Forum Discussion
Unable to resolve - A vulnerability assessment solution should be enabled on your virtual machines
Hi, all VMs must have a supported vulnerability assessment extension (Qualys or Defender Vulnerability Management): agentless CSPM alone is not enough. Deploy the extension on all machines (manually or via Azure Policy “Deploy Qualys VM extension” or “Deploy Microsoft Defender Vulnerability Management”), verify that the Log Analytics agent and the Defender sensor are active, and wait a few minutes: the status will change to “Healthy.”
Hello Michele,
We had understood that Qualys has been depreciated in favor of Defender for Vulnerability management.
Defender for Servers Plan 2 is enabled with Azure Monitor, and Vulnerability assessment for Machines. But we have disabled Defender Endpoint protection as we use an alternative endpoint protection software.
Defender Vulnerability management is not an extension, in Defender for Cloud the recommendation that deploys it applies a PUT on a specific Azure Management API url. We have a policy that does this but it doesn't actually onboard the VM to Defender for Endpoint since we do not use that functionality.