Merge pull request #204986 from ElazarK/ga-for-arc

ga addition maya

Author: v-dirichards

articles/defender-for-cloud/defender-for-containers-enable.md

@@ -3,7 +3,7 @@ title: How to enable Microsoft Defender for Containers in Microsoft Defender for
 description: Enable the container protections of Microsoft Defender for Containers
 ms.topic: overview
 zone_pivot_groups: k8s-host
-ms.date: 07/14/2022
+ms.date: 07/25/2022
 ---
 
 # Enable Microsoft Defender for Containers
@@ -30,15 +30,15 @@ You can learn more by watching these videos from the Defender for Cloud in the F
 > [!NOTE]
 > Defender for Containers' support for Arc-enabled Kubernetes clusters, AWS EKS, and GCP GKE. This is a preview feature.
 >
-> [!INCLUDE [Legalese](../../includes/defender-for-cloud-preview-legal-text.md)]
+> To learn more about the supported operating systems, feature availability, outbound proxy and more see the [Defender for Containers feature availability](supported-machines-endpoint-solutions-clouds-containers.md).
 ::: zone-end
 
 ::: zone pivot="defender-for-container-aks"
 [!INCLUDE [Prerequisites](./includes/defender-for-container-prerequisites-aks.md)]
 ::: zone-end
 
 ::: zone pivot="defender-for-container-arc,defender-for-container-eks,defender-for-container-gke"
-[!INCLUDE [Prerequisites](./includes/defender-for-container-prerequisites-arc-eks.md)]
+[!INCLUDE [Prerequisites](./includes/defender-for-container-prerequisites-arc-eks-gke.md)]
 ::: zone-end
 
 ::: zone pivot="defender-for-container-aks"

articles/defender-for-cloud/includes/defender-for-container-prerequisites-aks.md

@@ -1,10 +1,10 @@
 ---
 ms.service: defender-for-cloud
 ms.topic: include
-ms.date: 07/14/2022
+ms.date: 07/19/2022
 ---
 
-## Network requirements
+## Network requirements - AKS
 
 Validate the following endpoints are configured for outbound access so that the Defender profile can connect to Microsoft Defender for Cloud to send security data and events:
 

articles/defender-for-cloud/includes/defender-for-container-prerequisites-arc-eks.md renamed to articles/defender-for-cloud/includes/defender-for-container-prerequisites-arc-eks-gke.md

@@ -1,7 +1,7 @@
 ---
 ms.service: defender-for-cloud
 ms.topic: include
-ms.date: 07/14/2022
+ms.date: 07/19/2022
 ---
 
 ## Network requirements
@@ -16,4 +16,12 @@ For Azure public cloud deployments:
 | *.oms.opinsights.azure.com | 443  |
 | login.microsoftonline.com  | 443  |
 
-You'll also need to validate the [Azure Arc-enabled Kubernetes network requirements](../../azure-arc/kubernetes/quickstart-connect-cluster.md#meet-network-requirements).
+The following domains are only necessary if you're using a relevant OS. For example, if you have EKS clusters running in AWS, then you would only need to apply the `Amazon Linux 2 (Eks): Domain: "amazonlinux.*.amazonaws.com/2/extras/*"` domain.
+
+| Domain                     | Port | Host operating systems |
+| -------------------------- | ---- | -- |
+| amazonlinux.*.amazonaws.com/2/extras/ | 443 | Amazon Linux 2 |
+| yum default repositories | - | RHEL / Centos |
+| apt default repositories | - | Debian |
+
+You'll also need to validate the [Azure Arc-enabled Kubernetes network requirements](../../azure-arc/kubernetes/quickstart-connect-cluster.md#meet-network-requirements).

articles/defender-for-cloud/supported-machines-endpoint-solutions-clouds-containers.md

@@ -2,7 +2,7 @@
 title: Microsoft Defender for Containers feature availability
 description: Learn about the availability of Microsoft Defender for Cloud containers features according to OS, machine type, and cloud deployment.
 ms.topic: overview
-ms.date: 07/26/2022
+ms.date: 07/27/2022
 ms.custom: references_regions
 ---
 
@@ -35,7 +35,7 @@ The **tabs** below show the features that are available, by environment, for Mic
 
 <sup><a name="footnote3"></a>3</sup> VA can detect vulnerabilities for these [language specific packages](#registries-and-images).
 
-## Additional information
+## Additional environment information
 
 ### Registries and images
 
@@ -91,6 +91,27 @@ The **tabs** below show the features that are available, by environment, for Mic
 > [!NOTE]
 > For additional requirements for Kuberenetes workload protection, see [existing limitations](../governance/policy/concepts/policy-for-kubernetes.md#limitations).
 
+### Outbound proxy support
+
+Outbound proxy without authentication and outbound proxy with basic authentication are supported. Outbound proxy that expects trusted certificates is currently not supported.
+
+### Supported host operating systems
+
+Defender for Containers relies on the **Defender extension** for several features. The Defender extension is supported on the following host operating systems:
+
+- Amazon Linux 2
+- CentOS 8
+- Debian 10
+- Debian 11
+- Google Container-Optimized OS 
+- Red Hat Enterprise Linux 8
+- Ubuntu 16.04 
+- Ubuntu 18.04
+- Ubuntu 20.04
+- Ubuntu 22.04
+
+Ensure your Kubernetes node is running on one of the verified supported operating systems. Clusters with different host operating systems, will only get partial coverage. Check out the [Supported features by environment](#supported-features-by-environment) for more information.
+
 ### [**GCP (GKE)**](#tab/gcp-gke)
 
 | Domain | Feature | Supported Resources | Linux release state <sup>[1](#footnote1)</sup> | Windows release state <sup>[1](#footnote1)</sup> | Agentless/Agent-based | Pricing tier |
@@ -124,6 +145,27 @@ The **tabs** below show the features that are available, by environment, for Mic
 > [!NOTE]
 > For additional requirements for Kuberenetes workload protection, see [existing limitations](../governance/policy/concepts/policy-for-kubernetes.md#limitations).
 
+### Outbound proxy support
+
+Outbound proxy without authentication and outbound proxy with basic authentication are supported. Outbound proxy that expects trusted certificates is currently not supported.
+
+### Supported host operating systems
+
+Defender for Containers relies on the **Defender extension** for several features. The Defender extension is supported on the following host operating systems:
+
+- Amazon Linux 2
+- CentOS 8
+- Debian 10
+- Debian 11
+- Google Container-Optimized OS 
+- Red Hat Enterprise Linux 8
+- Ubuntu 16.04 
+- Ubuntu 18.04
+- Ubuntu 20.04
+- Ubuntu 22.04
+
+Ensure your Kubernetes node is running on one of the verified supported operating systems. Clusters with different host operating systems, will only get partial coverage. Check out the [Supported features by environment](#supported-features-by-environment) for more information.
+
 ### [**On-prem/IaaS (Arc)**](#tab/iaas-arc)
 
 | Domain | Feature | Supported Resources | Linux release state <sup>[1](#footnote1)</sup> | Windows release state <sup>[1](#footnote1)</sup>  | Agentless/Agent-based | Pricing tier |
@@ -170,10 +212,31 @@ The **tabs** below show the features that are available, by environment, for Mic
 > [!NOTE]
 > For additional requirements for Kuberenetes workload protection, see [existing limitations](../governance/policy/concepts/policy-for-kubernetes.md#limitations).
 
+### Outbound proxy support
+
+Outbound proxy without authentication and outbound proxy with basic authentication are supported. Outbound proxy that expects trusted certificates is currently not supported.
+
+### Supported host operating systems
+
+Defender for Containers relies on the **Defender extension** for several features. The Defender extension is supported on the following host operating systems:
+
+- Amazon Linux 2
+- CentOS 8
+- Debian 10
+- Debian 11
+- Google Container-Optimized OS 
+- Red Hat Enterprise Linux 8
+- Ubuntu 16.04 
+- Ubuntu 18.04
+- Ubuntu 20.04
+- Ubuntu 22.04
+
+Ensure your Kubernetes node is running on one of the verified supported operating systems. Clusters with different host operating systems, will only get partial coverage. Check out the [Supported features by environment](#supported-features-by-environment) for more information.
+
 ---
 
 ## Next steps
-
+    
 - Learn how [Defender for Cloud collects data using the Log Analytics Agent](enable-data-collection.md).
 - Learn how [Defender for Cloud manages and safeguards data](data-security.md).
 - Review the [platforms that support Defender for Cloud](security-center-os-coverage.md).