Enable the standard security center subscription tier
Default Severity: low
Explanation
To benefit from Azure Defender you should use the Standard subscription tier.
Enabling Azure Defender extends the capabilities of the free mode to workloads running in private and other public clouds, providing unified security management and threat protection across your hybrid cloud workloads.
Possible Impact
Using free subscription does not enable Azure Defender for the resource type
Suggested Resolution
Enable standard subscription tier to benefit from Azure Defender
Insecure Example
The following example will fail the azure-security-center-enable-standard-subscription check.
resource "azurerm_security_center_subscription_pricing" "bad_example" {
tier = "Free"
resource_type = "VirtualMachines"
}
Secure Example
The following example will pass the azure-security-center-enable-standard-subscription check.
resource "azurerm_security_center_subscription_pricing" "good_example" {
tier = "Standard"
resource_type = "VirtualMachines"
}