Microsoft Defender for Cloud
Ingest security recommendations and alerts from Defender for Cloud.
Imports security recommendations and alerts from Microsoft Defender for Cloud into Basirah.
Prerequisites
- Azure subscription with Defender for Cloud enabled
- App registration with SecurityReader permissions
Authentication
OAuth 2.0 — application credentials with subscription-level access.
Configuration
subscription_id string required Azure subscription ID to sync findings from.
Data flow
Ingests security findings from Defender for Cloud and normalizes them into Basirah’s common finding format.