Defender For Cloud Secure Configuration not being recognized

Jeremy Montoya 1 Reputation point
2022-11-28T21:09:52.003+00:00

Hello! I'm running a CentOS VM. I've gone through and completed recommendations, but I am having issues with "The postfix package should be uninstalled." I need to maintain postfix for an intended purpose. I'm unable to exempt this however and it continues to show this as a recommendation. I was able to exempt another condition, but how I can exempt conditions under "Remediate security configurations". Thanks.

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,566 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. KarishmaTiwari-MSFT 18,872 Reputation points Microsoft Employee
    2022-11-29T02:55:33.193+00:00

    @Jeremy Montoya Thanks for posting your query on Microsoft Q&A.

    Regarding Exemption
    Did you try the steps shared in this document to define an exemption : https://learn.microsoft.com/en-us/azure/defender-for-cloud/exempt-resource#define-an-exemption . Is that option deactivated for you? Please share the screenshot as well.

    Exemption is is created to exempt an Azure Policy. Please know that some security recommendations are not tied to specific Azure Policy and thus you cannot create exemption.

    Disable recommendations
    When your security initiative triggers a recommendation that's irrelevant for your environment, you can prevent that recommendation from appearing again. To disable a recommendation, disable the specific policy that generates the recommendation.

    The recommendation you want to disable will still appear if it's required for a regulatory standard you've applied with Defender for Cloud's regulatory compliance tools. Even if you've disabled a policy in the built-in initiative, a policy in the regulatory standard's initiative will still trigger the recommendation if it's necessary for compliance. You can't disable policies from regulatory standard initiatives.

    To see detailed explanation on the same, see Disable security policies and disable recommendations

    Please try the suggestions above and let me know the results in the comments.

    0 comments No comments