Skip to content

Commit 5d514c7

Browse files
authored
Merge pull request #262093 from AlizaBernstein/WI-194508-GH-faq-track-aws-costs
WI-194508-GH-faq-track-aws-costs
2 parents b92f20f + dcae911 commit 5d514c7

File tree

2 files changed

+13
-4
lines changed

2 files changed

+13
-4
lines changed

articles/defender-for-cloud/faq-data-collection-agents.yml

Lines changed: 12 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,9 @@ metadata:
77
ms.author: elkrieger
88
manager: raynew
99
ms.topic: faq
10-
ms.date: 06/20/2023
10+
ms.custom: ignite-2022
11+
ms.date: 01/22/2024
12+
1113
title: 'Common questions about data collection, agents, and workspaces'
1214
summary: |
1315
Defender for Cloud collects data from your Azure virtual machines (VMs), Virtual Machine Scale Sets, IaaS containers, and non-Azure computers (including on-premises machines) to monitor for security vulnerabilities and threats. The Log Analytics agent collects data, which reads various security-related configurations and event logs from the machine and copies the data to your workspace for analysis.
@@ -184,7 +186,7 @@ sections:
184186
![Remove the agent](./media/platform-migration-faq/remove-the-agent.png)
185187
186188
> [!NOTE]
187-
> If a Linux VM already has a nonextension OMS agent, removing the extension removes the agent as well and you have to reinstall it.
189+
> If a Linux VM already has a non-extension OMS agent, removing the extension removes the agent as well and you have to reinstall it.
188190
189191
190192
- question: |
@@ -222,6 +224,14 @@ sections:
222224
> [!NOTE]
223225
> AWS charges for retention of disk snapshots. The Defender for Cloud scanning process actively tries to minimize the period during which a snapshot is stored in your account (typically up to a few minutes). AWS might charge an overhead cost for the disk snapshots storage. Check with AWS to see what costs apply to you.
224226
227+
- question: |
228+
How can I track AWS costs incurred for the disk snapshots created by Defender for Cloud agentless scanning?
229+
answer: |
230+
Disk snapshots are created with the `CreatedBy` tag key, and the `Microsoft Defender for Cloud` tag value. The `CreatedBy` tag tracks who created the resource.
231+
232+
You need to [activate the tags in the Billing and Cost Management console](https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/activate-built-in-tags.html). It can take up to 24 hours for tags to activate.
233+
234+
Once you have activated the tags, AWS generates a cost allocation report as a comma-separated value (.CSV file) with your usage and cost grouped by your active tags.
225235
226236
- name: Workspaces
227237
questions:

articles/defender-for-cloud/faq-general.yml

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -106,8 +106,7 @@ sections:
106106
If the user's info isn't listed in the **Event initiated by** column, explore the event's JSON for the relevant details.
107107
108108
:::image type="content" source="media/faq-general/tracking-pricing-changes-in-activity-log.png" alt-text="Screenshot of Azure Activity log JSON explorer.":::
109-
110-
109+
111110
- question: |
112111
What happens when one recommendation is in multiple policy initiatives?
113112
answer: |

0 commit comments

Comments
 (0)