Setting defender settings for storage account via bicep does not work
Sabine Seljeseth
0
Reputation points
I have included the following in my bicep in order to use Microsoft defender for cloud for my storage account (see code below). The pipeline that deploys the resources in azure goes through without issues and Microsoft defender for cloud gets enabled. The issue is that it does not seem to turn on malware scanning and sensitive data discovery which is also set in the bicep file. Has anyone experienced the same?
resource defenderForStorageSettings 'Microsoft.Security/DefenderForStorageSettings@2022-12-01-preview' = {
name: 'current'
scope: storageaccountname
properties: {
isEnabled: true
malwareScanning: {
onUpload: {
isEnabled: true
capGBPerMonth: 100
}
}
sensitiveDataDiscovery: {
isEnabled: true
}
overrideSubscriptionLevelSettings: true
}
}
Sign in to answer