Azure Microsoft Defender for Cloud set to Off for Resource Manager
Description
This policy checks to ensure that Azure Defender for the cloud is enabled for the Resource Manager. Azure Defender is a key security feature that provides threat protection for workloads across Azure, on-premises, and other cloud environments. The Resource Manager, being a central management component, must have Azure Defender enabled to prevent the risk of unauthorized access and potential harm to resources. Failure to do so increases the risk of potential threats and cyber attacks.
Code Example
go
resource "azurerm_security_center_subscription_pricing" "example" {
tier = "Standard"
resource_type = "Arm"
...
}Remediation
Terraform
- Resource: azurerm_security_center_subscription_pricing
- Arguments: resource_type, tier
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0741 |
| Severity | MEDIUM |
| IaC Type | Terraform |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_AZURE_234 |