1,481 questions with Microsoft Defender for Cloud-related tags

Sort by: Updated
Updated Created Answers
0 answers

What does the Defender Anti-Spam (Inbound) policy overrule?

The Defender Anti-Spam, Anti-Malware and Anti-Phish policies all sit together in the Email Policy and Rules section, but I am trying to understand what an exception to these policies would over rule? Mainly looking at the Anti-Spam Policy, as that is…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
462 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
243 questions
asked 2025-01-28T12:27:10.4433333+00:00
Josh N 20 Reputation points
edited the question 2025-02-05T09:59:45.3166667+00:00
Josh N 20 Reputation points
0 answers

What is the alternative to Defender for IoT "micro-agent" since it retires on 1st August 2025?

What is the alternative to Defender for IoT "micro-agent" since it retired on 1st August 2025? I was reading this [documentation] and found a note that the micro-agent retires this year in August. What is the alternate to this? Is the…

Azure IoT
Azure IoT
A category of Azure services for internet of things devices.
412 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-02-05T08:42:02.3433333+00:00
Arjun Sivasree 25 Reputation points
edited the question 2025-02-05T09:21:27.5833333+00:00
Arjun Sivasree 25 Reputation points
3 answers

Understanding why full and quick scans are out of 7 days

Hi, We have been receiving security recommendations for our virtual machines, and one of the findings states that "Both full and quick scans are out of 7 days": EDR configuration issues should be resolved on virtual machines-> Findings->…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2024-06-06T12:05:36.9366667+00:00
Quattrocchi, Calogero 270 Reputation points
answered 2025-02-05T09:09:23.15+00:00
Quattrocchi, Calogero 270 Reputation points
2 answers

Attack Simulator Training, not receiving the e-mail.

After adding myself to an attack simulator training, training campaign I am not getting a notification. The training has no end time and is applied to an group. I was told that even if you add new users to the training campaign the should still receive…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-20T10:05:39.6466667+00:00
Daniel Ideho 0 Reputation points
answered 2025-02-04T20:23:45.77+00:00
Raja Pothuraju 12,120 Reputation points Microsoft Vendor
1 answer

Defender for Databases plan selection

Are SQL managed instances covered under the "Defender for SQL servers on machines" or under the "Defender for Azure SQL" plan?

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-30T15:32:50.82+00:00
Johnson, Daniel 0 Reputation points
commented 2025-02-04T16:43:45.9166667+00:00
Venkata Jagadeep 80 Reputation points Microsoft Vendor
0 answers

Microsoft Defender for Cloud Security Alerts are still open while link in Defender XDR is already resolved

Our team observed that there are open or active alerts in Microsoft Defender for Cloud while its corresponding incident in Defender XDR is already resolved. We assume that it is the corresponding alert in Defender XDR since when we click the link in…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-02-04T12:43:45.0866667+00:00
Francis Arvin Hallare 0 Reputation points
edited the question 2025-02-04T15:22:30.0966667+00:00
Rakesh Gurram 11,640 Reputation points Microsoft Vendor
0 answers

Known file getting tagged as malicious

I have a single macros enabled excel file, every time I make changes and save it with different name Defender MDE flags it as malicious and file gets corrupted. Every time I make changes, SHA value changes and hence submitting it to Microsoft as clean…

Excel
Excel
A family of Microsoft spreadsheet software with tools for analyzing, charting, and communicating data.
2,140 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
20 questions
asked 2025-02-04T14:22:31.1366667+00:00
Aishwarya RM 0 Reputation points
1 answer

Blocking File Uploads to Generative AI Websites Using Microsoft Purview DLP

How can file uploads to generative AI websites, such as ChatGPT, Perplexity, and Deepseek, be blocked regardless of file type or size? Currently, file uploads to certain websites like Gmail and iCloud are managed using Microsoft Purview DLP, but…

Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
1,373 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,512 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
169 questions
asked 2025-02-04T12:51:02.6933333+00:00
Mehmet OKUMUŞ 0 Reputation points
commented 2025-02-04T12:52:01.1233333+00:00
Mehmet OKUMUŞ 0 Reputation points
1 answer One of the answers was accepted by the question author.

Set 'Account lockout threshold' to 1-10 invalid login attempts Problems

Hi All, We are struggling to resolve tickets on our azure defender Security recommendations when they reference greyed out options in the "Group Policy" , for example : Account Lockout Duration *( greyed out ) we cannot set the limit from 0-10…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-02-03T10:50:03.18+00:00
Thomas Sherlock 20 Reputation points
commented 2025-02-04T11:03:44.61+00:00
Thomas Sherlock 20 Reputation points
1 answer

Environment risk of All recommendations by risk enable

How to enable the environmental risk of All recommendations by risk. Now, it is showing zero in all risks.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-23T08:13:24.63+00:00
Bimala Shrestha 25 Reputation points
commented 2025-02-04T09:30:25.04+00:00
Sakshi Devkante 500 Reputation points Microsoft Vendor
1 answer One of the answers was accepted by the question author.

MDE managed devices

Hi! It is possible to manage Windows Servers with Defender for Endpoint and Intune. After setup, the Windows Server device appears in Intune. But can Devices > Configuration > Policies be deployed to it, or only policies under the Endpoint…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,512 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
243 questions
asked 2025-02-03T14:06:55.22+00:00
Artem Shaturskyi 135 Reputation points
accepted 2025-02-04T07:32:57.1333333+00:00
Artem Shaturskyi 135 Reputation points
0 answers

Azure ATP sensor issue -DC not visible under the security portal

Hi,we have installed the Azure ATP sensor on 33 DC's. But one DC's sensor status was unhealthy. To resolve this, we have cleared the DC entry from security portal and again re-install the ATP but unfortunately this time the affected DCS is visible in…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
243 questions
asked 2025-01-29T10:55:54.0633333+00:00
Khushboo 0 Reputation points
commented 2025-02-03T19:47:27.3766667+00:00
Raja Pothuraju 12,120 Reputation points Microsoft Vendor
1 answer

Defender for Cloud - Vulnerabilities Extensions

Hi All, I have enabled New Microsoft Vulnerability Management from Environment settings - Under Subscription - Under server plan. We have Plan 2 license. But i don't see any extension getting installed under server VMs. Please suggest on how to confirm…

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,896 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-30T09:21:07.7066667+00:00
karthik palani 1,036 Reputation points
commented 2025-02-03T19:34:49.8833333+00:00
Sanoop M 595 Reputation points Microsoft Vendor
1 answer

In MS Defender for Cloud how to exclude a single VM from the monitoring

I have a virtual appliance from MDR provider AlerLogic. MS Defender generates alerts for the VM because it does vulnerability scanning and uses some tools that make Defender unhappy. This is the normal behavior of the Virtual Appliance. Is there any way…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-30T02:46:36.71+00:00
Jamal Balametov 0 Reputation points
commented 2025-02-03T18:29:27.1+00:00
Akhilesh Vallamkonda 11,440 Reputation points Microsoft Vendor
1 answer

Need to add defender alert notification for an email address through powershell as we have multiple subscriptions.

Hi, We want to add Microsoft defender notification through powershell as we have multiple subscriptions on diff tenants. Either by powershell or partner centre powershell . Attaching screenshot - Already read the article -…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,791 questions
asked 2023-02-15T09:14:01.6+00:00
Rishineken Pongen 176 Reputation points
commented 2025-02-03T14:13:01.22+00:00
Robbie Reichard 0 Reputation points
1 answer

We received reports from our users that our URL is unsafe, but they are safe.

Hi there, I am trying to contact Microsoft Defender support, but I am experiencing difficulties getting in contact with anyone. I am writing regarding false positive alerts that our users are receiving from Microsoft Defender concerning our legitimate…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,651 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
243 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
169 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
20 questions
asked 2025-01-24T17:26:36.4766667+00:00
Tirta Wulandari 0 Reputation points
commented 2025-01-31T03:26:53.1933333+00:00
Raja Pothuraju 12,120 Reputation points Microsoft Vendor
1 answer

Need to offboard the Windows Defender from Windows Servers

hello all, In our organization we have a S1 agent installed on the Windows servers running on Azure, therefore I need to uninstall the Microsoft defender completely from the servers, but even after remove the role for Windows Defender the services…

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,638 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-28T07:43:17.5966667+00:00
agarwal utkarsh (Contractor) 0 Reputation points
commented 2025-01-31T02:25:32.79+00:00
Raja Pothuraju 12,120 Reputation points Microsoft Vendor
1 answer

Microsoft 365 Business Premium : network protection for out-of-office endpoints

Hello, I would like to know if a service included in the Microsoft 365 Business Premium subscription can protect endpoints network when they are not behind an office firewall? IPS / IDS, DNS Filtering, etc. Thank you!

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,651 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
Azure Startups
Azure Startups
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.Startups: Companies that are in their initial stages of business and typically developing a business model and seeking financing.
557 questions
asked 2025-01-23T17:00:25.63+00:00
Jo 0 Reputation points
commented 2025-01-30T20:41:21.2066667+00:00
Akhilesh Vallamkonda 11,440 Reputation points Microsoft Vendor
1 answer

MS Defender Automated Simulation Training: How to have new users to live attack simulation training

Hi I am trying to setup MS Defender attack simulation training for staff. I have a number of queries regarding setup. 1: We have a live training campaign which we require all new staff members to complete. Please outline the process of having a new user…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2024-11-14T11:55:31.67+00:00
Kieran Heneghan 5 Reputation points
commented 2025-01-30T17:58:54.11+00:00
Taylor M 0 Reputation points
1 answer

Assistance Needed to Enable Microsoft Defender Real-Time Protection on Azure VM

Good afternoon, I am attempting to enable Microsoft Defender Real-Time Protection on my Azure VM running Windows Server 2022. However, the option to enable it is disabled, displaying the message: “This setting is managed by your administrator.” The VM is…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,481 questions
asked 2025-01-22T18:07:11.5166667+00:00
Cristopher Aguilera 91 Reputation points
commented 2025-01-30T08:52:36.62+00:00
Navya 14,985 Reputation points Microsoft Vendor