You have an Azure virtual machine named VM1.
From Azure Security Center, you get the following high-severity recommendation: Install endpoint protection solutions on virtual machine.
You need to resolve the issue causing the high-severity recommendation.
What should you do?
Click on the arrows to vote for the correct answer
A. B. C. D.A
https://docs.microsoft.com/en-us/azure/security-center/security-center-endpoint-protectionThe recommendation from Azure Security Center to "Install endpoint protection solutions on virtual machine" means that the virtual machine is currently not protected with an endpoint protection solution, which is a critical security requirement to defend against various types of cyber threats such as malware, viruses, and other malicious software.
To resolve the issue and address the high-severity recommendation, the following solutions can be applied:
Option A: Add the Microsoft Antimalware extension to VM1. Microsoft Antimalware is a built-in security solution that helps detect and remove viruses, spyware, and other malicious software. It can be added as an extension to Azure virtual machines to provide endpoint protection. This option is a good choice to address the high-severity recommendation quickly and easily.
Option B: Install Microsoft System Center Security Management Pack for Endpoint Protection on VM1. This option requires additional setup and configuration since the Microsoft System Center Security Management Pack is a separate software suite from Azure. It provides comprehensive endpoint protection by managing antivirus software, updating definitions, and monitoring system events.
Option C: Add the Network Watcher Agent for Windows extension to VM1. The Network Watcher Agent for Windows is a network monitoring and diagnostic tool that helps to identify and troubleshoot issues related to network connectivity, performance, and security. While it can be useful for diagnosing network-related issues, it does not provide endpoint protection capabilities to the virtual machine.
Option D: Onboard VM1 to Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP). Microsoft Defender ATP is a comprehensive endpoint protection solution that provides real-time protection against various types of cyber threats. It includes features such as antivirus, endpoint detection and response, and automated investigation and remediation. This option requires additional setup and configuration, including licensing and deployment, but provides the most comprehensive endpoint protection solution.
Therefore, the recommended solution to resolve the high-severity recommendation is Option A: Add the Microsoft Antimalware extension to VM1. This option provides an easy and effective way to protect the virtual machine from cyber threats, and it is a built-in security solution that does not require any additional software or licensing.