standard
turbot/azure_cis
Get Involved
Version
Pipeline: 3.2.1 Ensure That Microsoft Defender for IoT Hub Is Set To 'On'
Description
Microsoft Defender for IoT acts as a central security hub for IoT devices within your organization.
IoT devices are very rarely patched and can be potential attack vectors for enterprise networks. Updating their network configuration to use a central security hub allows for detection of these breaches.
Remediation
From Azure Portal
- Go to
IoT Hub
. - Select a
IoT Hub
to validate. - Select
Overview
inDefender for IoT
. - Click on
Secure your IoT solution
, and complete the onboarding.
Default Value
By default, Microsoft Defender for IoT is not enabled.
Run the pipeline
To run this pipeline from your terminal:
flowpipe pipeline run azure_cis.pipeline.cis_v300_3_2_1
Use this pipeline
To call this pipeline from your pipeline, use a step:
step "pipeline" "step_name" { pipeline = azure_cis.pipeline.cis_v300_3_2_1 }
Params
Name | Type | Required | Description | Default |
---|---|---|---|---|
database | connection.steampipe | Yes | Database connection string. | connection.steampipe.default |
notifier | notifier | Yes | The name of the notifier to use for sending notification messages. | notifier.default |
notification_level | string | Yes | The verbosity level of notification messages to send. Valid options are 'verbose', 'info', 'error'. | info |
approvers | list(notifier) | Yes | List of notifiers to be used for obtaining action/approval decisions. | notifier.default |
Outputs
This pipeline has no outputs.
Tags
folder = CIS v3.0.0/3 Security/3.2 Microsoft Defender for IoT