Policy: Azure > CIS v2.0 > 02 - Microsoft Defender > 2.01 - Microsoft Defender for Cloud
This subsection is dedicated to providing guidance on Microsoft Defender for Cloud product plans. This guidance is intended to ensure that - at a minimum - the protective measures offered by these plans are being considered. Organizations may find that they have existing products or services that provide the same utility as some Microsoft Defender for Cloud products. Security and Administrative personnel need to make the determination on their organization's behalf regarding which - if any - of these recommendations are relevant to their organization's needs. In consideration of the above, and because of the potential for increased cost and complexity, please be aware that all Defender Plan recommendations are profiled as "Level 2" recommendations.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Related Policies
- 2.01.01 - Ensure That Microsoft Defender for Servers Is Set to 'On'
- 2.01.02 - Ensure That Microsoft Defender for App Services Is Set To 'On'
- 2.01.03 - Ensure That Microsoft Defender for Databases Is Set To 'On'
- 2.01.04 - Ensure That Microsoft Defender for Azure SQL Databases Is Set To 'On'
- 2.01.05 - Ensure That Microsoft Defender for SQL Servers on Machines Is Set To 'On'
- 2.01.06 - Ensure That Microsoft Defender for Open-Source Relational Databases Is Set To 'On'
- 2.01.07 - Ensure That Microsoft Defender for Storage Is Set To 'On'
- 2.01.08 - Ensure That Microsoft Defender for Containers Is Set To 'On'
- 2.01.09 - Ensure That Microsoft Defender for Azure Cosmos DB Is Set To 'On'
- 2.01.10 - Ensure That Microsoft Defender for Key Vault Is Set To 'On'
- 2.01.11 - Ensure That Microsoft Defender for DNS Is Set To 'On'
- 2.01.12 - Ensure That Microsoft Defender for Resource Manager Is Set To 'On'
- 2.01.13 - Ensure that Microsoft Defender Recommendation for 'Apply system updates' status is 'Completed'
- 2.01.14 - Ensure Any of the ASC Default Policy Settings are Not Set to 'Disabled'
- 2.01.15 - Ensure that Auto provisioning of 'Log Analytics agent for Azure VMs' is Set to 'On'
- 2.01.16 - Ensure that Auto provisioning of 'Vulnerability assessment for machines' is Set to 'On'
- 2.01.17 - Ensure that Auto provisioning of 'Microsoft Defender for Containers components' is Set to 'On'
- 2.01.18 - Ensure That 'All users with the following roles' is set to 'Owner'
- 2.01.19 - Ensure 'Additional email addresses' is Configured with a Security Contact Email
- 2.01.20 - Ensure That 'Notify about alerts with the following severity' is Set to 'High'
- 2.01.21 - Ensure that Microsoft Defender for Cloud Apps integration with Microsoft Defender for Cloud is Selected
- 2.01.22 - Ensure that Microsoft Defender for Endpoint integration with Microsoft Defender for Cloud is selected
Controls
- Azure > CIS v2.0
- Azure > CIS v2.0 > 02 - Microsoft Defender
- Azure > CIS v2.0 > 02 - Microsoft Defender > 2.01 - Microsoft Defender for Cloud
Policy Specification
Schema Type |
|
---|---|
Default |
|
Category
In Your Workspace
Developers
- tmod:@turbot/cis#/control/categories/cis
- tmod:@turbot/azure-cisv2-0#/policy/types/s0201
- turbot graphql policy-type --id "tmod:@turbot/azure-cisv2-0#/policy/types/s0201"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/azure-cisv2-0#/policy/types/s0201"
Get Policy TypeGet Policy Settings