A security analyst is configuring Azure Defender for Cloud to protect a hybrid environment. Which THREE resource types can be protected by enabling Azure Defender plans? (Choose three.)
Defender for Databases covers SQL and other database types.
Why this answer
Azure Defender for Cloud provides integrated security protections for Azure resources. Enabling the 'Defender for Databases' plan specifically protects Azure SQL databases by detecting anomalous activities, SQL injection attempts, and potential vulnerabilities. This plan extends to other database types like Azure SQL Managed Instance and Azure Synapse SQL pools, ensuring comprehensive database security.
Exam trap
Cisco often tests the distinction between Azure Defender plans (which protect specific resource types like VMs, databases, and Key Vault) and other Azure security services (like Azure AD Identity Protection or Azure DNS security features), leading candidates to incorrectly select Azure AD identities or DNS zones as protected resources.