{"id":2711,"date":"2023-03-08T20:49:58","date_gmt":"2023-03-08T20:49:58","guid":{"rendered":"https:\/\/hypervlab.co.uk\/?p=2711"},"modified":"2023-03-08T20:50:02","modified_gmt":"2023-03-08T20:50:02","slug":"defender-for-cloud-bicep-deployment","status":"publish","type":"post","link":"https:\/\/hypervlab.co.uk\/?p=2711","title":{"rendered":"Defender for Cloud : Bicep Deployment"},"content":{"rendered":"<span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Reading Time: <\/span> <span class=\"rt-time\"> 4<\/span> <span class=\"rt-label rt-postfix\">minutes<\/span><\/span>\n<p>Hellooo everyone, this blog post is an entry for the <a href=\"https:\/\/www.azurespringclean.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">#AzureSpringClean community project<\/a>. In this post, I cover an overview of why you should use Defender for Cloud and then how to deploy the solution with Bicep. <\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>What is Defender for Cloud?<\/strong><\/h3>\n\n\n\n<p>Microsoft Defender for Cloud is a cloud-native application protection platform (CNAPP) with a set of security measures and practices designed to protect cloud-based applications from various cyber threats and vulnerabilities. Defender for Cloud combines the capabilities of:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A development security operations (DevSecOps) solution that unifies security management at the code level across multi-cloud and multiple-pipeline environments<\/li>\n\n\n\n<li>A cloud security posture management (CSPM) solution that surfaces actions that you can take to prevent breaches<\/li>\n\n\n\n<li>A cloud workload protection platform (CWPP) with specific protections for servers, containers, storage, databases, and other workloads<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image.png\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"380\" src=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1024x380.png\" alt=\"\" class=\"wp-image-2712\" srcset=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1024x380.png 1024w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-300x111.png 300w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-768x285.png 768w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1132x420.png 1132w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-640x238.png 640w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-681x253.png 681w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image.png 1207w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<p>you can find out more information on the <a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/defender-for-cloud-introduction\">docs.microsoft<\/a> site.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Code Deployment Pre-Flight Checks<\/h3>\n\n\n\n<p>Before we can start the bicep deployment we need to ensure that AzCLI and Bicept are already installed on your local machine. For those who are new to the cloud game, you can use the following commands to install AzCLI<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">> <strong>AzCLI<\/strong><\/h4>\n\n\n\n<p><strong>WinGet:<\/strong>  <a href=\"https:\/\/learn.microsoft.com\/en-us\/cli\/azure\/install-azure-cli-windows?tabs=winget\" target=\"_blank\" rel=\"noreferrer noopener\">docs.microsoft support<\/a><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>winget install Microsoft.AzureCLI<\/code><\/pre>\n\n\n\n<p><strong>PowerShell<\/strong>:  <a href=\"https:\/\/learn.microsoft.com\/en-us\/cli\/azure\/install-azure-cli-windows?tabs=powershell\" target=\"_blank\" rel=\"noreferrer noopener\">docs.microsoft support<\/a><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$ProgressPreference = 'SilentlyContinue'; Invoke-WebRequest -Uri https:\/\/aka.ms\/installazurecliwindows -OutFile .\\AzureCLI.msi; Start-Process msiexec.exe -Wait -ArgumentList '\/I AzureCLI.msi \/quiet'; Remove-Item .\\AzureCLI.msi<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>What is AzCLI?<\/strong><\/h4>\n\n\n\n<p>Azure CLI provides a cross-platform command-line interface that runs on Windows, macOS, and Linux, and it supports a wide range of Azure services, including compute, storage, networking, security, and more. It is built on top of Python and provides a command-line experience that is consistent across all Azure services.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>> Bicep<\/strong><\/h4>\n\n\n\n<p><strong>PowerShell<\/strong>: <a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/azure-resource-manager\/bicep\/install#azure-powershell\" target=\"_blank\" rel=\"noreferrer noopener\">d<\/a><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/azure-resource-manager\/bicep\/install#windows\" target=\"_blank\" rel=\"noreferrer noopener\">ocs.microsoft support<\/a><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># Create the install folder\r\n$installPath = \"$env:USERPROFILE\\.bicep\"\r\n$installDir = New-Item -ItemType Directory -Path $installPath -Force\r\n$installDir.Attributes += 'Hidden'\r\n# Fetch the latest Bicep CLI binary\r\n(New-Object Net.WebClient).DownloadFile(\"https:\/\/github.com\/Azure\/bicep\/releases\/latest\/download\/bicep-win-x64.exe\", \"$installPath\\bicep.exe\")\r\n# Add bicep to your PATH\r\n$currentPath = (Get-Item -path \"HKCU:\\Environment\" ).GetValue('Path', '', 'DoNotExpandEnvironmentNames')\r\nif (-not $currentPath.Contains(\"%USERPROFILE%\\.bicep\")) { setx PATH ($currentPath + \";%USERPROFILE%\\.bicep\") }\r\nif (-not $env:path.Contains($installPath)) { $env:path += \";$installPath\" }\r\n# Verify you can now access the 'bicep' command.\r\nbicep --help\r\n# Done!<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>What is Bicep?<\/strong><\/h4>\n\n\n\n<p>Azure Bicep is designed to simplify the process of defining and managing Azure resources by providing a more intuitive syntax and better tooling support than ARM templates. Bicep files are written in a high-level, human-readable syntax that compiles to ARM templates, which are then deployed to Azure.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Code Deployment Time <\/h3>\n\n\n\n<p>Step 1, Open Windows Terminal and log into Azure from AzCLI:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>az login<\/code><\/pre>\n\n\n\n<p>Step 2, Configure the Subscription you want to deploy Defender for Cloud to:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>az account set --subscription 00000000-0000-0000-0000-000000000000<\/code><\/pre>\n\n\n\n<p>Step 3, Save the code snippet as &#8216;main.bicep&#8217; into a folder.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>targetScope = 'subscription'\r\n\r\n\/\/' ** Bicep Parameters **'\r\n@description('Define Service Tier for Virtual Machine resource type')\r\n@allowed(&#91;\r\n  'Standard'\r\n  'Free'\r\n])\n\r\nparam virtualMachineTier string = 'Standard'\r\nparam appServiceTier string = 'Standard'\r\nparam paasSQLServiceTier string = 'Standard'\r\nparam sqlServerOnVmTier string = 'Standard'\r\nparam storageAccountTier string = 'Standard'\r\nparam kubernetesServiceTier string = 'Standard'\r\nparam containerRegistryTier string = 'Standard'\r\nparam containersTier string = 'Standard'\r\nparam keyvaultTier string = 'Standard'\r\nparam ArmTier string = 'Standard'\r\nparam DnsTier string = 'Standard'\r\n\r\n\/\/' ** Azure Resources **'\r\nresource VirtualMachines 'Microsoft.Security\/pricings@2022-03-01' = {\r\n  name: 'VirtualMachines'\r\n  properties: {\r\n    pricingTier: virtualMachineTier\r\n  }\r\n}\r\n\r\nresource AppServices 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'AppServices'\r\n  properties: {\r\n    pricingTier: appServiceTier\r\n  }\r\n}\r\n\r\nresource SqlServers 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'SqlServers'\r\n  properties: {\r\n    pricingTier: paasSQLServiceTier\r\n  }\r\n}\r\n\r\nresource SqlServerVirtualMachines 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'SqlServerVirtualMachines'\r\n  properties: {\r\n    pricingTier: sqlServerOnVmTier\r\n  }\r\n\r\n}\r\n\r\nresource StorageAccounts 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'StorageAccounts'\r\n  properties: {\r\n    pricingTier: storageAccountTier\r\n  }\r\n}\r\n\r\nresource KubernetesService 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'KubernetesService'\r\n  properties: {\r\n    pricingTier: kubernetesServiceTier\r\n  }\r\n}\r\n\r\nresource ContainerRegistry 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'ContainerRegistry'\r\n  properties: {\r\n    pricingTier: containerRegistryTier\r\n  }\r\n}\r\n\r\nresource Containers 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'Containers'\r\n  properties: {\r\n    pricingTier: containersTier\r\n  }\r\n}\r\n\r\nresource KeyVaults 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'KeyVaults'\r\n  properties: {\r\n    pricingTier: keyvaultTier\r\n  }\r\n\r\n}\r\n\r\nresource Arm 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'Arm'\r\n  properties: {\r\n    pricingTier: ArmTier\r\n  }\r\n}\r\n\r\nresource Dns 'Microsoft.Security\/pricings@2018-06-01' = {\r\n  name: 'Dns'\r\n  properties: {\r\n    pricingTier: DnsTier\r\n  }\r\n}\r<\/code><\/pre>\n\n\n\n<p>Step 4, execute your bicep file:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>az deployment sub create  --name defenderforcloud-deploy  --location westeurope --template-file main.bicep<\/code><\/pre>\n\n\n\n<p>Step 5, Check Defender for Cloud portal and Deploy log on Subscription.<br>Once the deployment has been completed you can see the activity logs from the Subscription, then Deployments you should see an entry with the name you passed through during the deployment and if all has gone well it should look something like this:<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1.png\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"350\" src=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-1024x350.png\" alt=\"\" class=\"wp-image-2715\" srcset=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-1024x350.png 1024w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-300x103.png 300w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-768x263.png 768w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-1228x420.png 1228w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-640x219.png 640w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1-681x233.png 681w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-1.png 1330w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<p>Finally, if we go to Defender for Cloud portal in Azure, under &#8216;<em>Management&#8217;<\/em> > &#8216;<em>Environment Settings&#8217;<\/em>.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2.png\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"115\" src=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-1024x115.png\" alt=\"\" class=\"wp-image-2716\" srcset=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-1024x115.png 1024w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-300x34.png 300w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-768x86.png 768w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-1536x173.png 1536w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-640x72.png 640w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2-681x77.png 681w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-2.png 1601w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<p>if all has worked you should see something like this. <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3.png\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"461\" src=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-1024x461.png\" alt=\"\" class=\"wp-image-2717\" srcset=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-1024x461.png 1024w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-300x135.png 300w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-768x346.png 768w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-1536x692.png 1536w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-933x420.png 933w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-640x288.png 640w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3-681x307.png 681w, https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/image-3.png 1557w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n\n\n\n<p>So that&#8217;s the post, I hope you found this really useful and can use it for future deployments and projects, In terms of the #AzureSpringClean team I wanna give a huge shout-out to <a href=\"https:\/\/twitter.com\/tamstar1234\" target=\"_blank\" rel=\"noreferrer noopener\">Thomas Thornton<\/a> and <a href=\"https:\/\/twitter.com\/wedoAzure\">Joe Carlyle<\/a> for hosting the Azure Spring Clean community event, and I suppose I should also mention this guy <a href=\"https:\/\/twitter.com\/gregor_suttie\" target=\"_blank\" rel=\"noreferrer noopener\">Gregor Suttie<\/a>, for his ongoing support and advise! \ud83e\udd73<br><\/p>\n","protected":false},"excerpt":{"rendered":"<p><span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Reading Time: <\/span> <span class=\"rt-time\"> 4<\/span> <span class=\"rt-label rt-postfix\">minutes<\/span><\/span>Hellooo everyone, this blog post is an entry for the #AzureSpringClean community project. In this post, I cover an overview of why you should use Defender for Cloud and then how to deploy the solution with Bicep. What is Defender for Cloud? Microsoft Defender for Cloud is a cloud-native application protection platform (CNAPP) with a [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":2719,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[326,327,324,328,329,330,331],"class_list":["post-2711","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-azure","tag-automation-2","tag-azcli","tag-azure-2","tag-azurespringcloud","tag-cloudfamily-2","tag-community-2","tag-microsoft-2"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Defender for Cloud : Bicep Deployment - HypervLAB<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/hypervlab.co.uk\/?p=2711\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Defender for Cloud : Bicep Deployment - HypervLAB\" \/>\n<meta property=\"og:description\" content=\"Reading Time:  4 minutesHellooo everyone, this blog post is an entry for the #AzureSpringClean community project. In this post, I cover an overview of why you should use Defender for Cloud and then how to deploy the solution with Bicep. What is Defender for Cloud? Microsoft Defender for Cloud is a cloud-native application protection platform (CNAPP) with a [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/hypervlab.co.uk\/?p=2711\" \/>\n<meta property=\"og:site_name\" content=\"HypervLAB\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-08T20:49:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-03-08T20:50:02+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Simon Lee\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/smoon_lee\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Simon Lee\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711\",\"url\":\"https:\/\/hypervlab.co.uk\/?p=2711\",\"name\":\"Defender for Cloud : Bicep Deployment - HypervLAB\",\"isPartOf\":{\"@id\":\"https:\/\/hypervlab.co.uk\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage\"},\"image\":{\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage\"},\"thumbnailUrl\":\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png\",\"datePublished\":\"2023-03-08T20:49:58+00:00\",\"dateModified\":\"2023-03-08T20:50:02+00:00\",\"author\":{\"@id\":\"https:\/\/hypervlab.co.uk\/#\/schema\/person\/7d184970612a9c6a5f1babb8b6b4d359\"},\"breadcrumb\":{\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/hypervlab.co.uk\/?p=2711\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage\",\"url\":\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png\",\"contentUrl\":\"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png\",\"width\":1200,\"height\":630},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/hypervlab.co.uk\/?p=2711#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/hypervlab.co.uk\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Defender for Cloud : Bicep Deployment\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/hypervlab.co.uk\/#website\",\"url\":\"https:\/\/hypervlab.co.uk\/\",\"name\":\"HypervLAB\",\"description\":\"Blogging about all thing Microsoft\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/hypervlab.co.uk\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/hypervlab.co.uk\/#\/schema\/person\/7d184970612a9c6a5f1babb8b6b4d359\",\"name\":\"Simon Lee\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/hypervlab.co.uk\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/9473a3cf9c75192508eccfd9d072efab80adf04a45083e561d0e3065f681c34c?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/9473a3cf9c75192508eccfd9d072efab80adf04a45083e561d0e3065f681c34c?s=96&d=mm&r=g\",\"caption\":\"Simon Lee\"},\"description\":\"Hi, I'm Simon an IT Enthusiast, PowerShell Geek, Gamer, and Sound Engineer. I've been working with in the IT Industry for around 6 years and have worked across private and public sector companies. The original idea behind \\\"hypervlab\\\" was that I required an 'RnD' environment which would allow me to be able to replicate any kind of enterprise on-premise environment which I could use for learning and testing without learning in a production environment. So in 2019, I decided to branch out and use the domain for a public facing blog to be able to contribute to the IT Community about all things Microsoft.\",\"sameAs\":[\"https:\/\/hypervlab.co.uk\",\"https:\/\/www.linkedin.com\/in\/simon-john-lee\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/smoon_lee\"],\"url\":\"https:\/\/hypervlab.co.uk\/?author=2\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Defender for Cloud : Bicep Deployment - HypervLAB","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/hypervlab.co.uk\/?p=2711","og_locale":"en_GB","og_type":"article","og_title":"Defender for Cloud : Bicep Deployment - HypervLAB","og_description":"Reading Time:  4 minutesHellooo everyone, this blog post is an entry for the #AzureSpringClean community project. In this post, I cover an overview of why you should use Defender for Cloud and then how to deploy the solution with Bicep. What is Defender for Cloud? Microsoft Defender for Cloud is a cloud-native application protection platform (CNAPP) with a [&hellip;]","og_url":"https:\/\/hypervlab.co.uk\/?p=2711","og_site_name":"HypervLAB","article_published_time":"2023-03-08T20:49:58+00:00","article_modified_time":"2023-03-08T20:50:02+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png","type":"image\/png"}],"author":"Simon Lee","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/smoon_lee","twitter_misc":{"Written by":"Simon Lee","Estimated reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/hypervlab.co.uk\/?p=2711","url":"https:\/\/hypervlab.co.uk\/?p=2711","name":"Defender for Cloud : Bicep Deployment - HypervLAB","isPartOf":{"@id":"https:\/\/hypervlab.co.uk\/#website"},"primaryImageOfPage":{"@id":"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage"},"image":{"@id":"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage"},"thumbnailUrl":"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png","datePublished":"2023-03-08T20:49:58+00:00","dateModified":"2023-03-08T20:50:02+00:00","author":{"@id":"https:\/\/hypervlab.co.uk\/#\/schema\/person\/7d184970612a9c6a5f1babb8b6b4d359"},"breadcrumb":{"@id":"https:\/\/hypervlab.co.uk\/?p=2711#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/hypervlab.co.uk\/?p=2711"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/hypervlab.co.uk\/?p=2711#primaryimage","url":"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png","contentUrl":"https:\/\/hypervlab.co.uk\/wp-content\/uploads\/2023\/03\/header-image-defender-for-cloud.png","width":1200,"height":630},{"@type":"BreadcrumbList","@id":"https:\/\/hypervlab.co.uk\/?p=2711#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/hypervlab.co.uk\/"},{"@type":"ListItem","position":2,"name":"Defender for Cloud : Bicep Deployment"}]},{"@type":"WebSite","@id":"https:\/\/hypervlab.co.uk\/#website","url":"https:\/\/hypervlab.co.uk\/","name":"HypervLAB","description":"Blogging about all thing Microsoft","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/hypervlab.co.uk\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Person","@id":"https:\/\/hypervlab.co.uk\/#\/schema\/person\/7d184970612a9c6a5f1babb8b6b4d359","name":"Simon Lee","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/hypervlab.co.uk\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/9473a3cf9c75192508eccfd9d072efab80adf04a45083e561d0e3065f681c34c?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9473a3cf9c75192508eccfd9d072efab80adf04a45083e561d0e3065f681c34c?s=96&d=mm&r=g","caption":"Simon Lee"},"description":"Hi, I'm Simon an IT Enthusiast, PowerShell Geek, Gamer, and Sound Engineer. I've been working with in the IT Industry for around 6 years and have worked across private and public sector companies. The original idea behind \"hypervlab\" was that I required an 'RnD' environment which would allow me to be able to replicate any kind of enterprise on-premise environment which I could use for learning and testing without learning in a production environment. So in 2019, I decided to branch out and use the domain for a public facing blog to be able to contribute to the IT Community about all things Microsoft.","sameAs":["https:\/\/hypervlab.co.uk","https:\/\/www.linkedin.com\/in\/simon-john-lee\/","https:\/\/x.com\/https:\/\/twitter.com\/smoon_lee"],"url":"https:\/\/hypervlab.co.uk\/?author=2"}]}},"_links":{"self":[{"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/2711","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2711"}],"version-history":[{"count":0,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/2711\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=\/wp\/v2\/media\/2719"}],"wp:attachment":[{"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2711"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2711"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hypervlab.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2711"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}