Skip to content

Commit 19ca340

Browse files
AlizaBernsteinAlizaBernstein
committed
Update defender-for-containers-vulnerability-assessment-azure.md
Updates per mtg Tomer May 4
1 parent 61280f0 commit 19ca340

File tree

1 file changed

+6
-2
lines changed

1 file changed

+6
-2
lines changed

articles/defender-for-cloud/defender-for-containers-vulnerability-assessment-azure.md

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -30,8 +30,7 @@ The triggers for an image scan are:
3030

3131
- Continuous scan for running images. This scan is performed every seven days for as long as the image runs. This mode runs instead of the above mode when the Defender profile, or extension is running on the cluster.
3232

33-
When a scan is triggered, findings are available as Defender for Cloud recommendations from 2 minutes up to 15 minutes after the scan is complete. Repositories that have not being scanned yet because a scan wasn't triggered since Defender for Containers was enabled are called **Unverified repositories**.
34-
33+
Once the scan is triggered, scan results will typically appear in the Defender for Cloud recommendations after a few minutes, but in some cases it may take up to an hour.
3534
## Prerequisites
3635

3736
Before you can scan your ACR images:
@@ -166,6 +165,11 @@ Defender for Containers pulls the image from the registry and runs it in an isol
166165

167166
Defender for Cloud filters and classifies findings from the scanner. When an image is healthy, Defender for Cloud marks it as such. Defender for Cloud generates security recommendations only for images that have issues to be resolved. By only notifying you when there are problems, Defender for Cloud reduces the potential for unwanted informational alerts.
168167

168+
### What is the difference between Not Applicable Resources and Unverified Resources?
169+
170+
- **Not applicable resources** are resources for which the recommendation can't give a definitive answer. The not applicable tab also includes reasons for each resource.
171+
- **Unverified resources** are resoucres that have not being scanned yet because a scan wasn't triggered since Defender for Containers was enabled.
172+
169173
### Does Microsoft share any information with Qualys in order to perform image scans?
170174

171175
No, the Qualys scanner is hosted by Microsoft, and no customer data is shared with Qualys.

0 commit comments

Comments
 (0)