Types de ressources et de services pris en charge pour le multicloud dans le fournisseur CSPM de base

Cette page répertorie les types de ressources et de services pris en charge pour Amazon Web Services (AWS) et Google Cloud Platform (GCP) dans le niveau CSPM (Cloud Security Posture Management) de base de Defender pour le cloud.

Types des ressources pris en charge pour AWS

Espace de noms de fournisseur	Nom du type de ressource
AccessAnalyzer	AnalyzerSummary
ApiGateway	Étape
AppSync	GraphqlApi
ApplicationAutoScaling	ScalableTarget
AutoScaling	AutoScalingGroup
AWS	Compte
AWS	AccountInRegion
CertificateManager	CertificateTags
CertificateManager	CertificateDetail
CertificateManager	CertificateSummary
CloudFormation	StackSummary
CloudFormation	StackTemplate
CloudFormation	StackInstanceSummary
CloudFormation	Pile
CloudFormation	StackResourceSummary
CloudFront	DistributionConfig
CloudFront	DistributionSummary
CloudFront	DistributionTags
CloudTrail	EventSelector
CloudTrail	Trail
CloudTrail	TrailStatus
CloudTrail	TrailTags
CloudWatch	MetricAlarm
CloudWatch	MetricAlarmTags
CloudWatchLogs	LogGroup
CloudWatchLogs	MetricFilter
CodeBuild	Project
CodeBuild	Nom du projet
CodeBuild	SourceCredentialsInfo
ConfigService	ConfigurationRecorder
ConfigService	ConfigurationRecorderStatus
ConfigService	DeliveryChannel
DAX	Cluster
DAX	ClusterTags
DatabaseMigrationService	ReplicationInstance
DynamoDB	ContinuousBackupsDescription
DynamoDB	TableDescription
DynamoDB	TableTags
DynamoDB	TableName
EC2	Instantané
EC2	Sous-réseau
EC2	Volume
EC2	VPC
EC2	VpcEndpoint
EC2	VpcPeeringConnection
EC2	Instance
EC2	AccountAttribute
EC2	Adresse
EC2	CreateVolumePermission
EC2	EbsEncryptionByDefault
EC2	FlowLog
EC2	Image
EC2	InstanceStatus
EC2	InstanceTypeInfo
EC2	NetworkAcl
EC2	NetworkInterface
EC2	Région
EC2	Réservation
EC2	RouteTable
EC2	SecurityGroup
ECR	Image
ECR	Référentiel
ECR	RepositoryPolicy
ECS	TaskDefinition
ECS	ServiceArn
ECS	Service
ECS	ClusterArn
ECS	TaskDefinitionTags
ECS	TaskDefinitionArn
EFS	FileSystemDescription
EFS	MountTargetDescription
EKS	Cluster
EKS	Nodegroup
EKS	NodegroupName
EKS	Nom du cluster
EMR	Cluster
ElasticBeanstalk	ConfigurationSettingsDescription
ElasticBeanstalk	EnvironmentDescription
ElasticLoadBalancing	LoadBalancerTags
ElasticLoadBalancing	LoadBalancer
ElasticLoadBalancing	LoadBalancerAttributes
ElasticLoadBalancing	LoadBalancerPolicy
ElasticLoadBalancingV2	LoadBalancerTags
ElasticLoadBalancingV2	Règle
ElasticLoadBalancingV2	TargetGroup
ElasticLoadBalancingV2	TargetHealthDescription
ElasticLoadBalancingV2	LoadBalancer
ElasticLoadBalancingV2	Port d'écoute
ElasticLoadBalancingV2	LoadBalancerAttribute
Elasticsearch	DomainInfo
Elasticsearch	DomainStatus
Elasticsearch	DomainTags
GuardDuty	DetectorId
Iam	AccountAlias
Iam	AttachedPolicyType
Iam	CredentialReport
Iam	Groupe
Iam	InstanceProfile
Iam	MFADevice
Iam	PasswordPolicy
Iam	ServerCertificateMetadata
Iam	SummaryMap
Iam	Utilisateur
Iam	UserPolicies
Iam	VirtualMFADevice
Iam	ManagedPolicy
Iam	ManagedPolicy
Iam	AccessKeyLastUsed
Iam	AccessKeyMetadata
Iam	PolicyVersion
Iam	PolicyVersion
Interne	Iam_EntitiesForPolicy
Interne	Iam_EntitiesForPolicy
Interne	AwsSecurityConnector
KMS	KeyPolicyName
KMS	KeyRotationStatus
KMS	KeyTags
KMS	KeyPolicy
KMS	KeyMetadata
KMS	KeyListEntry
KMS	AliasListEntry
Lambda	FunctionCodeLocation
Lambda	FunctionConfiguration
Lambda	FunctionPolicy
Lambda	FunctionTags
Macie2	JobSummary
Macie2	MacieStatus
NetworkFirewall	Pare-feu
NetworkFirewall	FirewallMetadata
NetworkFirewall	FirewallPolicy
NetworkFirewall	FirewallPolicyMetadata
NetworkFirewall	RuleGroup
NetworkFirewall	RuleGroupMetadata
Services Bureau à distance	ExportTask
Services Bureau à distance	DBClusterSnapshot
Services Bureau à distance	DBSnapshot
Services Bureau à distance	DBSnapshotAttributesResult
Services Bureau à distance	EventSubscription
Services Bureau à distance	DBCluster
Services Bureau à distance	DBInstance
Services Bureau à distance	DBClusterSnapshotAttributesResult
RedShift	LoggingStatus
RedShift	Paramètre
Redshift	Cluster
Route53	HostedZone
Route53	ResourceRecordSet
Route53Domains	DomainSummary
S3	S3Region
S3	S3BucketTags
S3	S3Bucket
S3	BucketPolicy
S3	BucketEncryption
S3	BucketPublicAccessBlockConfiguration
S3	BucketVersioning
S3	LifecycleConfiguration
S3	PolicyStatus
S3	ReplicationConfiguration
S3	S3AccessControlList
S3	S3BucketLoggingConfig
S3Control	PublicAccessBlockConfiguration
SNS	Abonnement
SNS	Rubrique
SNS	TopicAttributes
SNS	TopicTags
SQS	File d'attente
SQS	QueueAttributes
SQS	QueueTags
SageMaker	NotebookInstanceSummary
SageMaker	DescribeNotebookInstanceTags
SageMaker	DescribeNotebookInstanceResponse
SecretsManager	SecretResourcePolicy
SecretsManager	SecretListEntry
SecretsManager	DescribeSecretResponse
SimpleSystemsManagement	ParameterMetadata
SimpleSystemsManagement	ParameterTags
SimpleSystemsManagement	ResourceComplianceSummary
SimpleSystemsManagement	InstanceInformation
WAF	LoggingConfiguration
WAF	WebACL
WAF	WebACLSummary
WAFV2	ApplicationLoadBalancerForWebACL
WAFV2	WebACLSummary

Resource types supported in GCP

Espace de noms de fournisseur	Nom du type de ressource
ApiKeys	Clé
ArtifactRegistry	Image
ArtifactRegistry	Référentiel
ArtifactRegistry	RepositoryPolicy
Bigquery	Dataset
Bigquery	DatasetData
Bigquery	Table
Bigquery	TablePolicy
Bigquery	TablesData
CloudKMS	CryptoKey
CloudKMS	CryptoKeyPolicy
CloudKMS	KeyRing
CloudKMS	KeyRingPolicy
CloudResourceManager	Project
CloudResourceManager	Ancêtre
CloudResourceManager	AncestorPolicy
CloudResourceManager	EffectiveOrgPolicy
CloudResourceManager	Dossier
CloudResourceManager	FolderPolicy
CloudResourceManager	Organization
CloudResourceManager	OrganizationPolicy
CloudResourceManager	Stratégie
Compute	Instance
Compute	BackendService
Compute	BackendService
Compute	Disque
Compute	EffectiveFirewalls
Compute	Pare-feu
Compute	ForwardingRule
Compute	GlobalForwardingRule
Compute	InstanceGroup
Compute	InstanceGroupInstance
Compute	InstanceGroupManager
Compute	InstanceGroupManager
Compute	InstanceTemplate
Compute	MachineType
Compute	ManagedInstance
Compute	ManagedInstance
Compute	Réseau
Calcul	NetworkEffectiveFirewalls
Compute	Project
Compute	SslPolicy
Compute	Subnetwork
Compute	TargetHttpProxy
Compute	TargetHttpsProxy
Compute	TargetPool
Compute	TargetSslProxy
Compute	TargetTcpProxy
Compute	UrlMap
Conteneur	Cluster
Dns	ManagedZone
Dns	Stratégie
IAM	OrganizationRole
IAM	ProjectRole
IAM	Rôle
IAM	ServiceAccount
IAM	ServiceAccountKey
Interne	GcpSecurityConnector
Logging	AncestorLogSink
Logging	LogEntry
Logging	LogMetric
Logging	LogSink
Surveillance	AlertPolicy
OsConfig	OSPolicyAssignment
OsConfig	OSPolicyAssignmentReport
SQLAdmin	DatabaseInstance
SecretManager	Secret
SecretManager	SecretPolicy
Stockage	Compartiment
Stockage	BucketPolicy

En savoir plus

• Passez en revue les fonctionnalités prises en charge dans les environnements cloud Azure pour plus d’informations sur la couverture commerciale et nationale du cloud.
• Regardez Prédire les futurs incidents de sécurité ! Gestion de la posture de sécurité cloud avec Microsoft Defender.
• Découvrez les normes et recommandations de sécurité.
• En savoir plus sur le degré de sécurisation.