Edit

Share via

Review security posture (preview)

  • Article

Azure Backup offers security features at the vault level to safeguard the backup data stored in it. These security measures encompass the settings associated with the Azure Backup solution for the vault and apply to the protected data sources contained within the vault.

Azure Business Continuity center (preview) allows you to view the Security level for each protected item from the Security posture view.

View security level

Follow these steps to view the security level for protected items:

  1. In Azure Business Continuity center, select the Security posture view under Security + Threat management.

    Screenshot shows the security posture selection.

  2. In this view, you can see a list of all the protected items and their security level across subscription, resource groups, location, type, and so on, along with their properties.

    Screenshot shows the security level of selected items in a table selection.

  3. To effectively look for specific items, you can utilize the various filters, such as subscriptions, resource groups, location, resource type, and so on.

  4. Azure Business Continuity center allows you to change the default view using the scope picker from Currently showing: Protection status details of Azure managed Active resources, and select Change.

    Screenshot shows the change scope view.

  5. To change the scope for Security posture view from the scope picker, select the required options:

    • Resource status:
      • Active resources - Resources that are currently active, which are not deleted.
      • Deprovisioned resources - Describes resources that no longer exist, yet their backup and recovery points are retained.

  6. The BCDR Security assessment score shows the percentage and count of the protected items having adequate or maximum security.

    Screenshot shows bcdr security assessment selection view.

  7. Summary cards display an aggregated count for each security level, considering the applied filters. These cards can be selected to refine the filtering of the Protected items table. The security level reflects the security settings configured through the implemented solutions for data protection.

    Screenshot shows the summary cards view.

  8. You can also search by specific item name to get the information specific to it.

    Screenshot shows the search specific item search box view.

  9. Use Select columns from the menu at the top of the view to add or remove columns.

    Screenshot shows the select columns selection.

  10. You can select the item name or select the more icon > View details action menu to navigate and view further details for an item.

    Screenshot shows the view details selection.

  11. Azure Business Continuity center provides in-built help to learn more about these security levels. Select learn more to access it.

    Screenshot shows learn more selection.

  12. The help provides guidance on the various security levels and the settings that are required to meet each level.

    Screenshot shows the security levels details selection.

Modify security level

In Azure Business Continuity center, you can change the security level for a protected item.

Follow these steps to modify the security level for an item:

  1. On the Security posture view under Security + Threat management, select item name for a datasource.

    Screenshot shows the item name selection for a datasource.

  2. On the item details page, you can view the vault used to protect the item. Select the vault name.

    Screenshot shows the select vault name selection on item details page.

  3. On the vault properties page, modify the security settings as required.

    Screenshot shows the modify security settings on properties page.

    It might take a while to get the security level settings implemented in Azure Business Continuity center.

  4. When you modify the security setting for a vault, it gets applied to all the protected datasources by Azure Backup in that vault.

Next steps