Microsoft Defender for Cloud solution for Sentinel
Solution: Microsoft Defender for Cloud
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | Microsoft Corporation |
| Support Tier | Microsoft |
| Support Link | https://support.microsoft.com |
| Categories | domains |
| Version | 3.0.2 |
| Author | Microsoft - support@microsoft.com |
| First Published | 2022-05-17 |
| Solution Folder | Microsoft Defender for Cloud |
| Marketplace | Azure Marketplace · Rating: ★★☆☆☆ 2.0/5 (6 ratings) · Popularity: 🟢 High (96%) |
The Microsoft Defender for Cloud solution for Microsoft Sentinel allows you to ingest Security alerts reported in Microsoft Defender for Cloud on assessing your hybrid cloud workload's security posture.
Underlying Microsoft Technologies used:
This solution takes a dependency on the following technologies, and some of these dependencies either may be in Preview state or might result in additional ingestion or operational costs:
a. Azure Monitor HTTP Data Collector API
Additional Information
📖 Setup Guide: Microsoft Defender for Cloud connector - Connect Defender for Cloud alerts to Microsoft Sentinel
Contents
Data Connectors
This solution provides 2 data connector(s):
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
CoreAzureBackup |
- | Analytics |
Internal Tables
The following 1 table(s) are used internally by this solution's content items:
| Table | Used By Connectors | Used By Content |
|---|---|---|
SecurityAlert |
Subscription-based Microsoft Defender for Cloud (Legacy), Tenant-based Microsoft Defender for Cloud | Analytics |
Content Items
This solution includes 1 content item(s):
| Content Type | Count |
|---|---|
| Analytic Rules | 1 |
Analytic Rules
| Name | Severity | Tactics | Tables Used |
|---|---|---|---|
| Detect CoreBackUp Deletion Activity from related Security Alerts | Medium | Impact | CoreAzureBackupInternal use: SecurityAlert |
Release Notes
| Version | Date Modified (DD-MM-YYY) | Change History |
|---|---|---|
| 3.0.3 | 06-12-2025 | Moved MicrosoftDefenderForCloudTenantBased's Data Connector from public preview to Global Availability |
| 3.0.2 | 15-04-2024 | Updated Data Connector MicrosoftDefenderForCloudTenantBased's kind as GenericUI |
| 3.0.1 | 03-04-2024 | Corrected the standard tier in Data Connector and Updated MicrosoftDefenderForCloudTenantBased.json to support FFX |
| 3.0.0 | 08-11-2023 | New Data Connector included |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊