Disabling recommendations in Azure CSPM Preview
We are using Defender for Cloud with both the Microsoft cloud security benchmark and Azure CSPM (Preview) security policy standards.
Where we have a use-case for disabling a recommendation in MCSB, I can easily do this as it is managed via Azure Policy and can either disabled via the security policies page or via the MCSB assignment in policy. However, I have a requirement to disable a recommendation from Azure CSPM and am unable to do this.
There is no underlying policy so cannot be disabled there, the recommendations are not editable in the Security Policies page and there is no option to exempt resources.
Any suggestions on how I can configure a recommendation (such as "EDR configuration issues should be resolved on virtual machines") so that it does not report in the Defender for Cloud recommendations to our users ?
Thanks
Dominic