Chapter 2: Multi-Cloud Connectivity
In this chapter, you will learn how to connect your hybrid and multi-cloud computers to Azure and enable Microsoft Defender for Cloud to monitor the security posture of these connected resources.
Connecting your computing resources to Azure provides the convenience of monitoring their security posture through a single pane of glass, seeing recommendations, and performing security-related actions from a central place.
Connecting non-Azure computers to Azure involves several steps and, in this chapter, more complex actions will be divided into multiple recipes, each covering individual steps toward a bigger objective.
We will cover the following recipes in this chapter:
- Connecting non-Azure virtual machines using Azure Arc
- Connecting non-Azure virtual machines using Microsoft Defender for Cloud portal pages
- Setting up Amazon Web Services Config and Amazon Web Services Security Hub
- Creating an Identity and Access Management (IAM) Amazon Web Services (AWS) role for Microsoft Defender for Cloud
- Connecting Amazon Web Services to Microsoft Defender for Cloud
- Configuring GCP Security Command Center and enabling GCP Security Command Center API
- Creating a GCP service account and connecting GCP to Microsoft Defender for Cloud