Azure Lighthouse
An Azure service that provides secure managed services and access control for partners and customers.
89 questions
Broken management of Defender EASM via Azure Lighthouse
Sascha Reuter
30
Reputation points
We try to manage Defender EASM from a customer using Azure Lighthoure.
We have Contributor Rights to the Customer Subscription using Azure Lighthouse ARM Template.
Everything in the Customer Subscription can be managed fine, but management of Defender EASM is totally broken when being managed via Azure Lighthouse.
Sometimes we get the message that we do not have access to the ressource.
Then we click on our own Defender EASM Instance in our management resource group and then click back again on Defender EASM in the customer Defender EASM and then it works! Totally strange.
However in the defender EASM overview and also other menus we see strangest errors (empty field, 0 assets, "Malformed Query" when visiting the EASM Inventory.
This problem is not tied to a particular customer tenant, but is fully reproducable also with other customer tenants. We get the impression that Defender EASM is somehow incompatible with Azure Lighthouse.
Any hints on what to do?
{count} votes
-
Luke Murray 11,351 Reputation points MVP2025-04-09T08:19:46.1066667+00:00 I've had issues with Lighthouse and Defender (not EASM) before, mainly due to customer management groups being named the same thing. EASM SHOULD be supported. This is something I would open a Microsoft support case about with a HAR trace of you capturing the issue, through the Azure Portal support.
-
Sascha Reuter 30 Reputation points
2025-04-10T08:35:12.97+00:00 Is there a specific website where I can open such ticket. An azure subscription only gets me some bot answers from Help+Support and wants me to buy a support subscription when I actually want to talk to somebody.
But in this case I am pretty sure that something is broken on Microsoft side, so I am not willing to pay that extra. I will try the "Feedback" Option on EASM with my error description, hoping that someone will read this.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Ashok Gandhi Kotnana 5,705 Reputation points Microsoft External Staff2025-04-15T05:36:57.95+00:00 Hi @Sascha Reuter ,
To open a support ticket for issues related to Microsoft Defender for Endpoint or Azure Lighthouse, you can use the support options available in the respective portals. If you are experiencing issues that you believe are on Microsoft's side, you can submit a service request through the Microsoft Defender for Endpoint support or the Microsoft 365 Lighthouse support options.
For Microsoft Defender for Endpoint, you can fill in a support request form with details about the issue you are facing. Similarly, for Microsoft 365 Lighthouse, you can access the Help & support section to create a service request if the self-help options do not resolve your issue.
If you have a premier support contract, you will see options for that; otherwise, you may need to use the general support options available.
https://learn.microsoft.com/en-us/defender-endpoint/contact-support#open-a-service-request
If the answer is helpful, please do "Upvote it".
-
Ashok Gandhi Kotnana 5,705 Reputation points Microsoft External Staff
2025-04-16T02:33:33.4066667+00:00 Hi @Sascha Reuter ,
I just wanted to check if the above provided information worked for you or if you need any further assistance?
Please feel free to let us know, as we are always here to help whenever you need us.
Additionally, if you have a moment, please do upvote it if the information provided has been helpful. This can be beneficial to other community members and would be greatly appreciated.
Thank you.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 77%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Srinivasa Reddy Jaggavarapu 460 Reputation points Microsoft External Staff2025-04-17T01:27:56.0866667+00:00 Hi Sascha Reuter,
Just checking in to see if the below answer provided by @Ashok Gandhi Kotnana helped. If this answers your query, do click upvote it if this was helpful. And, if you have any further query do let us know.
Sign in to comment
Sign in to answer