Phase 3: Ongoing management and security

After you've onboarded Azure server management services, you'll need to focus on the operations and security configurations that will support your ongoing operations. We'll start with securing your environment by reviewing Microsoft Defender for Cloud. We'll then configure policies to keep your servers in compliance and automate common tasks. This section covers the following topics:

  • Enable the machine configuration policy: Use the Azure Policy machine configuration feature to audit the settings in a virtual machine. For example, you can check whether any certificates are about to expire.
  • Track and alert on critical changes: When you're troubleshooting, the first question to consider is, "What has changed?" In this article, you'll learn how to track changes and create alerts to proactively monitor critical components.
  • Create update schedules: Schedule the installation of updates to ensure that all your servers have the latest ones.
  • Common Azure Policy examples: This article provides examples of common management policies.
  • Protect cloud workloads: See how Microsoft Defender for Cloud can help you protect your cloud workloads.

Next steps

Learn how to enable the Azure Policy machine configuration feature.