You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: azure-local/concepts/security-features.md
+13-2Lines changed: 13 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -88,7 +88,7 @@ For more information, see the full [List of option rules](/windows/security/appl
88
88
Allow rules in the base policy allow all Microsoft components delivered by the OS and the cloud deployments to be trusted. Deny rules block user mode applications and kernel components considered unsafe for the security posture of the solution.
89
89
90
90
> [!NOTE]
91
-
> The Allow and Deny rules in the base policy are updated regularly to improve product funtionality and maximize protection of your solution.
91
+
> The Allow and Deny rules in the base policy are updated regularly to improve product functionality and maximize protection of your solution.
92
92
93
93
To learn more about Deny rules, see:
94
94
@@ -134,7 +134,7 @@ In this release, the following capabilities are enabled:
134
134
- The ability to monitor and alert whether certificates are still valid.
135
135
136
136
> [!NOTE]
137
-
> Secret creation and rotation operations take about ten minutes to complete, depending on the size of the system.
137
+
> Secret creation and rotation operations take about 10 minutes to complete, depending on the size of the system.
138
138
139
139
For more information, see [Manage secrets rotation](../manage/manage-secrets-rotation.md).
140
140
@@ -154,6 +154,17 @@ The syslog forwarder in Azure Local supports various configurations based on whe
154
154
155
155
For more information, see [Manage syslog forwarding](../manage/manage-syslog-forwarding.md).
156
156
157
+
## Microsoft Defender Antivirus
158
+
159
+
Azure Local comes with Microsoft Defender Antivirus enabled and configured by default. We strongly recommend that you use Microsoft Defender Antivirus with your Azure Local instances. Microsoft Defender Antivirus provides real-time protection, cloud-delivered protection, and automatic sample submission.
160
+
161
+
Although we recommend using Microsoft Defender Antivirus for Azure Local, if you prefer third-party antivirus and security software, we advise selecting one that your Independent Software Vendor (ISV) has validated for Azure Local to minimize potential functionality issues.
162
+
163
+
For more information, see [Microsoft Defender Antivirus compatibility with other security products](/defender-endpoint/microsoft-defender-antivirus-compatibility).
164
+
165
+
> [!NOTE]
166
+
> If you remove the Microsoft Defender Antivirus feature, leave the settings associated with the feature from the security baseline as-is. You don't need to remove these settings.
167
+
157
168
## Microsoft Defender for Cloud (preview)
158
169
159
170
Microsoft Defender for Cloud is a security posture management solution with advanced threat protection capabilities. It provides you with tools to assess the security status of your infrastructure, protect workloads, raise security alerts, and follow specific recommendations to remediate attacks and address future threats. It performs all these services at high speed in the cloud through autoprovisioning and protection with Azure services, with no deployment overhead.
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments