1,392 questions with Microsoft Defender for Cloud-related tags

Sort by: Updated
Updated Created Answers
2 answers

How to remediate the Microsoft Defender recommendation "Update Openssl Openssl".

Microsoft Defender recommendation shows the recommendation "Update Openssl Openssl" for one of my VMs. Can anyone assist how to remediate this recommendation.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-10T08:56:55.7766667+00:00
Christeena Saji 0 Reputation points
answered 2024-10-19T04:23:34.9333333+00:00
Christeena Saji 0 Reputation points
0 answers

Setting defender settings for storage account via bicep does not work

I have included the following in my bicep in order to use Microsoft defender for cloud for my storage account (see code below). The pipeline that deploys the resources in azure goes through without issues and Microsoft defender for cloud gets enabled.…

Azure Storage Accounts
Azure Storage Accounts
Globally unique resources that provide access to data management services and serve as the parent namespace for the services.
3,183 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-18T10:43:34.2733333+00:00
Sabine Seljeseth 0 Reputation points
edited the question 2024-10-18T15:26:27.92+00:00
VarunTha 8,935 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

Initiate MDE scan for remote device

How can i initiate a quick / Full scan from remote a device. Pre-condition: Source & target device can ping each other, same network. & both have onboarded to MDE and have updated defender. Note: I dont want to initiate scan from endpoint portal…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,993 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-15T09:01:23.8533333+00:00
alta94 2,181 Reputation points
commented 2024-10-18T14:09:20.0833333+00:00
alta94 2,181 Reputation points
0 answers

Identity Secure Score Regression without making any changes

Hello, Our Identity Secure Score in Entra ID has dropped from 79.98% to 50.36% without any changes made on our part. Using Microsoft Defender, we can view the Microsoft Secure Score, which is different from the Entra Identity Secure Score. However, we…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,904 questions
asked 2024-10-18T12:46:11.64+00:00
LM-5132 80 Reputation points
commented 2024-10-18T13:01:18.48+00:00
LM-5132 80 Reputation points
1 answer

Failing to configure Defender for Servers File Integrity Monitoring

I don't have Owner role (and cannot have in the tenant I'm working) but I have Security Admin role and also custom role which allows me to enable for example all features of Defender for Storage and also all features of Defender for Servers. Except that…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-09-04T06:02:06.65+00:00
Mika Pitkänen 40 Reputation points
commented 2024-10-18T10:29:00.9066667+00:00
Mika Pitkänen 40 Reputation points
0 answers

About safe attachments

We are currently enabling dynamic delivery of "safe attachments" for some users. It has been working well recently and I haven't had any issues with attachments not being able to be opened for a while because they are being scanned, but we have…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-18T04:10:56.35+00:00
サンデャ 管理者 60 Reputation points
1 answer

MDC reports vunerabilities about OpenSSL used by lastest Azure VM extensions

Hi, Trying to improve my MDC secure score. OpenSSL seems to be a big part of the vulnerability findings. When diggning I found out that in any cases the culprit where related to ADE 2.4.0.23 (version 2.3.0 didn't seem to use openssl): openssl used is…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,929 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-09-13T13:38:00.23+00:00
Dufour, Francois 41 Reputation points
commented 2024-10-18T01:12:25.0133333+00:00
anashetty 335 Reputation points Microsoft Vendor
1 answer

Resolving Windows servers should be configured to use secure communication protocols - windows 2019

I have got a recommendation on Azure advisor for the below item Resolving Windows servers should be configured to use secure communication protocols Its not clear how to fix the advisor alert, however there is a list of tasks detailed below. Enable…

Azure Virtual Machines
Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
7,929 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-17T13:59:25.4866667+00:00
MrFlinstone 581 Reputation points
answered 2024-10-17T21:05:27.6733333+00:00
deherman-MSFT 37,331 Reputation points Microsoft Employee
2 answers One of the answers was accepted by the question author.

Help with Microsoft Defender Quarantine - Allowing Secure Emails After Review

Hi everyone, I’m having trouble with Microsoft Defender for Office 365, specifically related to releasing a secure email from quarantine. The email has been identified as safe, but it's still being blocked. Here are the steps I’ve already taken to…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,993 questions
Windows 365 Business
Outlook Management
Outlook Management
Outlook: A family of Microsoft email and calendar products.Management: The act or process of organizing, handling, directing or controlling something.
5,244 questions
Microsoft Exchange Online Management
Microsoft Exchange Online Management
Microsoft Exchange Online: A Microsoft email and calendaring hosted service.Management: The act or process of organizing, handling, directing or controlling something.
4,542 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-04T22:47:28.2766667+00:00
Larry Shockey 20 Reputation points
accepted 2024-10-17T20:00:54.2366667+00:00
Larry Shockey 20 Reputation points
1 answer

OpenSSL vulnerabilities in Defender for latest version Microsoft Products

My org has several OpenSSL vulnerabilities for OneDrive and Azure Disk Encryption. The CVEs are CVE-2024-4603, CVE-2024-4741, CVE-2024-5535, and Defender was said to fix inaccuracies with these last month (Sept. 2024).…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-15T20:07:36.4466667+00:00
Zach Hyman 5 Reputation points
answered 2024-10-17T15:39:33.0766667+00:00
Luke 0 Reputation points
1 answer

Integrating Microsoft Defender for Cloud Apps with Microsoft Defender for Cloud

The CIS Benchmark 2.1 for Azure recommends integrating Microsoft Defender for Cloud Apps with Microsoft Defender for Cloud by selecting the appropriate setting. However, the method described in the CIS document does not work for us as we cannot find the…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-09-09T08:29:48.7633333+00:00
Neha Mittal 0 Reputation points
answered 2024-10-17T15:19:31.8933333+00:00
Hossein Rouhani 0 Reputation points
0 answers

Incidents in Microsoft Sentinel Auto-Closing Without Automation Rules

I'm currently using Microsoft Sentinel and noticing that some incidents are automatically closing themselves, sometimes with the reason "resolved at source" or no comment at all. I've checked for any automation rules or playbooks that might be…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,146 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,904 questions
asked 2024-10-17T14:15:27.48+00:00
Hyago Santana Mariano 0 Reputation points
0 answers

Move Defender IoT device to new Azure Tenant

Hi All, We have a Defender for IoT Device on one of our sites for OT that is currently activated against a tenant that we have no access to. We want to move the Defender for IoT device to our own tenant. Is there a way on to do this without having access…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Azure IoT Operations
Azure IoT Operations
Azure IoT Operations is a set of modular services enabled by Azure Arc.
27 questions
asked 2024-10-16T13:24:21.8066667+00:00
Jason P 141 Reputation points
commented 2024-10-16T20:55:37.7566667+00:00
James Hamil 24,841 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Abusive traffic from Azure, but Microsoft does not care?

Hi! Almost daily there are from 500K to 3.2 million connection attempts from one IP in the Azure network, in total we have had 164.159.454 requests from that IP since June 1st, those requests are both basic port scanning and then attempts to exploit…

Azure DDos Protection
Azure DDos Protection
An Azure service that provides defense against distributed denial-of-service (DDoS) attacks.
71 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,807 questions
asked 2022-10-26T19:37:47.587+00:00
Guðmundur Már Kristjánsson 21 Reputation points
commented 2024-10-16T09:17:43.71+00:00
NY 0 Reputation points
0 answers

Action center: I can't approve

When I go to the action center, there are sometimes some mails that need a soft-delete approval and it doesn't allow to apply that. In some occasions, I go to the investigation and I can take the actions from there, but other times it is impossible. Why…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-11T08:03:20.72+00:00
Noisy-6527 21 Reputation points
edited the question 2024-10-15T11:58:52.5966667+00:00
kguntaka 2,940 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

How to edit the "User Notification Email" which user receives after Email analyst choose the option "Mark and Nofity User"

How to edit the "User Notification Email" which user receives after email analyst choose the option "Mark and Nofity User"

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-07T11:51:48.3866667+00:00
Bhati, Vijeta 40 Reputation points
accepted 2024-10-15T05:02:01.71+00:00
Bhati, Vijeta 40 Reputation points
1 answer

Blank pages or menu in Microsoft Defender for Cloud

Hi, I have some issues with using Defender for Cloud recently. I am trying to manage my compliance standards to monitor for my subscriptions using the "Regulatory compliance" blade. But as is showing my screenshot, the menu bar is missing. I…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-06-27T08:41:13.86+00:00
David T 0 Reputation points
commented 2024-10-15T04:23:17.65+00:00
A M ANISUL HUQ 0 Reputation points
1 answer

How do i track a user browsing activities in intune or defender?

Dear All, I would like to review a user browsing history. In Defender advance hunting, i had entered the following queries (from copilot) but when i run, there is no data returned, anyone know how modify the code so that it return the user browsing…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
asked 2024-10-11T07:32:32.76+00:00
Yong Chin Kuo 0 Reputation points
answered 2024-10-14T21:56:11.97+00:00
James Hamil 24,841 Reputation points Microsoft Employee
1 answer

What permission do I need to access Microsoft Defender - Incidents?

I'm currently accessing a incident on our environment but I can't access it. It gives my this error message. "You can’t access this section. Sorry, you can’t access this section. Check with your administrator for the role-based access permissions…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
4,993 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-03-12T13:12:45.6966667+00:00
GeneR 0 Reputation points
commented 2024-10-14T18:33:17.5266667+00:00
Sarah Pierce 0 Reputation points
0 answers

MS Defender - How to manage Tenant Allow/Block Lists with graph api

Hi, I'm trying to create an integration to block certain URLs on Microsoft Defender with the Graph API. After looking into the documentation, I found this endpoint:…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,113 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,392 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-07-10T08:21:08.0666667+00:00
Omer Dital 10 Reputation points
commented 2024-10-14T18:32:58.2133333+00:00
Nicolas Mourad 0 Reputation points