Ensure that endpoint protection monitoring is enabled within Azure Security Center in order to identify and remove viruses, spyware, and other malicious software from your Azure virtual machines (VMs). Azure Security Center monitors security configurations using a large set of recommendations for auditing, detecting threats, hardening operating systems, configuring firewalls, setting password policies, and more.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
When "Monitor Endpoint Protection" feature is enabled, Azure Security Center recommends endpoint protection for all Windows virtual machines to help identify and remove viruses, spyware, and other malicious software.
Audit
To determine if endpoint protection monitoring is enabled within Microsoft Azure Security Center, perform the following actions:
Remediation / Resolution
To enable endpoint protection monitoring and recommendations for your Microsoft Azure virtual machines (VMs), perform the following actions:
References
- Azure Official Documentation
- Working with security policies
- Manage endpoint protection issues with Azure Security Center
- CIS Microsoft Azure Foundations
- Azure Command Line Interface (CLI) Documentation
- az
- az account get-access-token
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.

You are auditing:
Enable Endpoint Protection Monitoring
Risk level: Medium