: "Disabled accounts with read and write…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-12T16:08:23.8933333+00:00
Cusimano, Joey 55 Reputation points
commented 2024-11-18T13:18:58.11+00:00
Michael McCloy 0 Reputation points
1 answer

Difference between Microsoft Defender for Business and Defender for Endpoint?

Hi. Would be pleased to have these answers. Thank you. What is the difference between Microsoft Defender for Business and Defender for Endpoint? Is Defender for Endpoint included in Defender for Business? Is there any limitation for in Defender for…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-13T06:46:32.1333333+00:00
Israt Jahan Tulin 0 Reputation points
commented 2024-11-18T12:12:05.69+00:00
Navya 12,650 Reputation points Microsoft Vendor
0 answers

Why defender for endpoints say that does't exist the CVE-2013-3900 and when I see the REG entry, they really exist ?

In the Microsoft Defender for Endpoint (MDE) console, when I search for CVE-2013-3900 (WinVerifyTrust), the results show zero vulnerable endpoints. However, mitigating this CVE primarily involves creating a registry entry, and in all the endpoints I’ve…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-09-24T11:54:06.35+00:00
Andrew Matheus da Silva Lobo 5 Reputation points
commented 2024-11-18T07:28:09.6333333+00:00
Prathista Ilango 95 Reputation points Microsoft Employee
1 answer

Microsoft Defender for Endpoint for US Government customers

Hi, are these endpoints still relevant? I'm having issues configuring them with GCC High. https://learn.microsoft.com/en-us/defender-endpoint/gov#api

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-13T16:35:30.6433333+00:00
itay4 36 Reputation points
answered 2024-11-17T14:54:02.2+00:00
itay4 36 Reputation points
1 answer

MS Defender Automated Simulation Training: How to have new users to live attack simulation training

Hi I am trying to setup MS Defender attack simulation training for staff. I have a number of queries regarding setup. 1: We have a live training campaign which we require all new staff members to complete. Please outline the process of having a new user…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-14T11:55:31.67+00:00
Kieran Heneghan 0 Reputation points
edited an answer 2024-11-15T18:00:59.7533333+00:00
Bhasker Donthu 615 Reputation points Microsoft Vendor
1 answer

How can I retrieve both Active and Disabled Vulnerabilities from Azure Defender for Cloud using Graph Query?

Working with the "Azure registry container images should have vulnerabilities resolved" recommendation in Defender for Cloud, my company wants to prevent this rec from effecting our security score, but without setting an exemption for the rec…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,333 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-14T19:48:45.8733333+00:00
Brian Korzen 0 Reputation points
answered 2024-11-15T00:11:15.6633333+00:00
Brian Korzen 0 Reputation points
1 answer

Azure secure score

Hi, We have issues regarding defender for cloud and secure score. There has been a massive drop the latest month. What spesific is the issue or changes that you have made? We also need information if there will be any new changes. We have customers…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-13T08:42:06.14+00:00
Karoline Hille 0 Reputation points
commented 2024-11-14T13:34:35.08+00:00
Karoline Hille 0 Reputation points
0 answers

defender is not publishing the health docker image health status even after 3 hrs

I could see azure defender cloud is not publishing health status of a docker images which got pushed to the ACR repository even after 3 hrs . This is kept on happening for multiple images randomly I have raise multiple complains not getting a proper and…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-12T13:14:17.4366667+00:00
jomi ca 0 Reputation points
commented 2024-11-14T06:03:39.2466667+00:00
Givary-MSFT 33,311 Reputation points Microsoft Employee
0 answers

OpenSSL Vulnerability Shown on Microsoft Defender for Cloud Dashboard - OneDrive affected app

An OpenSSL vulnerability has been flagged on one of our devices by Microsoft Defender for Cloud. The vulnerability has listed two dll files as the main culprits (both installed via OneDrive): libcrypto-3-x64.dll libssl-3-x64.dll The OneDrive version…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-10-31T12:38:50.5166667+00:00
Eric Wasike 35 Reputation points
commented 2024-11-14T03:05:42.6633333+00:00
Champ 1 Reputation point
0 answers

Can we send Defender for Cloud's logs to Sentinel's LAW without "Defender for cloud connector" configured in Sentinel?

Question: While deploying Defender for Cloud, if we select the same LAW (workspace) that Sentinel is using, do we still need to configure Defender for Cloud connector and configure it in Sentinel? In this scenario, do Defender for Cloud and Sentinel's…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,165 questions
asked 2024-11-12T14:28:00.0966667+00:00
Rakesh Singh 250 Reputation points
commented 2024-11-14T02:28:15.29+00:00
Navya 12,650 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Microsoft Defender for Endpoint not Onboarding

Hello, My team is having trouble onboarding Microsoft Defender for Endpoint because the Advanced Threat Protection Service won't start. It looks like the SENSE service is also not starting and is stuck in START_PENDING. I tried rebooting the device and…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-10-30T16:38:23.8766667+00:00
Trent Nolin 20 Reputation points
accepted 2024-11-13T17:10:22.29+00:00
Trent Nolin 20 Reputation points
0 answers

OpenSSL vulnerabilities in Defender for latest version Microsoft Products

My org has several OpenSSL vulnerabilities for OneDrive and Azure Disk Encryption. The CVEs are CVE-2024-4603, CVE-2024-4741, CVE-2024-5535, and Defender was said to fix inaccuracies with these last month (Sept. 2024).…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-10-15T20:07:36.4466667+00:00
Zach Hyman 70 Reputation points
commented 2024-11-12T16:51:48.3233333+00:00
Dan Clarke 0 Reputation points
1 answer

Integrating Microsoft Defender for Cloud Apps with Microsoft Defender for Cloud

The CIS Benchmark 2.1 for Azure recommends integrating Microsoft Defender for Cloud Apps with Microsoft Defender for Cloud by selecting the appropriate setting. However, the method described in the CIS document does not work for us as we cannot find the…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-09-09T08:29:48.7633333+00:00
Neha Mittal 0 Reputation points
commented 2024-11-12T15:57:51.61+00:00
Neha Mittal 0 Reputation points
1 answer

Defender recommendation issue

In Defender for cloud, I'm getting Windows virtual machines should enable Azure Disk Encryption or EncryptionAtHost recommendations, but in my Azure VM EncryptionAtHost enabled already, I have checked connection between VM and Azure monitor and also…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-09-11T15:35:44.4766667+00:00
Davit Grigoryan 16 Reputation points
commented 2024-11-12T06:28:18.95+00:00
Khushi Joshi 21 Reputation points
1 answer

Failed to save server plans for this subscription

We have parched defender for plan2, we can save all the settings without File Integrity and Monitoring settings.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-07T11:12:37.07+00:00
Noyon Chandra Das 311 Reputation points
commented 2024-11-12T04:32:31.09+00:00
Givary-MSFT 33,311 Reputation points Microsoft Employee
0 answers

Microsoft XDR (Defender) - How to export - Advanced Hunting - Custom Detection Rules

Hello everyone, Our team is trying to export the Custom Detection Rules. We have more than 50 rules, so we need an automated process that allows us to export and import the rules. Currently, we see that the API function that allows this is still in beta:…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,333 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,937 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,856 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
48 questions
asked 2024-11-07T15:08:58.0766667+00:00
viri4to 10 Reputation points
commented 2024-11-08T09:52:07.4366667+00:00
Wiszowaty, Sebastian 20 Reputation points
0 answers

Actually I created logic app work flow and I created microsoft defender so my aim is when ever trigger the logic app and we created work item as well but it run's successfully but i;m not able to saw the alearts in dev portal in azure boards

Actually I created logic app work flow and I created microsoft defender so my aim is when ever trigger the logic app and we created work item as well but it run's successfully but i;m not able to saw the alearts in dev portal in azure boards

Azure Logic Apps
Azure Logic Apps
An Azure service that automates the access and use of data across clouds without writing code.
3,222 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-08T08:08:00.1966667+00:00
Dileep p 0 Reputation points
edited the question 2024-11-08T09:26:04.2433333+00:00
Harshitha Jannapu 150 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Defender cloud for SQL

Hello, when i navigate to defender cloud i got this warning. Anyone know if this process will have downtime for the SQL? Also is there any extra cost?

Azure SQL Database
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-07T07:21:09.8333333+00:00
Handian Sudianto 5,321 Reputation points
accepted 2024-11-08T03:35:06.92+00:00
Handian Sudianto 5,321 Reputation points
2 answers One of the answers was accepted by the question author.

Microsoft Defender Variant

Hello, When we installing windows server or windows workstation, the windows defender is included and this is free of cost. Also when we have office365 subscription there are windows defender also and this is paid version. So what different between free…

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,757 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,271 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-07T00:56:34.7433333+00:00
Handian Sudianto 5,321 Reputation points
edited an answer 2024-11-08T01:42:31.49+00:00
Navya 12,650 Reputation points Microsoft Vendor
2 answers One of the answers was accepted by the question author.

Unable to compare the difference of current and new upgrade in Defender plan for storage

Current plan price in terms of the transactions count but present plan price in terms of the storage accounts count. I didn't understand difference between the current and new plan prices, features. Suppose after upgrading to new plan for the Microsoft…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,237 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,420 questions
asked 2024-11-06T05:52:07.9433333+00:00
Rajoli Hari Krishna 576 Reputation points
accepted 2024-11-08T01:11:18.2433333+00:00
Rajoli Hari Krishna 576 Reputation points