Ensure that monitoring for operating system (OS) vulnerabilities is enabled within Microsoft Azure Security Center in order to determine if your Azure virtual machines are vulnerable to attacks. Azure Security Center analyzes daily the operating system of your virtual machines for configurations that could make these VMs more vulnerable to cyber attacks. The Security Center service also recommends specific configuration changes that you can apply in order to address any found OS vulnerabilities.
This rule resolution is part of the Cloud Conformity Security & Compliance tool for Azure
When Monitor OS Vulnerabilities feature is enabled, Azure Security Center analyzes operating system configurations on a daily basis to identify security issues that could make your organization's systems vulnerable to attacks.
Audit
To determine if "Monitor OS Vulnerabilities" feature is enabled, perform the following actions:
Remediation / Resolution
To enable OS vulnerability monitoring and recommendations for your Microsoft Azure virtual machines (VMs), perform the following actions:
References
- Azure Official Documentation
- Working with security policies
- Protecting your machines and applications in Azure Security Center
- CIS Microsoft Azure Foundations
- Azure Command Line Interface (CLI) Documentation
- az
- az account get-access-token
Unlock the Remediation Steps
Gain free unlimited access
to our full Knowledge Base
Over 750 rules & best practices
for and
Get started for FREE
You are auditing:
Enable Monitoring for OS Vulnerabilities
Risk level: Medium