One Microsoft Defender For Cloud For Multi Tenant

Taha Khan 20 Reputation points
2023-12-22T15:02:35.29+00:00

Hi Support,

Please let me know. Can I use one Microsoft Defender for Cloud for Multi-Tenant(B2B)? Because I have 3 clients I want to use only one defender for the cloud.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,460 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,201 questions
0 comments No comments
{count} votes

Accepted answer
  1. Akshay-MSFT 17,896 Reputation points Microsoft Employee
    2023-12-26T07:22:24.3333333+00:00

    @Taha Khan

    Thank you for posting your query on Microsoft Q&A. From above description I could understand that you have multiple Azure tenants, and you want to manage them all with single Microsoft defender for cloud.

    Please do correct me if this is not the issue by responding in the comments section:

    You could achieve above ask with Cross-tenant management in Defender for Cloud via Azure Lighthouse.

    Cross-tenant management enables you to view and manage the security posture of multiple tenants in Defender for Cloud by leveraging Azure Lighthouse. Manage multiple tenants efficiently, from a single view, without having to sign into each tenant's directory.

    Below are some of the key scenarios where cross-tenant management can be especially effective.

    • Cross-tenant visibility
      • Monitor compliance with security policies and ensure security coverage across all tenants' resources
        • Continuous regulatory compliance monitoring across multiple tenants in a single view
          • Monitor, triage, and prioritize actionable security recommendations with secure score calculation
    • Cross-tenant security posture management
      • Manage security policies
        • Take action on resources that are out of compliance with actionable security recommendations
          • Collect and store security-related data
    • Cross-tenant threat detection and protection
      • Detect threats across tenants' resources
        • Apply advanced threat protection controls such as just-in-time (JIT) VM access
          • Harden network security group configuration with Adaptive Network Hardening
            • Ensure servers are running only the applications and processes they should be with adaptive application controls
              • Monitor changes to important files and registry entries with File Integrity Monitoring (FIM)
    • Note that the entire subscription must be delegated to the managing tenant; Microsoft Defender for Cloud scenarios are not supported with delegated resource groups.

    Kindly follow Onboard a customer to Azure Lighthouse to Set up cross-tenant management.


    Please "Accept the answer (Yes)" and "share your feedback ". This will help us and others in the community as well.

    Thanks,

    Akshay Kaushik

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.