Policy: Azure > CIS v2.0 > 02 - Microsoft Defender > 2.01 - Microsoft Defender for Cloud > 2.01.12 - Ensure That Microsoft Defender for Resource Manager Is Set To 'On'

Configures auditing against a CIS Benchmark item.

Level: 2

Microsoft Defender for Resource Manager scans incoming administrative requests to change your infrastructure from both CLI and the Azure portal.

Scanning resource requests lets you be alerted every time there is suspicious activity in order to prevent a security threat from being introduced.

Resource Types

This policy targets the following resource types:

Azure > Security Center > Security Center

Primary Policy

This policy is used with the following primary policy:

Azure > CIS v2.0 > 02 - Microsoft Defender > 2.01 - Microsoft Defender for Cloud

Controls

Policy Specification

Schema Type	`string`
Default	`Per Azure > CIS v2.0 > 02 - Microsoft Defender`
Valid Values [YAML]	`Per Azure > CIS v2.0 > 02 - Microsoft Defender` `Skip` `Check: Benchmark`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/cis#/control/categories/v070301

Policy Type URI

tmod:@turbot/azure-cisv2-0#/policy/types/r020112

GraphQL

query policyType(id: "tmod:@turbot/azure-cisv2-0#/policy/types/r020112") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/azure-cisv2-0#/policy/types/r020112'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/azure-cisv2-0#/policy/types/r020112'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/azure-cisv2-0#/policy/types/r020112"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv2-0#/policy/types/r020112"