Share via

Integration with Oracle OCI

Sergy Lopez 161 Reputation points
2022-09-13T18:36:38.44+00:00

I want to check the Security Posture of all the services that I have with Oracle OCI with Defender for Cloud in Azure, but I dont see that this could be possible, so I want to know how can we make the connection to check our security posture in Defender For Cloud.

Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
0 comments
Accepted answer
  1. JamesTran-MSFT 36,906 Reputation points Microsoft Employee Moderator
    2022-09-19T23:43:40.783+00:00

    @Sergy Lopez
    Thank you for your post and I apologize for the delayed response!

    When it comes to integrating your Oracle OCI resources with Microsoft Defender for Cloud, you'll only be able to monitor your Oracle VM's since Microsoft Defender for Cloud monitors VMs/VMSS and the Azure PaaS services listed in the Microsoft Defender for Cloud Product Overview. To onboard your Oracle VMs to Microsoft Defender for Cloud, you can do this via Azure Arc-enabled servers, which lets you manage Windows and Linux physical servers and virtual machines hosted outside of Azure, on your corporate network, or other cloud provider.

    You can connect your non-Azure computers in any of the following ways:

    Using Azure Arc-enabled servers (recommended):

    Defender for Cloud's pages in the Azure portal (Getting started and Inventory):
    242725-image.png

    Additional Links:
    Defend resources running on other clouds
    Azure Arc-enabled servers - Supported cloud operations

    Since integrating your other Oracle OCI resources (AI, Guard, Databases, Vaults, etc.) currently isn't a support feature of Defender for Cloud, I'd recommend leveraging our User Voice forum and creating a feature request, so our engineering team can look into implementing this. I've also created an internal feature request, so our engineering team is aware of this as well.

    If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

    ----------

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 42,491 Reputation points
    2022-09-13T19:50:39.367+00:00

    Hi Sergey,

    Not sure what type of Security Framework or deployment is in OCI but Microsoft Defender for Cloud enables every subscription based on the Azure Security Benchmark. This benchmark is the Microsoft-authored, Azure-specific set of guidelines for security and compliance best practices based on common compliance frameworks. This widely respected benchmark builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security.

    More detailed info of the Azure Benchmark is here - introduction

    There is an option to get and setup your own custom policies, including adding regulatory compliance standards as initiatives - Defender for Cloud's regulatory compliance dashboard shows the status of all the assessments within your environment in the context of a particular standard or regulation (such as Azure CIS, NIST SP 800-53 R4, SWIFT CSP CSCF-v2020).

    Here the tutorial will show how the Regulatory compliance checks can be followed and improved after the assesment so you can try this and apply the settings - regulatory-compliance-dashboard

    Hope this helps in making a decision, I am sure this is one of the best in the market currently and amazing features from Microsoft.

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.