2.1.12 Ensure That Microsoft Defender for IoT Is Set To 'On'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Microsoft Defender for IoT acts as a central security hub for IoT devices within your organization.


IoT devices are very rarely patched and can be potential attack vectors for enterprise networks. Updating their network configuration to use a central security hub allows for detection of these breaches.


Enabling Microsoft Defender for IoT will incur additional charges dependent on the level of usage.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


From Azure Portal

Go to Microsoft Defender for Cloud

Select Environment Settings blade.

Click on the subscription name.

Select the Defender plans blade.

For the IoT resource type Plan set the radio button to On.

Default Value:

By default, Microsoft Defender for IoT is not enabled.

See Also