Defender and Plans

Taen keren · ‎Mar 07 2022

Hi

What is considered before enabling the various Microsoft Defender plans? - enable all by resources type or enable the specific ones? (what your subscription contains)

There are no cost if you e.g. enable the 'Containers plan' and you don't have any Containers deployed in the Subscription?

What happens on the subscription level when enabling the containers plan?

Stanislav Belov · ‎Mar 08 2022

You are only charged for resources being used and protected. It's recommended to enable all defender plans to make sure when new resources get provisioned Defender for Cloud will start monitoring and protecting them right away.

Defender for Containers internals are very well documented here: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-enable?tabs=aks-de...

Taen keren · ‎Mar 09 2022

What happens on the single VM when enabling the Defender for Servers plan? - and if auto provision is disabled?

The recommendation/Best Practices is to enable all Defender plans but when auto provision is enabled a lot of Managed Identities gets created (e.g enabling containers) - is there a way to "avoid" all/some of these Managed Identities, as it is possible to use the authentication tokens from a compromised managed identity?

Defender and Plans

Defender and Plans

Re: Defender and Plans

Re: Defender and Plans

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

Defender and Plans