Views:

Learn which resources are deployed in your Azure environment for each Trend Vision One feature that you can enable on an Azure subscription.

Feature name
Services deployed (number)
Core features and Cyber Risk Exposure Management
Resources:
  • App Registration (1)
  • Federated Credential (1)
  • Applications (1)
  • Role and Role Assignments of the Service Principal (1)
Agentless Vulnerability & Threat Detection
Resource Groups:
  • azurem_resource_group (1 common)
  • azurem_resource_group (3, one each for US/AS/EU)
IAM and Security:
  • Custom Role Definition (1 for sentry)
  • azurem_role_assignment (32 per region)
Key Vault
  • azurem_key_vault (1)
  • azurerm_key_vault_access_policy (1 for primary location, 2 per region)
  • azurerm_key_vault_secret (2 for primary location)
Storage
  • azurerm_storage_account (1 per region)
  • azurerm_storage_container (3 per region)
  • azurerm_storage_blob (21 per region)
  • azurerm_storage_queue (8 per region)
  • azurerm_storage_table (1 per region)
  • azurerm_storage_share (2 per region)
  • azurerm_storage_management_policy (1 per region)
Service Bus
  • azurerm_servicebus_namespace (1 per region)
  • azurerm_servicebus_queue (1 dispatcher for primary location, 3 per region)
App Services
  • azurerm_service_plan (1 dispatcher for primary location, 5 per region)
  • azurerm_linux_function_app (1 dispatcher for primary location, 16 per region)
Real-Time Posture Monitoring
Azure resources:
  • Resource Group (1)
  • Logic App Workflow (1)
  • Logic App HTTP Request Trigger (1)
  • Monitor Action Group (1)
  • Monitor Activity Log Alert (1)
Data Security Posture
Terraform resources:
  • azurerm_network_security_group
  • azurerm_network_security_rule
  • azurerm_resource_group
  • azurerm_automation_account
  • azurerm_role_assignment
  • azurerm_automation_webhook
  • azurerm_monitor_action_group
  • azurerm_automation_python3_package
  • azurerm_automation_runbook
  • azurerm_automation_job_schedule
  • azurerm_public_ip
  • azurerm_subnet
  • azurerm_subnet_network_security_group_association
  • azurerm_bastion_host
Microsoft Defender for Endpoint Log Collection
Azure resources:
  • Resource Groups (1)
  • Event Hubs Namespace (1)
  • Event Hubs (1)
  • App Service Plans (1)
  • Function Apps (6)
  • Application Insights (6)
  • Log Analytics Workspaces (1)
  • Key Vault (1)
  • Key Vault Secrets (3)
  • Storage Accounts (1)
  • Storage Tables (1)
  • Storage Containers (1)
  • Role Assignments (12)
  • Azure AD App Role Assignments (7)
Cloud Detections for Azure Activity Log
Azure resources:
  • Resource Groups (1)
  • Event Hubs Namespace (1)
  • Event Hubs (1)
  • App Service Plans (1)
  • Function Apps (3)
  • Application Insights (3)
  • Log Analytics Workspaces (1)
  • Key Vault (1)
  • Key Vault Secrets (2)
  • Storage Accounts (1)
  • Storage Tables (1)
  • Storage Queues (1)
  • Storage Containers (1)
  • Role Assignments (8)