Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

EPAC Managed DfC benchmarks lose vulnerability reports in Defender #856

Open
sdecker opened this issue Jan 22, 2025 · 0 comments
Open

EPAC Managed DfC benchmarks lose vulnerability reports in Defender #856

sdecker opened this issue Jan 22, 2025 · 0 comments
Labels
bug Something isn't working

Comments

@sdecker
Copy link
Contributor

sdecker commented Jan 22, 2025

Describe the bug
We are using the latest EPAC version and have started managing the MCSB with EPAC. The deploy works as expected and everything looks good in the Azure Policy Blade, but things are inconsistent when looking at the compliance views in Defender for Cloud. Most items reflect as expected, but any compliance items related to Defender for Cloud vulnerability assessments show 0 of 0 resources.

To Reproduce
Enable Defender vulnerability scans for SQL DB, SQL VM, Containers, etc. Deploy MCSB with EPAC. Looks at the compliance in the Policy view and see non compliant resources. Look at regulatory compliance in Defender for Cloud view and see the vulnerability entries show no associated resources.

Expected behavior
Whether we managed the MCSB assignment with Defender or with EPAC the compliance dashboards all report consistently

EPAC Version
10.7.5
@sdecker sdecker added the bug Something isn't working label Jan 22, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sdecker