Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A customer is in the process of deploying Docker images to 10 Azure Kubernetes Service (AKS) resources across four different Azure subscriptions. As you assess their security posture, you realize that these AKS resources are currently not included in the secure score recommendations. To ensure accurate recommendations and update the secure score in Microsoft Defender for Cloud, which two actions should you recommend? NOTE: Each correct selection is worth one point.
Explanation:
To produce accurate recommendations and update the secure score, it is necessary to enable the relevant Defender plans and configure auto provisioning. By enabling Microsoft Defender plans, you ensure that the AKS resources are continually assessed and any security recommendations are provided. Configuring auto provisioning ensures that necessary components, including monitoring agents, are automatically deployed and kept up to date across all relevant resources. These steps help integrate the AKS resources into the secure score calculations.