You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/defender-for-cloud/enable-permissions-management.md
+22Lines changed: 22 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -50,6 +50,14 @@ When Permission Management (CIEM) is disabled, the CIEM recommendations within t
50
50
51
51
The applicable permissions management (CIEM) recommendations appear on your subscription within a few hours.
52
52
53
+
List of Azure recommendations:
54
+
55
+
- Azure overprovisioned identities should have only the necessary permissions
56
+
57
+
- Unused identities in your Azure environment should be revoked/removed
58
+
59
+
- Super identities in your Azure environment should be revoked/removed
60
+
53
61
## Enable permissions management (CIEM) for AWS
54
62
55
63
When you enabled the Defender CSPM plan on your AWS account, the **AWS CSPM**[standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The AWS CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations.
@@ -87,6 +95,12 @@ When Permission Management is disabled, the CIEM recommendations within the AWS
87
95
88
96
The applicable permissions management (CIEM) recommendations appear on your subscription within a few hours.
89
97
98
+
List of AWS recommendations:
99
+
100
+
- AWS overprovisioned identities should have only the necessary permissions
101
+
102
+
- Unused identities in your Azure environment should be revoked/removed
103
+
90
104
## Enable permissions management (CIEM) for GCP
91
105
92
106
When you enabled the Defender CSPM plan on your GCP project, the **GCP CSPM**[standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The GCP CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations.
@@ -127,6 +141,14 @@ When Permission Management (CIEM) is disabled, the CIEM recommendations within t
127
141
128
142
The applicable permissions management **(CIEM)** recommendations appear on your subscription within a few hours.
129
143
144
+
List of GCP recommendations:
145
+
146
+
- GCP overprovisioned identities should have only necessary permissions
147
+
148
+
- Unused identities in your GCP environment should be revoked/removed
149
+
150
+
- Super identities in your GCP environment should be revoked/removed
0 commit comments