Ensure that Microsoft Defender for Cloud is enabled for Azure Kubernetes Service (AKS) clusters. Defender for Cloud for AKS clusters enables threat detection for containers, providing threat intelligence, anomaly detection, and behavior analytics.
excellence
The Microsoft Defender for Cloud service is designed to actively monitor the configuration of your AKS clusters, ensuring the detection of any possible security vulnerabilities. By diligently identifying such risks, it provides valuable recommendations on appropriate actions to take in order to mitigate them effectively.
Audit
To determine if Microsoft Defender for Cloud is enabled for your AKS clusters, perform the following actions:
Checking Azure Kubernetes Service (AKS) clusters for Microsoft Defender for Cloud support using Azure Console (Azure Portal) is not currently supported.Remediation / Resolution
To enable Microsoft Defender for Cloud for your Azure Kubernetes Service (AKS) clusters, perform the following actions:
References
- Azure Official Documentation
- Microsoft Defender for Cloud documentation
- Overview of Microsoft Defender for Containers
- Microsoft Defender for Cloud pricing
- Defender for Containers architecture
- How to enable Microsoft Defender for Containers components
- Azure PowerShell Documentation
- az aks list
- az aks show
- az aks create
- az account get-access-token
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Enable Defender for Cloud for AKS Clusters
Risk Level: High