last sync: 2024-Apr-19 17:44:22 UTC

Configure Microsoft Defender for Cloud plans

Azure BuiltIn Policy Initiative (PolicySet)

Source Azure Portal
Display nameConfigure Microsoft Defender for Cloud plans
Idf08c57cd-dbd6-49a4-a85e-9ae77ac959b0
Version1.0.0
Details on versioning
CategorySecurity Center
Microsoft Learn
DescriptionMicrosoft Defender for Cloud provides comprehensive, cloud-native protections from development to runtime in multi-cloud environments. Use the policy initiative to configure Defender for Cloud plans and extensions to be enabled on selected scope(s).
TypeBuiltIn
DeprecatedFalse
PreviewFalse
Policy count Total Policies: 11
Builtin Policies: 11
Static Policies: 0
Policy used
Policy DisplayName Policy Id Category Effect Roles# Roles State
Configure Azure Defender for App Service to be enabled b40e7bcd-a1e5-47fe-b9cf-2f534d0bfb7d Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Azure Defender for Azure SQL database to be enabled b99b73e7-074b-4089-9395-b7236f094491 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Azure Defender for open-source relational databases to be enabled 44433aa3-7ec2-4002-93ea-65c65ff0310a Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Azure Defender for Resource Manager to be enabled b7021b2b-08fd-4dc0-9de7-3c6ece09faf9 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Azure Defender for SQL servers on machines to be enabled 50ea7265-7d8c-429e-9a7d-ca1f410191c3 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Microsoft Defender CSPM plan 72f8cee7-2937-403d-84a1-a4e3e57f3c21 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Owner GA
Configure Microsoft Defender for Azure Cosmos DB to be enabled 82bf5b87-728b-4a74-ba4d-6123845cf542 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Microsoft Defender for Containers plan efd4031d-b232-4595-babf-ae817348e91b Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Owner GA
Configure Microsoft Defender for Key Vault plan 1f725891-01c0-420a-9059-4fa46cb770b7 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Security Admin GA
Configure Microsoft Defender for Servers plan 5eb6d64a-4086-4d7a-92da-ec51aed0332d Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Owner GA
Configure Microsoft Defender for Storage to be enabled cfdc5972-75b3-4418-8ae1-7f5c36839390 Security Center Default
DeployIfNotExists
Allowed
DeployIfNotExists, Disabled
1 Owner GA
Roles used Total Roles usage: 11
Total Roles unique usage: 2
Role Role Id Policies count Policies
Security Admin fb1c8493-542b-48eb-b624-b4c8fea62acd 7 Configure Azure Defender for App Service to be enabled, Configure Azure Defender for Azure SQL database to be enabled, Configure Azure Defender for open-source relational databases to be enabled, Configure Azure Defender for Resource Manager to be enabled, Configure Azure Defender for SQL servers on machines to be enabled, Configure Microsoft Defender for Azure Cosmos DB to be enabled, Configure Microsoft Defender for Key Vault plan
Owner 8e3af657-a8ff-443c-a75c-2fe8c4bcb635 4 Configure Microsoft Defender CSPM plan, Configure Microsoft Defender for Containers plan, Configure Microsoft Defender for Servers plan, Configure Microsoft Defender for Storage to be enabled
History
Date/Time (UTC ymd) (i) Changes
2024-02-05 19:34:05 add Initiative f08c57cd-dbd6-49a4-a85e-9ae77ac959b0
JSON compare n/a
JSON
api-version=2021-06-01
EPAC