Ensure That Microsoft Defender for Key Vault Is Set To 'On'
Why This Matters
Microsoft Defender for Key Vault provides advanced threat detection that monitors access patterns, detects unusual activities, and alerts you to potential attacks such as credential theft or unauthorized key retrieval. Without this protection enabled, your key vault remains vulnerable to sophisticated threats that could compromise sensitive cryptographic keys, secrets, and certificates stored in Azure. Enabling this defense layer is critical for maintaining a strong security posture and meeting compliance requirements like CIS.
What Aether365 Checks
This check verifies that Microsoft Defender for Key Vault is enabled at the subscription level within Microsoft Defender for Cloud. It appears in the Aether365 dashboard under the Azure Defender for Cloud checks category.