AzPolicyAdvertizer

last sync: 2025-Mar-14 18:30:15 UTC

Configure Azure Defender for App Service to be enabled

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Configure Azure Defender for App Service to be enabled

b40e7bcd-a1e5-47fe-b9cf-2f534d0bfb7d

Version

1.0.1
Details on versioning

Versioning

Versions supported for Versioning: 1
1.0.1
Built-in Versioning [Preview]

Category

Security Center
Microsoft Learn

Description

Azure Defender for App Service leverages the scale of the cloud, and the visibility that Azure has as a cloud provider, to monitor for common web app attacks.

Cloud environments

AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown

Available in AzUSGov

Unknown, no evidence if Policy definition is/not available in AzureUSGovernment

Mode

All

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled

RBAC role(s)

Role Name	Role Id
Security Admin	fb1c8493-542b-48eb-b624-b4c8fea62acd

Rule aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	Path	PathIsDefault	DefaultPath	Modifiable
Microsoft.Security/pricings/pricingTier	Microsoft.Security	pricings	properties.pricingTier	True		False

Rule resource types

IF (1)
Microsoft.Resources/subscriptions
THEN-Deployment (1)
Microsoft.Security/pricings

Compliance

The following 2 compliance controls are associated with this Policy definition 'Configure Azure Defender for App Service to be enabled' (b40e7bcd-a1e5-47fe-b9cf-2f534d0bfb7d)

Control Domain	Control	Name	MetadataId	Category	Title	Owner	Requirements	Description	Info	Policy#
	mp.s.3 Protection of web browsing	mp.s.3 Protection of web browsing	404 not found				n/a	n/a		51
	op.exp.6 Protection against harmful code	op.exp.6 Protection against harmful code	404 not found				n/a	n/a		61

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
[Deprecated]: Deploy Microsoft Defender for Cloud configuration	Deploy-MDFC-Config	Security Center	Deprecated	ALZ
Configure Microsoft Defender for Cloud plans	f08c57cd-dbd6-49a4-a85e-9ae77ac959b0	Security Center	GA	BuiltIn	unknown
Deploy Microsoft Defender for Cloud configuration	Deploy-MDFC-Config_20240319	Security Center	GA	ALZ
Spain ENS	175daf90-21e1-4fec-b745-7b4c909aa94c	Regulatory Compliance	GA	BuiltIn	unknown

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2021-12-06 22:17:57	change	Patch (1.0.0 > 1.0.1)
2021-07-30 15:17:20	add	b40e7bcd-a1e5-47fe-b9cf-2f534d0bfb7d

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC