Ensure that Auto provisioning of 'Log Analytics agent for Azure VMs' is Set to 'On'
Why This Matters
When the Log Analytics agent is not automatically provisioned, Azure VMs miss critical security scans for system updates, OS vulnerabilities, and endpoint protection. This creates blind spots in your security posture and increases the risk of undetected threats or compliance violations. Turning on automatic provisioning ensures Microsoft Defender for Cloud continuously monitors all supported existing and new VMs without manual intervention.
What Aether365 Checks
Aether365 verifies that the "Automatic provisioning of Log Analytics agent for Azure VMs" setting is enabled at the subscription level. This check appears in the Aether365 dashboard under the azure-defender-for-cloud checks category.