For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/default_rules/def-000-zky.md. A documentation index is available at /llms.txt.

Microsoft Defender for Servers should be enabled

azure.security

Description

Microsoft Defender for Servers extends threat detection, vulnerability assessment, just-in-time VM access, and adaptive application controls to Azure virtual machines and Arc-enabled servers. The plan must be enabled at the Standard tier on every subscription so that server workloads receive endpoint and identity protection.

Remediation

See Protect your servers with Defender for Servers for step-by-step instructions on enabling the plan.