Microsoft Defender for Containers is a comprehensive cloud-native solution that helps you improve, monitor, and maintain the security of your containerized assets across multicloud and on-premises environments. This includes Kubernetes clusters, nodes, workloads, container registries, and container images.

To get started with Defender for Containers, you’ll need a Microsoft Azure subscription. If you don’t have one, you can sign up for a free Azure subscription. You’ll also need to enable Microsoft Defender for Cloud on your Azure subscription.

Once you have the prerequisites in place, you can enable the Defender for Containers plan on your subscription:

  1. Sign in to the Azure portal.
  2. Search for and select Microsoft Defender for Cloud.
  3. In the Defender for Cloud menu, select Environment settings.
  4. Select the relevant Azure subscription.
  5. On the Defender plans page, toggle the Containers plan to On.
  6. Select Save.

By default, enabling the Defender for Containers plan will automatically configure all the necessary components and enable the full set of protections offered by the plan, including assignment of a default workspace. If you prefer to assign a custom workspace, you can do so through the Azure Policy.

To deploy the Defender sensor in Azure:

  1. Sign in to the Azure portal.
  2. Search for and select Microsoft Defender for Cloud.
  3. Navigate to the Recommendations page.
  4. Search for and select the Azure Kubernetes Service clusters should have Defender profile enabled recommendation.
  5. Select all the relevant affected resources.
  6. Select Fix.

For more advanced enablement features and options for Defender for Containers, check out the Enable Microsoft Defender for Containers page. You can also review the Overview of Microsoft Defender for Containers to learn more about the capabilities of this solution.

Source: Protect your Azure containers with the Defender for Containers plan on your Azure subscription