For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/default_rules/def-000-j55.md. A documentation index is available at /llms.txt.

Microsoft Defender for Containers should be enabled

azure.security

Description

Microsoft Defender for Containers protects Kubernetes clusters, container registries, and container workloads with vulnerability assessment, runtime threat detection, and posture hardening. The plan must be enabled at the Standard tier on every subscription that hosts container workloads.

Remediation

See Enable Defender for Containers on AKS via the Azure portal for step-by-step instructions on enabling the plan.