Azure Key Vault 的威胁防护(预览版)Threat protection for Azure Key Vault (preview)

Azure Key Vault 的高级威胁防护提供了额外的安全情报层。Advanced threat protection for Azure Key Vault provides an additional layer of security intelligence. 此工具可检测访问或利用 Key Vault 帐户的潜在有害的尝试。This tool detects potentially harmful attempts to access or exploit Key Vault accounts. 使用 Azure 安全中心中的本机高级威胁防护,无需成为安全专家,也无需学习其他安全监视系统就可以解决威胁。Using the native advanced threat protection in Azure Security Center, you can address threats without being a security expert, and without learning additional security monitoring systems.

安全中心检测到异常活动时会显示警报。When Security Center detects anomalous activity, it displays alerts. 它还会向订阅管理员发送电子邮件,提供可疑活动的详细信息,以及如何调查和修正已识别威胁的建议。It also emails the subscription administrator with details of the suspicious activity and recommendations for how to investigate and remediate the identified threats.

配置安全中心的威胁防护Configuring threat protection from Security Center

默认情况下,当你订阅安全中心的标准定价层时,将为你的所有 Key Vault 帐户启用高级威胁防护。By default, advanced threat protection is enabled for all of your Key Vault accounts when you subscribe to Security Center's standard pricing tier. 有关详细信息,请参阅定价For more information, see Pricing.

启用或禁用对特定订阅的保护:To enable or disable the protection for a specific subscription:

  1. 在安全中心的左窗格中,选择“定价和设置”。From the left pane in Security Center, select Pricing & settings.

  2. 选择具有要为其启用或禁用威胁防护的存储帐户的订阅。Select the subscription with the storage accounts for which you want to enable or disable threat protection.

  3. 选择“定价层”。Select Pricing tier.

  4. 在“按资源类型选择定价层”组中,找到“Key Vault”行,然后选择“启用”或“禁用” 。From the Select pricing tier by resource type group, find the Key Vaults row and select Enabled or Disabled.

    在 Azure 安全中心中启用或禁用 Key Vault 的高级威胁防护Enabling or disabling advanced threat protection for Key Vault in Azure Security Center

  5. 选择“保存” 。Select Save.

后续步骤Next steps

在本文中,你了解了如何为 Azure Key Vault 启用和禁用高级威胁防护。In this article, you learned how to enable and disable advanced threat protection for Azure Key Vault.

有关相关材料,请参阅以下文章:For related material, see the following articles: