AzInitiativeAdvertizer

last sync: 2025-Apr-29 17:15:47 UTC

Configure Microsoft Defender for Cloud plans

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameConfigure Microsoft Defender for Cloud plans
Idf08c57cd-dbd6-49a4-a85e-9ae77ac959b0
Version1.1.0
Details on versioning
Versioning Versions supported for Versioning: 2
1.1.0
1.0.0
Built-in Versioning [Preview]
CategorySecurity Center
Microsoft Learn
DescriptionMicrosoft Defender for Cloud provides comprehensive, cloud-native protections from development to runtime in multi-cloud environments. Use the policy initiative to configure Defender for Cloud plans and extensions to be enabled on selected scope(s).
Cloud environmentsAzureCloud = true
AzureChinaCloud = unknown
AzureUSGovernment = unknown
Available in AzUSGovUnknown, no evidence if PolicySet definition is/not available in AzureUSGovernment
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy-used summary
Policy types Policy states Policy categories
Total Policies: 12
Builtin Policies: 12
Static Policies: 0
GA: 12
1 categories:
Security Center: 12
Policy-used
Policy DisplayName Policy Id Category Version Versioning Effect Roles# Roles State policy in AzUSGov
Configure Azure Defender for App Service to be enabled b40e7bcd-a1e5-47fe-b9cf-2f534d0bfb7d Security Center 1.0.1 1x
1.0.1		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA unknown
Configure Azure Defender for Azure SQL database to be enabled b99b73e7-074b-4089-9395-b7236f094491 Security Center 1.0.1 1x
1.0.1		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA true
Configure Azure Defender for open-source relational databases to be enabled 44433aa3-7ec2-4002-93ea-65c65ff0310a Security Center 1.0.0 1x
1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA unknown
Configure Azure Defender for Resource Manager to be enabled b7021b2b-08fd-4dc0-9de7-3c6ece09faf9 Security Center 1.1.0 2x
1.1.0, 1.0.2		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA true
Configure Azure Defender for SQL servers on machines to be enabled 50ea7265-7d8c-429e-9a7d-ca1f410191c3 Security Center 1.0.1 1x
1.0.1		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA unknown
Configure Microsoft Defender CSPM plan 72f8cee7-2937-403d-84a1-a4e3e57f3c21 Security Center 1.0.0 1x
1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Owner GA unknown
Configure Microsoft Defender for Azure Cosmos DB to be enabled 82bf5b87-728b-4a74-ba4d-6123845cf542 Security Center 1.0.0 1x
1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA unknown
Configure Microsoft Defender for Containers plan efd4031d-b232-4595-babf-ae817348e91b Security Center 1.1.0 2x
1.1.0, 1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Owner GA unknown
Configure Microsoft Defender for Key Vault plan 1f725891-01c0-420a-9059-4fa46cb770b7 Security Center 1.1.0 2x
1.1.0, 1.0.2		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Security Admin GA unknown
Configure Microsoft Defender for Servers plan 5eb6d64a-4086-4d7a-92da-ec51aed0332d Security Center 1.0.0 1x
1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Owner GA unknown
Configure Microsoft Defender for Storage to be enabled cfdc5972-75b3-4418-8ae1-7f5c36839390 Security Center 1.4.0 4x
1.4.0, 1.3.0, 1.2.0, 1.1.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Owner GA unknown
Configure Microsoft Defender threat protection for AI workloads 359a48a3-351a-4618-bb32-f1628645694b Security Center 1.0.0 1x
1.0.0		 Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled		 1 Owner GA unknown
Roles used Total Roles usage: 12
Total Roles unique usage: 2
Role Role Id #Policies Policies
Security Admin fb1c8493-542b-48eb-b624-b4c8fea62acd 7 Configure Azure Defender for App Service to be enabled, Configure Azure Defender for Azure SQL database to be enabled, Configure Azure Defender for open-source relational databases to be enabled, Configure Azure Defender for Resource Manager to be enabled, Configure Azure Defender for SQL servers on machines to be enabled, Configure Microsoft Defender for Azure Cosmos DB to be enabled, Configure Microsoft Defender for Key Vault plan
Owner 8e3af657-a8ff-443c-a75c-2fe8c4bcb635 5 Configure Microsoft Defender CSPM plan, Configure Microsoft Defender for Containers plan, Configure Microsoft Defender for Servers plan, Configure Microsoft Defender for Storage to be enabled, Configure Microsoft Defender threat protection for AI workloads
History
Date/Time (UTC ymd) (i) Changes
2025-04-24 19:52:16 add Policy Configure Microsoft Defender threat protection for AI workloads (359a48a3-351a-4618-bb32-f1628645694b)
Version change: '1.0.0' to '1.1.0'
2024-02-05 19:34:05 add Initiative f08c57cd-dbd6-49a4-a85e-9ae77ac959b0
JSON compare
compare mode: version left: version right:
JSON
api-version=2023-04-01
EPAC