You have an Azure subscription that has Microsoft Defender for Cloud enabled.
You have 50 Azure virtual machines that run Windows Server.
You need to ensure that any security exploits detected on the virtual machines are forwarded to Defender for Cloud.
Which extension should you enable on the virtual machines?
Click on the arrows to vote for the correct answer
A. B. C. D.A
https://docs.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-vmThe correct answer is C. Log Analytics agent for Azure VMs.
Explanation:
Microsoft Defender for Cloud is a cloud-based security solution that helps protect enterprise environments from various threats, such as malware, viruses, and other types of attacks. To protect Azure virtual machines running Windows Server, you need to ensure that any security exploits detected on the virtual machines are forwarded to Defender for Cloud.
The Log Analytics agent for Azure VMs is an Azure Monitor agent that you can install on Azure virtual machines to collect data and send it to Azure Monitor. Azure Monitor is a centralized monitoring service that provides visibility into the health and performance of your Azure resources.
By enabling the Log Analytics agent on your Azure virtual machines, you can collect data related to security events, system events, and other types of events that can help you detect security exploits on the virtual machines. This data can then be forwarded to Defender for Cloud, which can analyze the data and take appropriate actions to mitigate the security risks.
Therefore, the correct answer is C. Log Analytics agent for Azure VMs.
Option A, Vulnerability assessment for machines, is a solution that provides a security assessment of your Azure virtual machines, including an inventory of vulnerabilities and recommendations for remediation. However, this option doesn't forward the security exploits detected to Defender for Cloud.
Option B, Microsoft Dependency agent, is an agent that can be used to collect dependency telemetry from applications running on Azure virtual machines. This option doesn't provide the security-related telemetry needed to detect security exploits on the virtual machines.
Option D, Guest Configuration agent, is an Azure policy agent that can be used to audit the compliance of your Azure virtual machines against specific policies. This option doesn't provide the security-related telemetry needed to detect security exploits on the virtual machines.