How to leverage Defender for Identity for Azure Domain Services

Rizwan Assad 341 Reputation points
2024-02-02T06:46:04.56+00:00

Is there a way to install sensor for Azure DS? we are fully cloud based, however there are some legacy apps that are still accessing some vms which are joined to azure DS, so can we use / install the sensor to look at those identities?

Microsoft Security | Microsoft Defender | Microsoft Defender for Identity
0 comments No comments
{count} votes

Accepted answer
  1. Catherine Kyalo 2,085 Reputation points Microsoft Employee
    2024-02-13T08:45:31.3466667+00:00

    Hi @Rizwan Assad No, currently Microsoft Defender for Identity doesn't support Azure AD Domain Services. The Defender for Identity sensor can't be installed on Azure AD DS managed domain controllers. Microsoft Defender for Identity only supports Active Directory Domain Services, where you can install the sensor on domain controllers. It's designed to monitor domain controller traffic in order to identify and report malicious activity. For Azure AD, you can use Azure AD Identity Protection to get risk-based Conditional Access to protect your environment. Azure AD Identity Protection uses adaptive machine learning algorithms and heuristics to detect suspicious activities. https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.