Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Defender updates #19665

Merged
merged 3 commits into from
Jul 4, 2022
Merged

Defender updates #19665

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
9a055ec
Defender updates
orparnes Jul 4, 2022
dc44514
sample
orparnes Jul 4, 2022
38d5e3f
remove old description
orparnes Jul 4, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
24 changes: 15 additions & 9 deletions ...ft.ContainerService/stable/2022-06-01/examples/ManagedClustersCreate_SecurityProfile.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,9 +48,11 @@
}
},
"securityProfile": {
"azureDefender": {
"enabled": true,
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME"
"defender": {
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
"securityMonitoring": {
"enabled": true
}
}
}
}
Expand Down Expand Up @@ -144,9 +146,11 @@
}
},
"securityProfile": {
"azureDefender": {
"enabled": true,
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME"
"defender": {
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
"securityMonitoring": {
"enabled": true
}
}
}
}
Expand Down Expand Up @@ -237,9 +241,11 @@
}
},
"securityProfile": {
"azureDefender": {
"enabled": true,
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME"
"defender": {
"logAnalyticsWorkspaceResourceId": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
"securityMonitoring": {
"enabled": true
}
}
}
}
Expand Down
30 changes: 20 additions & 10 deletions ...ervice/resource-manager/Microsoft.ContainerService/stable/2022-06-01/managedClusters.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5466,9 +5466,9 @@
"ManagedClusterSecurityProfile": {
"type": "object",
"properties": {
"azureDefender": {
"$ref": "#/definitions/ManagedClusterSecurityProfileAzureDefender",
"description": "Azure Defender settings for the security profile."
"defender": {
"$ref": "#/definitions/ManagedClusterSecurityProfileDefender",
"description": "Microsoft Defender settings for the security profile."
},
"azureKeyVaultKms": {
"$ref": "#/definitions/AzureKeyVaultKms",
Expand Down Expand Up @@ -5527,19 +5527,29 @@
},
"description": "Storage profile for the container service cluster."
},
"ManagedClusterSecurityProfileAzureDefender": {
"ManagedClusterSecurityProfileDefender": {
"type": "object",
"properties": {
"enabled": {
"type": "boolean",
"description": "Whether to enable Azure Defender"
},
"logAnalyticsWorkspaceResourceId": {
"type": "string",
"description": "Resource ID of the Log Analytics workspace to be associated with Azure Defender. When Azure Defender is enabled, this field is required and must be a valid workspace resource ID. When Azure Defender is disabled, leave the field empty."
"description": "Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty."
},
"securityMonitoring": {
"$ref": "#/definitions/ManagedClusterSecurityProfileDefenderSecurityMonitoring",
"description": "Microsoft Defender threat detection for Cloud settings for the security profile."
}
},
"description": "Microsoft Defender settings for the security profile."
},
"ManagedClusterSecurityProfileDefenderSecurityMonitoring": {
"type": "object",
"properties": {
"enabled": {
"type": "boolean",
"description": "Whether to enable Defender threat detection"
}
},
"description": "Azure Defender settings for the security profile."
"description": "Microsoft Defender settings for the security profile threat detection."
},
"ManagedClusterStorageProfileDiskCSIDriver": {
"type": "object",
Expand Down