Azure – Azure Secure Score has been simplified (preview)
By now you should know Azure Secure Score (ASS), the Azure Security feature which helps you review the security recommendations and prioritize them...
As you know, recent physical devices come with embedded security feature to help protect the operating system; features like TPM chipset or secure boot.
Well, unfortunately until now these features were not available when running virtual machines on Azure.
Good news, this now possible to turn on these security feature on Azure Virtual Machine.
To be able to turn on these features, you need to deploy Azure Virtual Machine Gen 2.
The below list details the supported virtual machine SKU’s and operating systems across all public regions:
Please note there are some additional limitations (at least during the preview) as the below lists services or features not supported during the preview:
When creating the virtual machine, select Trusted launch virtual machine as Security Type – by selecting this option, you will get the options Secure boot (disabled by default) and vTPM (enabled by default) available for configuration.
If you have selected an unsupported series and/or operating system you will be notified.
You can update the configuration (Secure Boot and/or vTPM) after the virtual machine has been created by accessing the Configuration blade of the virtual machine
A migration path to enable the Trusted launch virtual machine option will be available when the feature reaches the general availability.
By now you should know Azure Secure Score (ASS), the Azure Security feature which helps you review the security recommendations and prioritize them...
It has been a long awaited feature, the ability to export recommendations and more importantly alerts from Azure Security Center (ASC).
If you work with virtual machines on Azure you already know that sometime things go wrong and you need to troubleshoot what is happening with the...