2.1.17 Ensure that Auto provisioning of 'Microsoft Defender for Containers components' is Set to 'On'

Information

Enable automatic provisioning of the Microsoft Defender for Containers components.

Rationale:

As with any compute resource, Container environments require hardening and run-time protection to ensure safe operations and detection of threats and vulnerabilities.

Impact:

Microsoft Defender for Containers will require additional licensing.

Solution

From Azure Portal

From Azure Home select the Portal Menu

Select Microsoft Defender for Cloud

Then Environment Settings

Select a subscription

Then Auto Provisioning in the left column.

Set Microsoft Defender for Containers components to On

Default Value:

By default, Microsoft Defender for Containers is disabled. If Defender for Containers is enabled from the Microsoft Defender for Cloud portal, auto provisioning will be enabled.

See Also

https://workbench.cisecurity.org/benchmarks/10624