![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 68%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Not Monitored
Tag not monitored by Microsoft.
36,246 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 28.000000000000004%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
Yes, Microsoft Defender for Endpoint can be used to monitor and log suspicious activity on a Citrix application running in Azure. In addition, Azure Security Center provides continuous monitoring and alerting for suspicious activity on Azure resources, including virtual machines hosting Citrix applications.
To enable monitoring of Citrix applications running in Azure, you can follow these steps:
- Deploy the Microsoft Monitoring Agent to the Citrix virtual machine. This agent is required to collect data from the virtual machine and send it to Microsoft Defender for Endpoint.
- Install the Microsoft Defender for Endpoint sensor on the Citrix virtual machine. This sensor collects data on processes, network connections, and other activities on the virtual machine.
- Configure Microsoft Defender for Endpoint to monitor the Citrix virtual machine. This involves creating a new machine group in Microsoft Defender for Endpoint and adding the Citrix virtual machine to this group.
- Monitor the Citrix virtual machine for suspicious activity using the Microsoft Defender for Endpoint portal. You can view alerts on suspicious activity in the portal and take action to remediate any issues.