jpskill.com
🛠️ 開発・MCP コミュニティ

azure-defender-for-cloud

Azure Defender for Cloudの導入や開発において、トラブルシューティングから設計、セキュリティまで幅広く支援するSkill。

📜 元の英語説明(参考)

Expert knowledge for Azure Defender For Cloud development including troubleshooting, best practices, decision making, architecture & design patterns, limits & quotas, security, configuration, integrations & coding patterns, and deployment. Use when enabling Defender for Servers/Containers, multicloud connectors, CI/CD integration, alerts, or vuln scanning, and other Azure Defender For Cloud related development tasks. Not for Azure Defender For Iot (use azure-defender-for-iot), Azure DDos Protection (use azure-ddos-protection), Azure External Attack Surface Management (use azure-external-attack-surface-management), Azure Security (use azure-security).

🇯🇵 日本人クリエイター向け解説

一言でいうと

Azure Defender for Cloudの導入や開発において、トラブルシューティングから設計、セキュリティまで幅広く支援するSkill。

※ jpskill.com 編集部が日本のビジネス現場向けに補足した解説です。Skill本体の挙動とは独立した参考情報です。

⬇ このSkillをダウンロード(.skill) 元のソースを見る ↗

⚠️ ダウンロード・利用は自己責任でお願いします。当サイトは内容・動作・安全性について責任を負いません。

🎯 このSkillでできること

下記の説明文を読むと、このSkillがあなたに何をしてくれるかが分かります。Claudeにこの分野の依頼をすると、自動で発動します。

📦 インストール方法 (3ステップ)

  1. 1. 上の「ダウンロード」ボタンを押して .skill ファイルを取得
  2. 2. ファイル名の拡張子を .skill から .zip に変えて展開(macは自動展開可)
  3. 3. 展開してできたフォルダを、ホームフォルダの .claude/skills/ に置く
    • · macOS / Linux: ~/.claude/skills/
    • · Windows: %USERPROFILE%\.claude\skills\

Claude Code を再起動すれば完了。「このSkillを使って…」と話しかけなくても、関連する依頼で自動的に呼び出されます。

詳しい使い方ガイドを見る →
最終更新
2026-05-17
取得日時
2026-05-17
同梱ファイル
1

📖 Skill本文(日本語訳)

※ 原文(英語/中国語)を Gemini で日本語化したものです。Claude 自身は原文を読みます。誤訳がある場合は原文をご確認ください。

Azure Defender For Cloud スキル

このスキルは、Azure Defender For Cloud に関する専門的なガイダンスを提供します。トラブルシューティング、ベストプラクティス、意思決定、アーキテクチャと設計パターン、制限とクォータ、セキュリティ、構成、統合とコーディングパターン、デプロイメントを網羅しています。ローカルのクイックリファレンスコンテンツとリモートドキュメント取得機能を組み合わせています。

このスキルの使用方法

エージェントにとって重要: 関連するセクションを見つけるには、以下のカテゴリインデックスを使用してください。行範囲が指定されているカテゴリ (例: L35-L120) の場合は、指定された行で read_file を使用してください。ファイルリンクが指定されているカテゴリ (例: [security.md](security.md)) の場合は、リンクされた参照ファイルで read_file を使用してください。

エージェントにとって重要: metadata.generated_at が 3 か月以上前の場合は、ユーザーにリポジトリから最新バージョンをプルするように提案してください。mcp_microsoftdocs ツールが利用できない場合は、ユーザーにインストールを提案してください: インストールガイド

このスキルは、ドキュメントコンテンツを取得するためにネットワークアクセスを必要とします。

  • 推奨: クエリ文字列 from=learn-agent-skill を指定して mcp_microsoftdocs:microsoft_docs_fetch を使用してください。Markdown を返します。
  • フォールバック: クエリ文字列 from=learn-agent-skill&accept=text/markdown を指定して fetch_webpage を使用してください。Markdown を返します。

カテゴリインデックス

カテゴリ 説明
トラブルシューティング L37-L63 Azure、AWS、GCP、Kubernetes、SQL、ストレージ、DNS、API、およびエンドポイントのカバー範囲のギャップ全体で、Defender for Cloud のアラート、コネクタ、およびデプロイメントの診断、シミュレーション、および修正。
ベストプラクティス L64-L82 Defender for Cloud を使用して、VM、コンテナ、レジストリ、CI/CD、および Kubernetes 全体で、脆弱性、誤構成、シークレット、および API/ネットワーク/エンドポイントのリスクを検出、優先順位付け、および修復する。
意思決定 L83-L102 Defender for Cloud の機能、プラン、コスト、ポータル、エージェント、および移行 (サーバー、コンテナ、ストレージ、GCP、リージョン、およびチャージバック) の選択と計画に関するガイド。
アーキテクチャと設計パターン L103-L110 Defender for Servers/Containers のアーキテクチャガイダンス: エージェントレススキャン、VM/Kubernetes でのマルウェア/脆弱性検出、データ収集、レジデンシー、ワークスペース、および大規模デプロイメント。
制限とクォータ L111-L120 Defender for Cloud の制限、クォータ、および制約: データインジェストと無料ティア、ポータル/DevOps サポートの制限、アラートエクスポートの上限、試用版の制限、およびデータ収集拡張機能の変更。
セキュリティ L121-L200 Defender for Cloud セキュリティの構成と管理: アラート、推奨事項、アクセス許可/RBAC、CIEM、ストレージ/SQL/Kubernetes/コンテナ保護、AI/API セキュリティ、およびマルチクラウドコネクタ。
構成 L201-L263 Defender for Cloud 機能の構成: リソースのオンボーディング、ポリシーの設定、アラート、エクスポート、脆弱性およびマルウェアスキャン、DevOps/IaC 統合、免除、およびテナント間/プライベートリンクのセットアップ。
統合とコーディングパターン L264-L293 Defender for Cloud と CI/CD、API、SIEM/ITSM、マルチクラウドログ、およびパートナーツールの統合、さらにセキュリティデータのクエリ/エクスポート、およびチケットとデプロイメントの自動化。
デプロイメント L294-L318 Defender for Cloud プラン (サーバー、SQL、ストレージ、コンテナ、GHAS) のデプロイ、有効化、移行、およびスケーリング方法。センサー、ポリシー、IaC/CLI/PowerShell/REST、およびサポートマトリックスを含む。

トラブルシューティング

トピック URL
Defender for Cloud のアラート生成とカバー範囲の検証 https://learn.microsoft.com/en-us/azure/defender-for-cloud/alert-validation
Defender for Cloud AI アラートの解釈と対応 https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-ai-workloads
Defender for Containers での Kubernetes アラートの診断とシミュレーション https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-containers
Defender for APIs アラートのトリガーと検証 https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-apis-validation
Defender for Containers のデプロイメントと検出結果の問題のトラブルシューティング https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-troubleshoot
Microsoft Defender for DNS セキュリティアラートへの対応 https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-dns-alerts
Defender for Resource Manager アラートの調査と対応 https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-resource-manager-usage
非推奨の Defender for Cloud アラート ID の参照 https://learn.microsoft.com/en-us/azure/defender-for-cloud/deprecated-alerts
Defender for Cloud エンドポイント検出のギャップの修復 https://learn.microsoft.com/en-us/azure/defender-for-cloud/endpoint-detection-response-solution-recommendations
Endor Labs 統合における一般的な問題の解決 https://learn.microsoft.com/en-us/azure/defender-for-cloud/faq-endor-labs
Defender for Cloud インシデント参照カタログの使用 https://learn.microsoft.com/en-us/azure/defender-for-cloud/incidents-reference
Defender での Kubernetes ノードのマルウェアアラートの処理 https://learn.microsoft.com/en-us/azure/defender-for-cloud/kubernetes-nodes-malware
Defender での GCP のエージェントレスディスクスキャンエラーの解決 https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-disk-scanning-error
Defender コネクタの GCP ドメイン制限付き共有の問題の修正 https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-gcp-sharing-policy
Defender スキャンの GCP VPC Service Controls の問題の解決 https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-vpc-service-controls-issues
Defender での Sentinel 接続 AWS オンボーディングの問題の解決 https://learn.microsoft.com/en-us/azure/defender-for-cloud/sentinel-connected-aws
Defender for Cloud での AWS および GCP コネクタのトラブルシューティング https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshoot-connectors
Defender のトラブルシューティング

(原文がここで切り詰められています)

📜 原文 SKILL.md(Claudeが読む英語/中国語)を展開

Azure Defender For Cloud Skill

This skill provides expert guidance for Azure Defender For Cloud. Covers troubleshooting, best practices, decision making, architecture & design patterns, limits & quotas, security, configuration, integrations & coding patterns, and deployment. It combines local quick-reference content with remote documentation fetching capabilities.

How to Use This Skill

IMPORTANT for Agent: Use the Category Index below to locate relevant sections. For categories with line ranges (e.g., L35-L120), use read_file with the specified lines. For categories with file links (e.g., [security.md](security.md)), use read_file on the linked reference file

IMPORTANT for Agent: If metadata.generated_at is more than 3 months old, suggest the user pull the latest version from the repository. If mcp_microsoftdocs tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

  • Preferred: Use mcp_microsoftdocs:microsoft_docs_fetch with query string from=learn-agent-skill. Returns Markdown.
  • Fallback: Use fetch_webpage with query string from=learn-agent-skill&accept=text/markdown. Returns Markdown.

Category Index

Category Lines Description
Troubleshooting L37-L63 Diagnosing, simulating, and fixing Defender for Cloud alerts, connectors, and deployments across Azure, AWS, GCP, Kubernetes, SQL, Storage, DNS, APIs, and endpoint coverage gaps.
Best Practices L64-L82 Using Defender for Cloud to detect, prioritize, and remediate vulnerabilities, misconfigurations, secrets, and API/network/endpoint risks across VMs, containers, registries, CI/CD, and Kubernetes.
Decision Making L83-L102 Guides for choosing and planning Defender for Cloud features, plans, costs, portals, agents, and migrations (Servers, Containers, Storage, GCP, regions, and chargeback).
Architecture & Design Patterns L103-L110 Architectural guidance for Defender for Servers/Containers: agentless scanning, malware/vuln detection on VMs/Kubernetes, data collection, residency, workspaces, and large-scale deployment.
Limits & Quotas L111-L120 Limits, quotas, and constraints for Defender for Cloud: data ingestion and free tiers, portal/DevOps support limits, alert export caps, trial restrictions, and data collection extension changes.
Security L121-L200 Configuring and managing Defender for Cloud security: alerts, recommendations, permissions/RBAC, CIEM, storage/SQL/Kubernetes/container protection, AI/API security, and multi-cloud connectors.
Configuration L201-L263 Configuring Defender for Cloud features: onboarding resources, setting policies, alerts, exports, vulnerability and malware scanning, DevOps/IaC integration, exemptions, and cross-tenant/private link setup.
Integrations & Coding Patterns L264-L293 Integrating Defender for Cloud with CI/CD, APIs, SIEM/ITSM, multi‑cloud logs, and partner tools, plus querying/exporting security data and automating tickets and deployments
Deployment L294-L318 How to deploy, enable, migrate, and scale Defender for Cloud plans (Servers, SQL, Storage, Containers, GHAS), including sensors, policies, IaC/CLI/PowerShell/REST, and support matrices.

Troubleshooting

Topic URL
Validate Defender for Cloud alert generation and coverage https://learn.microsoft.com/en-us/azure/defender-for-cloud/alert-validation
Interpret and respond to Defender for Cloud AI alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-ai-workloads
Diagnose and simulate Kubernetes alerts in Defender for Containers https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-containers
Trigger and validate Defender for APIs alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-apis-validation
Troubleshoot Defender for Containers deployment and findings issues https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-troubleshoot
Respond to Microsoft Defender for DNS security alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-dns-alerts
Investigate and respond to Defender for Resource Manager alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-resource-manager-usage
Reference deprecated Defender for Cloud alert IDs https://learn.microsoft.com/en-us/azure/defender-for-cloud/deprecated-alerts
Remediate Defender for Cloud endpoint detection gaps https://learn.microsoft.com/en-us/azure/defender-for-cloud/endpoint-detection-response-solution-recommendations
Resolve common issues in Endor Labs integration https://learn.microsoft.com/en-us/azure/defender-for-cloud/faq-endor-labs
Use Defender for Cloud incident reference catalog https://learn.microsoft.com/en-us/azure/defender-for-cloud/incidents-reference
Handle malware alerts on Kubernetes nodes in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/kubernetes-nodes-malware
Resolve agentless disk scan errors for GCP in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-disk-scanning-error
Fix GCP Domain Restricted Sharing issues for Defender connector https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-gcp-sharing-policy
Resolve GCP VPC Service Controls issues for Defender scanning https://learn.microsoft.com/en-us/azure/defender-for-cloud/resolve-vpc-service-controls-issues
Resolve Sentinel-connected AWS onboarding issues in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/sentinel-connected-aws
Troubleshoot AWS and GCP connectors in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshoot-connectors
Troubleshoot Defender for SQL on Machines configuration https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshoot-sql-machines-guide
Troubleshoot Defender for SQL on Machines deployment (gov) https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshoot-sql-machines-guide-gov
Troubleshoot express and classic SQL vulnerability configurations https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshoot-vulnerability-findings
Troubleshoot common Microsoft Defender for Cloud issues https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshooting-guide
Troubleshoot gated deployment issues in Kubernetes https://learn.microsoft.com/en-us/azure/defender-for-cloud/troubleshooting-runtime-gated
Interpret and act on Defender for Storage malware scan results https://learn.microsoft.com/en-us/azure/defender-for-cloud/understand-malware-scan-results

Best Practices

Topic URL
Use Defender for Containers vulnerability assessments https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-vulnerability-assessment-azure
Review OS misconfiguration recommendations against MCSB baselines https://learn.microsoft.com/en-us/azure/defender-for-cloud/apply-security-baseline
Review CI/CD scan results in Cloud Security Explorer https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-cli-reviewing-results
Investigate API security findings and posture in Defender for APIs https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-apis-posture
Remediate system update and patch recommendations in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-periodic-system-updates
Investigate Defender for Endpoint misconfiguration recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/endpoint-detection-misconfiguration
Remediate endpoint detection and response gaps in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/endpoint-detection-response-solution-recommendations
Apply Defender networking recommendations for Azure https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources
Remediate cloud deployment secrets in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/remediate-cloud-deployment-secrets
Prioritize and remediate machine secrets findings in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/remediate-server-secrets
Remediate machine vulnerability findings in Defender for Servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/remediate-vulnerability-findings-vm
Review security annotations on pull requests in GitHub and Azure DevOps https://learn.microsoft.com/en-us/azure/defender-for-cloud/review-pull-request-annotations
Assess Kubernetes image vulnerabilities using Secure Score https://learn.microsoft.com/en-us/azure/defender-for-cloud/view-and-remediate-vulnerabilities-for-images-secure-score
Remediate registry image vulnerabilities using Secure Score https://learn.microsoft.com/en-us/azure/defender-for-cloud/view-and-remediate-vulnerability-assessment-findings-secure-score
View and remediate registry image vulnerabilities in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/view-and-remediate-vulnerability-registry-images

Decision Making

Topic URL
Understand Defender for Servers vulnerability scanning options https://learn.microsoft.com/en-us/azure/defender-for-cloud/auto-deploy-vulnerability-assessment
Choose between Azure and Defender portals for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/azure-portal-vs-defender-portal-comparison
Allocate Defender for Cloud costs via chargeback https://learn.microsoft.com/en-us/azure/defender-for-cloud/chargeback
Select and configure Defender for Cloud plans for GCP https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-google-plans
Estimate Defender for Cloud costs with calculator https://learn.microsoft.com/en-us/azure/defender-for-cloud/cost-calculator
Plan Defender for Containers deployment across clusters https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-deployment-planning
Choose access patterns for Defender for Containers features https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-feature-access-patterns
Decide between Defender for Storage classic and new plan https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-classic
Decide and migrate from Defender for Storage classic plan https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-classic-migrate
Use BYOL vulnerability assessment with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-byol-vm
Choose the right Defender for Servers plan https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-select-plan
Plan for Defender for Cloud Log Analytics agent retirement https://learn.microsoft.com/en-us/azure/defender-for-cloud/prepare-deprecation-log-analytics-mma-agent
Plan for Defender for Cloud Log Analytics agent retirement https://learn.microsoft.com/en-us/azure/defender-for-cloud/prepare-deprecation-log-analytics-mma-agent
Choose and use Defender for Cloud pre-purchase plan https://learn.microsoft.com/en-us/azure/defender-for-cloud/prepurchase-plan
Check Defender for Cloud regional and plan availability https://learn.microsoft.com/en-us/azure/defender-for-cloud/regional-availability
Plan transition from grouped to individual Defender recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/transition-grouped-individual-recommendations

Architecture & Design Patterns

Topic URL
Use agentless malware scanning for virtual machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-malware-scanning
Design a Defender for Servers deployment architecture https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers
Understand Defender for Servers data collection design https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-agents
Plan Defender for Servers data residency and workspaces https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-data-workspace

Limits & Quotas

Topic URL
Use Defender for Servers data ingestion benefit and free quota https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-ingestion-benefit
Understand current limitations of Defender portal experience https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-portal/known-limitations
Review support scope and prerequisites for DevOps security https://learn.microsoft.com/en-us/azure/defender-for-cloud/devops-support
Export Defender for Cloud alerts to CSV with limits https://learn.microsoft.com/en-us/azure/defender-for-cloud/export-alerts-to-csv
Check and understand Defender for Cloud free trial limits https://learn.microsoft.com/en-us/azure/defender-for-cloud/free-trial
Understand Defender data collection extensions and retirement https://learn.microsoft.com/en-us/azure/defender-for-cloud/monitoring-components

Security

Topic URL
Configure agentless code scanning in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-code-scanning
Configure and use Defender for Cloud AI model security https://learn.microsoft.com/en-us/azure/defender-for-cloud/ai-model-security
Enable Defender for Cloud threat protection for AI services https://learn.microsoft.com/en-us/azure/defender-for-cloud/ai-onboarding
Understand Defender for Cloud alerts for Azure App Service https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-app-service
Understand Defender for Cloud alerts for Azure Cosmos DB https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-cosmos-db
Understand Defender for Cloud alerts for Azure DDoS Protection https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-ddos-protection
Understand Defender for Cloud alerts for Azure Key Vault https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-key-vault
Understand Defender for Cloud alerts for Azure network layer https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-network-layer
Understand Defender for Cloud alerts for Azure Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-storage
Understand Defender for Cloud alerts for Azure VM extensions https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-azure-vm-extensions
Understand Defender for Cloud alerts for Defender for APIs https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-defender-for-apis
Understand Defender for Cloud alerts for DNS https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-dns
Understand Defender for Cloud alerts for Linux VMs https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-linux-machines
Understand Defender for Cloud alerts for open-source databases https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-open-source-relational-databases
Navigate Defender for Cloud security alert references https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-reference
Understand Defender for Cloud alerts for Resource Manager https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-resource-manager
Understand Defender for Cloud alerts for SQL and Synapse https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-sql-database-and-azure-synapse-analytics
Understand Defender for Cloud alerts for Windows VMs https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-windows-machines
Configure Defender for Cloud container antimalware policies https://learn.microsoft.com/en-us/azure/defender-for-cloud/anti-malware
Assign granular access to AWS and GCP connectors https://learn.microsoft.com/en-us/azure/defender-for-cloud/assign-access-to-workload
Understand GCP connector authentication architecture in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/authentication-architecture-google-cloud
Configure binary drift detection and blocking for containers https://learn.microsoft.com/en-us/azure/defender-for-cloud/binary-drift-detection
Manage cloud scopes and unified RBAC in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/cloud-scopes-unified-rbac
Understand AWS connector authentication architecture in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/concept-authentication-architecture-aws
Use classic configuration to manage SQL vulnerability findings https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-vulnerability-findings-classic
Use express configuration to manage SQL vulnerability findings https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-vulnerability-findings-express
Assign IAM roles for Defender for Containers on AWS and GCP https://learn.microsoft.com/en-us/azure/defender-for-cloud/containers-permissions
Monitor APIs for sensitive data exposure https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-classification
Understand Defender for Cloud data handling and security https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-security
Configure secure authentication for Defender for Cloud CLI https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-cli-authentication
Configure network access and permissions for Defender for Containers https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-network-access
Enable Microsoft Defender for Azure Cosmos DB https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-databases-enable-cosmos-protections
Explore and investigate Defender for SQL security alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-sql-alerts
Use Defender VA scanner for SQL servers on machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-sql-on-machines-vulnerability-assessment
Interpret Defender for Storage threats and alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-threats-alerts
Configure disable rules for container vulnerability findings https://learn.microsoft.com/en-us/azure/defender-for-cloud/disable-vulnerability-findings-containers-secure-score
Enable Defender for open-source databases on AWS https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-defender-for-databases-aws
Configure sensitive data threat detection for Defender for Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-defender-for-storage-data-sensitivity
Enable CIEM in Microsoft Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-permissions-management
Enable and configure gated deployment for Kubernetes clusters https://learn.microsoft.com/en-us/azure/defender-for-cloud/enablement-guide-runtime-gated
Understand and assign Defender for Cloud permissions https://learn.microsoft.com/en-us/azure/defender-for-cloud/faq-permissions
Configure governance rules to enforce Defender remediation https://learn.microsoft.com/en-us/azure/defender-for-cloud/governance-rules
Use Defender for Cloud attack path analysis https://learn.microsoft.com/en-us/azure/defender-for-cloud/how-to-manage-attack-path
Use Purview data sensitivity in Defender alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/information-protection
Harden Kubernetes data plane with Azure Policy https://learn.microsoft.com/en-us/azure/defender-for-cloud/kubernetes-workload-protections
Configure on-demand malware scanning for Defender for Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/on-demand-malware-scanning
Configure on-upload malware scanning for Azure Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/on-upload-malware-scanning
Assign Defender for Cloud roles and permissions with Azure RBAC https://learn.microsoft.com/en-us/azure/defender-for-cloud/permissions
Configure CIEM capabilities in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/permissions-management
Configure roles and permissions for Defender for Servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-roles
Manage Defender for Cloud user and personal data https://learn.microsoft.com/en-us/azure/defender-for-cloud/privacy
Use Defender for Cloud AI security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-ai
Use Defender for Cloud API security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-api
Use Defender for Cloud security recommendations for Azure App Service https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-app-services
Apply Defender for Cloud compute security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-compute
Apply Defender for Cloud container security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-container
Apply Defender for Cloud data security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-data
Review deprecated Defender for Cloud security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-deprecated
Apply Defender for Cloud DevOps security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-devops
Implement identity and access recommendations in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-identity-access
Use Defender for Cloud IoT security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-iot
Use Defender for Cloud Key Vault security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-keyvault
Apply Defender for Cloud networking security recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-networking
Use Defender for Cloud serverless protection recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference-serverless-protection
Interpret and act on Defender for Cloud recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/review-security-recommendations
Secure Kubernetes deployments with gated container images https://learn.microsoft.com/en-us/azure/defender-for-cloud/runtime-gated-overview
Sign and verify container vulnerability findings artifacts https://learn.microsoft.com/en-us/azure/defender-for-cloud/secure-container-image
Configure security policies in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/security-policy-concept
Simulate Defender for SQL alerts on machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/simulate-alerts-sql-machines
Review and remediate SQL vulnerability assessment findings https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-find
Configure and interpret Azure SQL vulnerability assessments https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-overview
Reference for SQL vulnerability assessment rules https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-rules
Changelog for SQL vulnerability assessment rules https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-rules-changelog
Configure prerequisites and permissions for Defender for Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-storage
Manage tenant-wide permissions in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/tenant-wide-permissions-management
Configure JIT access and application control for Defender for Servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/tutorial-protect-resources

Configuration

Topic URL
Configure advanced malware scanning for Defender for Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/advanced-configurations-for-malware-scanning
Configure Docker Hub vulnerability assessments with Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-vulnerability-assessment-docker-hub
Configure JFrog Artifactory vulnerability assessments with Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/agentless-vulnerability-assessment-jfrog-artifactory
Use Defender for Cloud alert schemas for integrations https://learn.microsoft.com/en-us/azure/defender-for-cloud/alerts-schemas
Configure Azure Monitor Agent for Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/auto-deploy-azure-monitoring-agent
Configure prerequisites for Defender data security posture https://learn.microsoft.com/en-us/azure/defender-for-cloud/concept-data-security-posture-prepare
Configure Microsoft Security Private Link for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/concept-private-links
Configure Microsoft Security DevOps extension in Azure DevOps https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-azure-devops-extension
Configure Microsoft Security DevOps extension in Azure DevOps https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-azure-devops-extension
Configure Defender for Cloud alert email notifications https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-email-notifications
Set up private endpoints for Defender for Cloud via Security Private Link https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-private-endpoints
Modify Defender for Servers coverage and plan settings https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-servers-coverage
Configure continuous export of Defender for Cloud data https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export
Configure continuous export with Azure Policy at scale https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export-azure-policy
Enable continuous export to event hubs behind firewalls https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export-event-hub-firewall
Analyze Defender for Cloud export data in Azure Monitor https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export-view-data
Define custom security standards and recommendations https://learn.microsoft.com/en-us/azure/defender-for-cloud/create-custom-recommendations
Configure cross-tenant management with Azure Lighthouse https://learn.microsoft.com/en-us/azure/defender-for-cloud/cross-tenant-management
Configure custom Data Collection Rules for Defender for Servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-collection-rule
Enable data security posture for Azure datastores https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-security-posture-enable
Customize Defender data sensitivity settings https://learn.microsoft.com/en-us/azure/defender-for-cloud/data-sensitivity-settings
Use Defender for Cloud CLI for security scanning https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-cli-overview
Manage onboarding and offboarding for Defender for APIs https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-apis-manage
Check prerequisites to deploy Defender for APIs https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-apis-prepare
Onboard Docker Hub registries to Defender for Containers https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-enable-external-registry-for-docker-hub
Enable Defender for Containers plan across cloud connectors https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-enable-plan
Configure cluster exclusion tags for Defender sensor deployment https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-exclude-cluster
Verify Defender for Containers sensor and extension status https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-verify-deployment
Enable and configure Defender for Storage classic via templates https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-classic-enable
Set up automated malware remediation in Defender for Storage https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-configure-malware-scan
Enable vulnerability scanning with Defender Vulnerability Management https://learn.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-defender-vulnerability-management
Disable specific VM vulnerability findings in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/disable-vulnerability-findings
Configure exemptions and disable container VA findings https://learn.microsoft.com/en-us/azure/defender-for-cloud/disable-vulnerability-findings-containers
Configure agentless scanning for virtual machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-agentless-scanning-vms
Enable just-in-time access for Azure virtual machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-just-in-time-access
Enable DevOps pull request security annotations https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-pull-request-annotations
Configure Defender Vulnerability Management for containers https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-vulnerability-assessment
Exclude machines from agentless scanning in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/exclude-machines-agentless-scanning
Create large-scale policy exemptions in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/exempt-resources-at-scale
SQL VA express configuration Azure CLI commands reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/express-configuration-azure-commands
SQL VA express configuration PowerShell commands reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/express-configuration-powershell-commands
SQL VA express configuration PowerShell wrapper module reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/express-configuration-sql-commands
Configure File Integrity Monitoring with Defender for Endpoint https://learn.microsoft.com/en-us/azure/defender-for-cloud/file-integrity-monitoring-enable-defender-endpoint
Configure end-user and app context for AI security alerts https://learn.microsoft.com/en-us/azure/defender-for-cloud/gain-end-user-context-ai
Configure Microsoft Security DevOps GitHub Action https://learn.microsoft.com/en-us/azure/defender-for-cloud/github-action
Enable agentless container posture in Defender CSPM https://learn.microsoft.com/en-us/azure/defender-for-cloud/how-to-enable-agentless-containers
Configure IaC misconfiguration scanning with Microsoft Security DevOps https://learn.microsoft.com/en-us/azure/defender-for-cloud/iac-vulnerabilities
Configure and manage MCSB security standard https://learn.microsoft.com/en-us/azure/defender-for-cloud/manage-mcsb
Onboard Azure management groups to Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/onboard-management-group
Use built-in Azure Policy definitions for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/policy-reference
PowerShell script to enable SQL VA express configuration https://learn.microsoft.com/en-us/azure/defender-for-cloud/powershell-sample-vulnerability-assessment-azure-sql
PowerShell script to set SQL VA baselines https://learn.microsoft.com/en-us/azure/defender-for-cloud/powershell-sample-vulnerability-assessment-baselines
Query SBOM data in Defender for Cloud using Cloud Security Explorer https://learn.microsoft.com/en-us/azure/defender-for-cloud/query-software-bill-of-materials
Set up Azure Policy guest configuration for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/security-baseline-guest-configuration
Reference sensitive information types in Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/sensitive-info-types
Enable SQL vulnerability assessment (Express) for Azure SQL and Synapse https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-enable
Enable SQL vulnerability assessment (Classic) with storage account https://learn.microsoft.com/en-us/azure/defender-for-cloud/sql-azure-vulnerability-assessment-enable-classic
Test agentless malware scanning alerts for VMs https://learn.microsoft.com/en-us/azure/defender-for-cloud/test-agentless-malware-scanning
Update configuration for Defender for SQL Servers on Machines https://learn.microsoft.com/en-us/azure/defender-for-cloud/update-sql-machine-configuration

Integrations & Coding Patterns

Topic URL
Connect Defender for Cloud data to Power BI https://learn.microsoft.com/en-us/azure/defender-for-cloud/add-data-power-bi
Query Defender attack path data via ARG API https://learn.microsoft.com/en-us/azure/defender-for-cloud/attack-path-api
Integrate Defender for Cloud CLI into CI/CD pipelines https://learn.microsoft.com/en-us/azure/defender-for-cloud/ci-cd-pipeline-scanning-with-defender-cli
Author Cloud Security Explorer queries for AKS vulnerabilities https://learn.microsoft.com/en-us/azure/defender-for-cloud/cloud-security-explorer-kubernetes-clusters
Connect Endor Labs with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/connect-endor-labs
Connect Mend.io with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/connect-mend-io
Connect ServiceNow ITSM with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/connect-servicenow
Set up Defender for Cloud continuous export via REST API https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export-rest-api
Automate ServiceNow tickets with governance rules https://learn.microsoft.com/en-us/azure/defender-for-cloud/create-governance-rule-servicenow
Create and sync ServiceNow tickets from Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/create-ticket-servicenow
Use Defender for Cloud CLI to scan container images https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-cli-syntax
Consume and export Defender for SQL scan results via ARG https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-sql-scan-results
Use partner API security testing with Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-partner-applications
Enable Defender for Endpoint integration in Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-defender-for-endpoint
Stream Defender for Cloud alerts to SIEM tools https://learn.microsoft.com/en-us/azure/defender-for-cloud/export-to-siem
Configure Azure resources to export alerts to QRadar and Splunk https://learn.microsoft.com/en-us/azure/defender-for-cloud/export-to-splunk-or-qradar
Integrate AWS CloudTrail logs with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/integrate-cloud-trail
Integrate Defender for Endpoint with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/integration-defender-for-endpoint
Ingest GCP Cloud Logging into Defender for Cloud via Pub/Sub https://learn.microsoft.com/en-us/azure/defender-for-cloud/logging-ingestion
Onboard 42Crunch API security with Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/onboarding-guide-42crunch
Connect Bright Security DAST with Defender https://learn.microsoft.com/en-us/azure/defender-for-cloud/onboarding-guide-bright
Integrate StackHawk testing with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/onboarding-guide-stackhawk
Use legacy security solution integrations with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/partner-integration
Onboard Defender for Cloud using PowerShell automation https://learn.microsoft.com/en-us/azure/defender-for-cloud/powershell-onboarding
Run Azure Resource Graph queries for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/resource-graph-samples
Use Defender VM subassessments for container vulnerabilities https://learn.microsoft.com/en-us/azure/defender-for-cloud/subassessment-rest-api

Deployment

Topic URL
Integrate Defender for Cloud CLI into CI/CD pipelines https://learn.microsoft.com/en-us/azure/defender-for-cloud/ci-cd-pipeline-scanning-with-defender-cli
Deploy Defender sensor and policy via Azure CLI https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-deploy-azure-cli
Disable and remove Defender for Containers components safely https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-remove
Migrate Defender for SQL to AMA autoprovisioning https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-sql-autoprovisioning
Enable Defender for SQL Servers on Machines across environments https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-sql-usage
Enable Defender for Storage via Azure portal https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-azure-portal-enablement
Enable Defender for Storage with IaC templates https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-infrastructure-as-code-enablement
Enable Defender for Storage using Azure Policy https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-policy-enablement
Enable Defender for Storage with Azure PowerShell https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-powershell-enablement
Enable Defender for Storage using REST API https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-rest-api-enablement
Install Defender for Containers sensor using Helm https://learn.microsoft.com/en-us/azure/defender-for-cloud/deploy-helm
Enable Defender for SQL on Machines at scale https://learn.microsoft.com/en-us/azure/defender-for-cloud/enable-defender-sql-at-scale
Deploy gated deployment agent via Infrastructure as Code https://learn.microsoft.com/en-us/azure/defender-for-cloud/gated-deployment-infrastructure-as-code
Deploy GitHub Advanced Security with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/github-advanced-security-deploy
Set up sandbox integration of GHAS with Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/github-advanced-security-deploy-sandbox
Identify SQL Servers still protected by Microsoft Monitoring Agent https://learn.microsoft.com/en-us/azure/defender-for-cloud/identify-sql-servers-protected-by-monitor-agent
Migrate File Integrity Monitoring to Defender for Endpoint https://learn.microsoft.com/en-us/azure/defender-for-cloud/migrate-file-integrity-monitoring
Scale Microsoft Defender for Servers across environments https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-scale
Check Defender for Cloud interoperability and regional support https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-cloud
Review container support matrix for Defender for Cloud https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-containers
Review support matrix and requirements for Defender for Servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-servers
Verify Defender for SQL Servers on Machines protection status https://learn.microsoft.com/en-us/azure/defender-for-cloud/verify-machine-protection