last sync: 2024-Jun-13 18:14:14 UTC

Setup subscriptions to transition to an alternative vulnerability assessment solution

Azure BuiltIn Policy definition

Source Azure Portal
Display name Setup subscriptions to transition to an alternative vulnerability assessment solution
Id 766e621d-ba95-4e43-a6f2-e945db3d7888
Version 1.0.0-preview
Details on versioning
Category Security Center
Microsoft Learn
Description Microsoft Defender for cloud offers vulnerability scanning for your machines at no extra cost. Enabling this policy will cause Defender for Cloud to automatically propagate the findings from the built-in Microsoft Defender vulnerability management solution to all supported machines.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
RBAC role(s)
Role Name Role Id
Security Admin fb1c8493-542b-48eb-b624-b4c8fea62acd
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Security/serverVulnerabilityAssessmentsSettings/AzureServersSetting.selectedProvider Microsoft.Security serverVulnerabilityAssessmentsSettings properties.selectedProvider false
Rule resource types IF (1)
Microsoft.Resources/subscriptions
THEN-Deployment (1)
Microsoft.Security/serverVulnerabilityAssessmentsSettings
Compliance
The following 6 compliance controls are associated with this Policy definition 'Setup subscriptions to transition to an alternative vulnerability assessment solution' (766e621d-ba95-4e43-a6f2-e945db3d7888)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
op.exp.2 Security configuration op.exp.2 Security configuration 404 not found n/a n/a 112
op.exp.3 Security configuration management op.exp.3 Security configuration management 404 not found n/a n/a 123
op.exp.4 Security maintenance and updates op.exp.4 Security maintenance and updates 404 not found n/a n/a 78
op.exp.5 Change management op.exp.5 Change management 404 not found n/a n/a 71
op.exp.6 Protection against harmful code op.exp.6 Protection against harmful code 404 not found n/a n/a 69
op.mon.3 Monitoring op.mon.3 Monitoring 404 not found n/a n/a 51
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Deprecated]: Deploy Microsoft Defender for Cloud configuration Deploy-MDFC-Config Security Center Deprecated ALZ
Deploy Microsoft Defender for Cloud configuration Deploy-MDFC-Config_20240319 Security Center GA ALZ
Spain ENS 175daf90-21e1-4fec-b745-7b4c909aa94c Regulatory Compliance GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-07-24 17:56:14 add 766e621d-ba95-4e43-a6f2-e945db3d7888
JSON compare n/a
JSON
api-version=2021-06-01
EPAC