Enable Standard Subscription | Vulnerability Database

Enable the standard security center subscription tier

To benefit from Azure Defender you should use the Standard subscription tier.

        Enabling Azure Defender extends the capabilities of the free mode to workloads running in private and other public clouds, providing unified security management and threat protection across your hybrid cloud workloads.

Impact

Using free subscription does not enable Azure Defender for the resource type

Recommended Actions

Follow the appropriate remediation steps below to resolve the issue.

Log in to the Microsoft Azure Management Console.
Select the “Search resources, services, and docs” option at the top and search for Security Center.
On the “Security Center page, scroll down and select the “Pricing & Settings” option under “Management” in the left navigation panel.
On Pricing & Settings page, click on the name of the Azure subscription that needs to examine.
In the blade navigation panel, choose Pricing tier and check the pricing tier enabled for the selected subscription and check if the Standard pricing tier is enabled or not.
Repeat steps number 2 - to check other Azure accounts.
Navigate to Azure Security Center and choose Pricing & settings to access your Azure account subscriptions in the navigation panel.
Click on the name of the Azure subscription that needs to be examine on the Pricing page.
In the navigation panel, select Pricing tier, then click on the Standard tier box to choose the required tier and click on the Save button to make the changes.
Repeat steps number 7 - 9 to ensure that standard pricing is enabled in the security center.

Enable standard subscription tier to benefit from Azure Defender

1
2
3
4
5


 resource "azurerm_security_center_subscription_pricing" "good_example" {
   tier          = "Standard"
   resource_type = "VirtualMachines"
 }
 

Remediation Links

https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/security_center_subscription_pricing#tier