none
Secure Score equivalent for on-prem? RRS feed

  • Question

  • Hi,

    Secure Score is a great tool for evaluating your Cloud security position.

    Is there an equivalent tool we could run on-premise?

    We still have a lot of on-premise components and infrastructure (and will most likely for many years) and we'd like to evaluate the security posture of our Microsoft and Windows on-prem environment.

    Could someone please recommend any framework and/or methodologies and/or approach and/or toolsets we could investigate?

    Many thanks,

    SK 

    Wednesday, September 4, 2019 11:12 PM

Answers

  • Hello,
    Thank you for posting in our TechNet forum.

    According to my research and knowledge, I am sorry I can not find an equivalent tool on-premise as Microsoft Secure Score on cloud. Maybe there is no such tool for on-premise currently.

    From Microsoft Secure Score, we can see the article is written on 06/11/2019.

    We can try to feedback our needs on UserVoice.

    Thamk you for your understanding and support.





    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, September 9, 2019 6:40 AM
    Moderator
  • Hi,

    According to https://docs.microsoft.com/en-us/azure/security-center/security-center-faq -

    "Security Center collects data from your Azure virtual machines (VMs),
    Virtual machine scale sets (VMSS), IaaS containers, and non-Azure
    (including on-premises) computers to monitor for security
    vulnerabilities and threats. Data is collected using the Microsoft
    Monitoring Agent, which reads various security-related configurations
    and event logs from the machine and copies the data to your workspace
    for analysis."

    So could we, for example, deploy the Microsoft Monitoring Agent on all our on-prem servers and workstations, and have the data collected and presented in Azure Secure Score - with all the recommendations being available to address the issues found?

    thank you

    Hi,

    Yes, according to the documentation you quoted it's possible to use the Security Center to collect on-premises data.

    You'll find more information here:

    Onboard non-Azure computers
    https://docs.microsoft.com/en-us/azure/security-center/security-center-onboarding#onboard-non-azure-computers

    Best regards,
    Leon


    Blog: https://thesystemcenterblog.com LinkedIn:

    • Marked as answer by Shim Kwan Monday, September 9, 2019 11:13 PM
    Monday, September 9, 2019 10:24 PM
  • Yes, the Microsoft Monitoring Agent is now called "Azure Log Analytics Agent".

    How Security Center works
    When you activate Security Center, a monitoring agent is deployed automatically into Azure virtual machines. For on-premises VMs, you manually deploy the agent. Security Center begins assessing the security state of all your VMs, networks, applications, and data (source: https://azure.microsoft.com/en-us/services/security-center)

    After you onboard your Azure subscriptions, you can enable Security Center for resources running outside of Azure, for example on-premises or in other clouds, by provisioning the Microsoft Monitoring Agent.

    Quickstart: Onboard Windows computers to Azure Security Center
    https://docs.microsoft.com/en-us/azure/security-center/quick-onboard-windows-computer


    Blog: https://thesystemcenterblog.com LinkedIn:

    • Marked as answer by Shim Kwan Monday, September 9, 2019 11:13 PM
    Monday, September 9, 2019 11:07 PM

All replies