![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 88%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
1,562 questions
Transferring a subscription to a new tenant in Azure and dealing with the transition from classic to modern configurations can sometimes lead to issues with services like Microsoft Defender for Cloud (MDC) and the Vulnerability Assessment (VA) for SQL databases. Let's address your concerns step by step:
1. "Failed to Scan" Findings After Transfer
- Subscription and Tenant Transfer Impact: Transferring a subscription to a new tenant can impact configurations and permissions, which might cause temporary disruptions in services like VA.
- Re-configuration: After transferring, it's crucial to reconfigure and re-enable services like MDC and VA to ensure they align with the new tenant's settings.
- Permissions and Roles: Verify that the necessary permissions and roles are correctly assigned in the new tenant. MDC and VA require specific roles for operation.
2. Databases Classified as 'Not Applicable'
- Compatibility and Configuration: The 'Not Applicable' status might indicate a compatibility issue with the database configuration or a misconfiguration in MDC.
- Check Compatibility: Ensure that your SQL databases are compatible with the MDC vulnerability assessment. Some older versions or certain configurations might not support the latest assessment tools.
- Re-enable Services: Since you've re-enabled MDC for SQL, ensure that the configurations are correctly set up, aligning with the requirements of the VA.
3. Issues with Changing Back to Classic Configuration
- Incompatible Versions: The error message suggests that there's a version mismatch between the current VA settings and what the classic configuration expects.
- Resolving Version Conflicts: To resolve this, you may need to fully disable VA from the SQL databases and the server, then attempt to revert to the classic configuration.
- Use Azure PowerShell or CLI: Utilize Azure PowerShell or CLI scripts to disable and then re-enable VA to ensure all settings are reset correctly.
Additional Troubleshooting Steps
- Review Azure Activity Logs: Check the Azure activity logs for any errors or warnings that occurred during or after the tenant transfer.
- Consult Azure Documentation: Refer to the Microsoft Defender for Cloud documentation and the Vulnerability Assessment documentation for guidance on setting up and troubleshooting these services.
- Contact Azure Support: If the issues persist, reaching out to Azure support is advisable. They can provide more detailed assistance, especially considering the complexity of tenant transfers and service configurations.
- Monitor for Updates: After reconfiguration, monitor the services for a few days to see if the scans update their status and if the email alerts resume.
Tenant transfers and configuration changes in Azure can be complex, so it's important to methodically check each component involved in MDC and VA services.
Accept the answer if the information helped you. This will help us and others in the community as well.