Virtual Machine onboarding problem to vulnerability assessment

Question

Virtual Machine onboarding problem to vulnerability assessment

Kasper Kornak 20

I have enabled Microsoft Defender as a vulnerability assessment tool for all my VMs within a subscription. Three of them show up in Advisor with title: "Machines should have a vulnerability assessment solution" and details: "Virtual Machine onboarding problem to vulnerability assessment. Make sure it’s properly onboarded to Microsoft Defender for Endpoint.". I tried fixing them via Azure portal, as well as uninstalling and installing them. In the Extensions + VM Applications tam on Azure portal all Extensions have status: Provisioning succeeded. Any tips how to solve this problem? Out of about 50 VMs, only three encountered this problem.

deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2024-02-15T20:26:14.2166667+00:00

@Kasper Kornak
Have you waited 24 hours after fixing the VMs? It can take some time for the VMs to appear in the healthy tab. If the VMs are still reporting as unhealthy it is possible that there is some communication issue preventing the VMs from registering with Defender for Cloud. You can review the troubleshooting steps and network requirements here:
https://learn.microsoft.com/en-us/azure///defender-for-cloud/troubleshooting-guide#monitor-network-connectivity-problems-for-the-agent
Let me know if that doesn't resolve your issue and we can work with you directly to further troubleshoot.
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2024-03-06T05:51:17.4033333+00:00

@Kasper Kornak

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer (Yes)" and "share your feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Accepted answer

0 additional answers

Your answer

deherman-MSFT 38,021 Reputation points Microsoft Employee Moderator

2024-02-15T20:26:14.2166667+00:00

@Kasper Kornak
Have you waited 24 hours after fixing the VMs? It can take some time for the VMs to appear in the healthy tab. If the VMs are still reporting as unhealthy it is possible that there is some communication issue preventing the VMs from registering with Defender for Cloud. You can review the troubleshooting steps and network requirements here:
https://learn.microsoft.com/en-us/azure///defender-for-cloud/troubleshooting-guide#monitor-network-connectivity-problems-for-the-agent
Let me know if that doesn't resolve your issue and we can work with you directly to further troubleshoot.
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator

2024-03-06T05:51:17.4033333+00:00

@Kasper Kornak

Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer (Yes)" and "share your feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Answer 1

@Kasper Kornak

Hope you followed the suggestion posted by deherman-MSFT, i.e, waiting for 24 hours after enabling the vulnerability solution:

User's image

If that did not work, try and validate if there are any pending updates on the dependency's extension, kindly try updating them.

User's image

Also validate if "defender for servers" service is running on the impacted VM, like in my case I have defender for SQL so respective service must be running:

User's image

If you don't see the service, then validate if the VM have the following folder or not in C:/Packages/Plugins/ with name similar to Microsoft.Azure.AzureDefenderForServer

If folder is not found try to copy it from any working VM on this location, restart the VM and try running the service.

Please "Accept the answer (Yes)" and "share your feedback ". This will help us and others in the community as well.

Thanks,

Akshay Kaushik

Share via

Virtual Machine onboarding problem to vulnerability assessment

0 additional answers

Your answer