Ensure that Defender for APIs, a feature of Microsoft Defender for Cloud, is enabled for your Azure API Management services. This feature provides comprehensive API protection, proactive threat detection, adaptive security posture, and simplified incident response and remediation.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
Enabling Defender for APIs in Azure API Management is essential for protecting APIs and sensitive data. Defender for APIs employs machine learning and AI to identify and mitigate potential threats, safeguarding your APIs from unauthorized access, data breaches, and other security risks. Defender for APIs helps ensure the reliability and integrity of your API infrastructure, providing a robust defense mechanism for your applications and data.
Audit
To determine if Defender for APIs is enabled for Azure API Management service instances, perform the following actions:
Remediation / Resolution
To enable Defender for APIs for your Azure API Management service instances, perform the following actions:
References
- Azure Official Documentation
- Microsoft Defender for Cloud documentation
- Enable advanced API security features using Microsoft Defender for Cloud
- Protect your APIs with Defender for APIs
- Azure PowerShell Documentation
- az
- az account get-access-token