The Microsoft Defender for Cloud Security Connector is currently in development and currently only supports compliance query functionality. It will be expanded with additional capabilities in the future.
The Microsoft Defender for Cloud Security Provider uses OAuth 2.0 client credentials for authentication, and requires a Client ID, Client Secret, Tenant ID, and Subscription ID.
Before you begin, ensure you have:
- Access to the Microsoft Azure Portal
- Administrator privileges
- A Microsoft Defender for Cloud subscription
- Appropriate permissions to create an app registration in Azure Active Directory
- Log in to your Azure Portal with administrative privileges.
- Navigate to Azure Active Directory > App registrations > New registration
- Provide a name for your application
- Select the appropriate supported account types
- Click Register
- In your newly created app registration, go to Certificates & secrets
- Click New client secret
- Provide a description and select an expiration period
- Click Add
- Important: Make sure to copy and securely store the generated secret value as it will not be shown again
The Base URL for your Microsoft Defender environment. This is typically https://management.azure.com.
Your Azure subscription ID, which can be found in the Azure Portal under Subscriptions.
Your Azure Active Directory tenant ID, which can be found in the Azure Portal under Azure Active Directory > Properties.
The Application (client) ID of your app registration, found in the Overview section of your app registration.
The secret value generated in Step 3 above.