You have an Azure subscription that contains the resources shown in the following table. You plan to enable Azure Defender for the subscription. Which resources can be protected by using Azure Defender?
Just confirmed with Microsoft - Azure defender can protect your DNS traffic at network layer, but not the virtual network - answer should be C
https://docs.microsoft.com/en-ca/azure/security-center/azure-defender
Answer: A, VM1, VNET1, storage1, and Vault1
Reason: Microsoft Defender for Cloud protects all the listed resource types. While VNETs are primarily secured through NSGs and Azure Firewall, Defender for Cloud does provide network security recommendations and monitoring for VNETs through its Network Security features, including network mapping, adaptive network hardening, and network security monitoring.
Reference: https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources
Defender for Cloud can protect Virtual Networks (VNets) in Azure by providing threat protection, configuration monitoring, vulnerability management, and advanced network security features. However, Defender for Cloud does not act as a firewall itself — it works in tandem with services like Azure Firewall and DDoS Protection to secure the network.
VM1:
Azure Defender for Virtual Machines provides threat protection for virtual machines in Azure. It monitors for suspicious activity, vulnerabilities, and attacks on your VMs.
VNET1:
Azure Defender for Networks provides protection for virtual networks (VNets). It helps identify vulnerabilities, misconfigurations, and potential threats, such as open ports or unprotected network traffic.
STORAGE1:
Azure Defender for Storage offers protection for Azure Storage accounts. It helps detect malicious activity like ransomware, suspicious access patterns, and abnormal file changes.
VAULT1:
Azure Defender for Key Vault provides protection for Azure Key Vaults. It helps detect suspicious activities, such as unauthorized access to secrets, keys, or certificates stored in the Key Vault.
To support the Answer.
Yes, a Virtual Network (VNET) can be protected using Microsoft Defender for Cloud (formerly Azure Defender). Microsoft Defender for Cloud offers several features to enhance the security of VNETs:
Network security recommendations: Defender for Cloud provides recommendations to improve the security posture of your VNETs, such as associating subnets with Network Security Groups (NSGs)
Answer = A
Answer is A - VM1, VNET1, storage and KV.
Defender for cloud can integrate with VNets, including NICs, subnets and NSGs.
Reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/support-matrix-defender-for-cloud
I would go with A. Defender supports for virtual networks
Link : https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources?WT.mc_id=Portal-Microsoft_Azure_Security
Correct Solution
Answer is A.
Open Azure portal, then access your configured VNET.
Under the security settings you will see Microsoft Defender for Cloud.
And there is the following:
Defender for Cloud continuously monitors the configuration of your virtual networks to identify potential security vulnerabilities and recommends actions to mitigate them.
Perhaps this has changed recently but you can absolutly use Defender for Cloud to protect Virtual Networks.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources
Answer is correct
Azure Defender for network security provides threat detection and monitoring capabilities for VNets. It analyzes network traffic and identifies potential threats, such as network-based attacks and suspicious communication patterns.
Answer is correct: https://learn.microsoft.com/en-us/azure/defender-for-cloud/protect-network-resources#view-your-networking-resources-and-their-recommendations
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
tim_f
Highly Voted 3 years, 9 months agoneemz
Highly Voted 3 years, 6 months agomassnonn
1 year, 7 months agostonwall12
Most Recent 1 week, 3 days agogolitech
3 weeks agogolitech
3 weeks agoITFranz
1 month, 1 week agoSrirupam
2 months, 3 weeks agopentium75
6 months, 3 weeks agoxRiot007
7 months agodc864d4
9 months, 1 week agoPamban
9 months, 2 weeks agoJaridB
9 months, 3 weeks agoWilianCArias
1 year, 3 months agoFeraso
1 year, 3 months agoMrawrrr
1 year, 1 month agoBigShot0
1 year, 5 months agoESAJRR
1 year, 5 months agoArio
1 year, 7 months agoYesvanth1
1 year, 8 months ago