Quickstart: Enable enhanced security features
In this quickstart, you'll learn how to enable the enhanced security features by enabling the Defender for Cloud plans through the Azure portal.
Microsoft Defender for Cloud uses monitoring components to collect data from your resources. These extensions are automatically deployed when you turn on a Defender plan. Each Defender plan has its own requirements for monitoring components, so it's important that the required extensions are deployed to your resources to get all of the benefits of each plan.
The Defender plans show you the monitoring coverage for each Defender plan. If the monitoring coverage is Full, all of the necessary extensions are installed. If the monitoring coverage is Partial, the information tooltip tells you what extensions are missing. For some plans, you can configure specific monitoring settings.
To learn more about the benefits of enhanced security features, see Microsoft Defender for Cloud's enhanced security features.
Prerequisites
To get started with Defender for Cloud, you'll need a Microsoft Azure subscription with Defender for Cloud enabled. If you don't have an Azure subscription, you can sign up for a free subscription.
Enable Defender plans to get the enhanced security features
To get all of the Defender for Cloud protections, you'll need to enable the Defender plans that protect for each of the workloads that you want to protect.
Note
- You can enable Microsoft Defender for Storage accounts at either the subscription level or resource level.
- You can enable Microsoft Defender for SQL at either the subscription level or resource level.
- You can enable Microsoft Defender for open-source relational databases at the resource level only.
- The Microsoft Defender plans available at the workspace level are: Microsoft Defender for Servers, Microsoft Defender for SQL servers on machines
When you enabled Defender plans on an entire Azure subscription, the protections are inherited by all resources in the subscription.
Enable enhanced security features on a subscription
To enable enhanced security features on a subscription:
Sign in to the Azure portal.
Search for and select Microsoft Defender for Cloud.
In the Defender for Cloud menu, select Environment settings.
Select the subscription or workspace that you want to protect.
Select Enable all to enable all of the plans for Defender for Cloud.
Select Save.
All of the plans are turned on and the monitoring components required by each plan are deployed to the protected resources.
If you want to disable any of the plans, turn off the plan. The extensions used by the plan aren't uninstalled but, after a short time, the extensions stop collecting data.
Enable enhanced security on multiple subscriptions or workspaces
To enable enhanced security on multiple subscriptions or workspaces:
Sign in to the Azure portal.
Search for and select Microsoft Defender for Cloud.
In the Defender for Cloud menu, select Getting started.
The Upgrade tab lists subscriptions and workspaces that you can onboard the Defender plan to.
Select the desired subscriptions and workspaces from the list and select Upgrade.
Note
- If you select subscriptions and workspaces that aren't eligible for trial, the next step will upgrade them and charges will begin.
- If you select a workspace that's eligible for a free trial, the next step will begin a trial.
If you want to disable any of the plans, turn off the plan. The extensions used by the plan aren't uninstalled but, after a short time, the extensions stop collecting data.
Next steps
Certain plans allow you to customize your protection.
- Learn about the Defender for Servers plans to help you choose which plan you want to apply to your subscription.
- Defender for Databases lets you select which type of resources you want to protect.
- Learn more about how to enable Defender for Containers for different Kubernetes environments.
- Learn about the monitoring components that the Defender plans use to collect data from your Azure, hybrid, and multicloud resources.
Feedback
Submit and view feedback for