Ensure that Microsoft Defender for Cloud is enabled for the Microsoft Azure App Service instances. Turning on Defender for Cloud enables threat detection for Azure App Service, providing threat intelligence, anomaly detection, and behavior analytics.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
By default, Microsoft Defender for Cloud is not enabled for your App Service instances. Enabling the Defender security service for App Service instances allows for advanced security defense using threat detection capabilities provided by Microsoft Security Response Center.
Audit
To determine if the Microsoft Defender for Cloud security service is enabled for your App Service instances, perform the following operations:
Remediation / Resolution
To enable Microsoft Defender for Cloud for your Azure App Service instances, perform the following operations:
Note: Turning on Defender for Cloud for the specified resource type (i.e. App Service instances) incurs an additional cost per resource.References
- Azure Official Documentation
- Microsoft Defender for Cloud documentation
- What is Microsoft Defender for Cloud?
- Microsoft Defender for Cloud pricing
- Microsoft Defender for Cloud's enhanced security features
- CIS Microsoft Azure Foundations
- Azure Command Line Interface (CLI) Documentation
- az
- az account get-access-token