Select the two Azure ARC prerequisites required for configuring your AWS account into Security Center.
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer: B and D Option B and D are correct.
Azure Arc-enabled servers requires the following prerequisites in your subscription in order to use this as a service:
Microsoft.HybridCompute, Microsoft.GuestConfiguration.
If they are not registered, you can register them usingAzure Powershell or Azure CLI.
Option A and C are incorrect as they are AWS policies present inside the AWS.
Reference:
Azure Arc is a service that enables customers to extend Azure management capabilities to hybrid and multicloud environments. Azure Security Center (ASC) is a service that provides security management and threat protection for hybrid cloud workloads.
To configure an AWS account into Azure Security Center, the following two Azure Arc prerequisites are required:
Microsoft.HybridCompute: This is an Azure Arc extension that enables Azure to connect and manage hybrid resources like virtual machines, Kubernetes clusters, and other servers running outside of Azure. This extension must be installed on the hybrid resource you want to monitor.
AWSSecurityHubReadOnlyAccess: This is an AWS IAM role that Azure Security Center needs to access your AWS environment. The role provides read-only access to the AWS Security Hub console and enables Azure Security Center to collect security findings from AWS Security Hub.
Therefore, options A and C are incorrect, as they are not related to the prerequisites required for configuring AWS account into Azure Security Center. Option B, Microsoft.GuestConfiguration, is also incorrect as it is an Azure Policy initiative that allows you to assess and enforce configuration settings on Azure virtual machines and Azure Arc-enabled servers. The correct answers are D, Microsoft.HybridCompute, and C, AWSSecurityHubReadOnlyAccess.