Microsoft Defender for Cloud Integration for Security Operations integrates with Microsoft Defender for Cloud to determine if the cloud assets are configured according to security standards. It also identifies the resources that must be fixed to protect your cloud resources. These resources are prioritized and a list of recommendations are provided.
The Defender for Cloud Integration for Security Operations enriches the compliance data on your instance by retrieving data from Microsoft Defender for Cloud.
A series of scheduled jobs invokes the integrations automatically. You can also run these scheduled jobs manually. Scheduled jobs simplify the test results remediation life cycle by keeping the instance synchronized with Microsoft Defender for Cloud.
- FIXED:
- After completion of an ASC integration that brings in Azure cloud resources, cloud resource type of the Assets are mapped to right cloud resource types.
The following dependent plugins must be installed and activated:
- Configuration Compliance (v14.0.1)
- Security Support Common (v13.2.0)
- Vulnerability Response (v16.2.1)
The Microsoft Defender for Cloud platform integration tasks require the following roles:
- sn_vul_asc.configure_integration: Ability to read, write, and delete records.
- sn_vul_asc.read_integration: Ability to read records.