This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Which vulnerability scanning method is available in both Defender for Servers Plan 1 and Plan 2?
Agentless scanning using periodic disk snapshots
Agent-based scanning via the Defender for Endpoint sensor
Bring-your-own-license (BYOL) scanning using Qualys or Rapid7
You need to enable vulnerability scanning for a subscription that has Defender for Servers already active. Where do you configure the Vulnerability assessment toggle in the Azure portal?
Defender for Cloud > Regulatory compliance > Compliance standards
Defender for Cloud > Recommendations > Machines should have a vulnerability assessment solution
Defender for Cloud > Environment settings > subscription > Defender for Servers plan Settings > Settings and monitoring
Contoso Manufacturing wants to suppress vulnerability findings for software managed by an external vendor under a contractual security agreement. Which criteria can they specify in a Defender for Cloud disable rule?
Categories, CVEs, CVSS scores, minimum severity, and patchable status
Resource group name, VM operating system, and Azure region
Subscription ID, deployment date, and patch release version
What prerequisite must be met on an Azure VM before you can use Block Vulnerable Applications?
The VM must have a network security group with outbound rules restricting internet access
Microsoft Defender Antivirus must be in active mode on the VM
The VM must be onboarded to Azure Automanage and assigned a configuration profile
You must answer all questions before checking your work.
Was this page helpful?
Need help with this topic?
Want to try using Ask Learn to clarify or guide you through this topic?