This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 8%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
I have a virtual appliance from MDR provider AlerLogic. MS Defender generates alerts for the VM because it does vulnerability scanning and uses some tools that make Defender unhappy. This is the normal behavior of the Virtual Appliance. Is there any way to exclude it from Defender's monitoring completely?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAV%3C/text%3E%3C/svg%3E)
Hi @Jamal Balametov
Following up to see if the below suggestion was helpful. And, if you have any further query do let us know.
Hi @Jamal Balametov
Following up to see if the below suggestion was helpful. And, if you have any further query do let us know.
Hi,
Specifically for the agentless scanning capabilities of Defender for Cloud you can exclude specific VMs by tags: Exclude machines from agentless scanning. So you assign specific tag and value to that machine and after that configure the same tag and value to exclude it on the agentless scanning configuration.
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.