Ensure that "Monitor Vulnerability Assessment" feature is enabled within your Microsoft Azure cloud account so that Azure Security Center can recommend a vulnerability assessment solution to be installed on your VMs. The vulnerability assessment is part of the Azure Security Center recommendations for virtual machine (VMs). Once the monitoring feature is enabled, Security Center searches your VMs for deployed vulnerability assessment solutions and if doesn't find any, it recommends that you install one. After such a solution is being deployed, a partner agent starts reporting vulnerability data to the partner’s management platform. In turn, the partner's management platform provides vulnerability monitoring data back to Azure Security Center so you can rapidly identify any vulnerable VMs on your Security Center dashboard.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
After vulnerability assessment monitoring is enabled, Azure Security Center can determine if your virtual machines (VMs) have vulnerability assessment software installed, and depending on the required software deployment, the service will recommend a vulnerability assessment solution be installed on your Azure VMs.
To determine if vulnerability assessment monitoring is enabled in the Azure Security Center settings, perform the following actions:
Remediation / Resolution
To enable detection of VM vulnerabilities using a vulnerability assessment solution for your Microsoft Azure virtual machines (VMs), perform the following actions:
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Enable Vulnerability Assessment Monitoring
Risk level: Medium