Azure Kubernetes 服务与安全中心的集成Azure Kubernetes Services integration with Security Center

Azure Kubernetes 服务 (AKS) 是 Microsoft 的托管服务,用于开发、部署和管理容器化应用程序。Azure Kubernetes Service (AKS) is Microsoft's managed service for developing, deploying, and managing containerized applications.

结合使用 AKS 和 Azure 安全中心的标准层(请参阅定价),以便更深入地了解 AKS 节点、云流量和安全控制。Use AKS together with Azure Security Center's standard tier (see pricing) to gain deeper visibility to your AKS nodes, cloud traffic, and security controls.

安全中心使用已由 AKS 主节点收集的数据为 AKS 群集带来了安全性优势。Security Center brings security benefits to your AKS clusters using data already gathered by the AKS master node.

Azure 安全中心与 Azure Kubernetes 服务 (AKS) 综合概述

这两个工具共同构成了最优秀的云原生 Kubernetes 安全产品/服务。Together, these two tools form the best cloud-native Kubernetes security offering.

集成的好处Benefits of integration

同时使用这两个服务可以提供:Using the two services together provides:

  • 安全建议 - 安全中心标识 AKS 资源并对其进行分类:从群集到单个虚拟机。Security recommendations - Security Center identifies your AKS resources and categorizes them: from clusters to individual virtual machines. 然后,可以查看每个资源的安全建议。You can then view security recommendations per resource. 有关详细信息,请参阅建议的参考列表中的容器建议。For more information, see the containers recommendations in the reference list of recommendations.

  • 环境强化 - 安全中心持续监视 Kubernetes 群集的配置和 Docker 配置。Environment hardening - Security Center constantly monitors the configuration of your Kubernetes clusters and Docker configurations. 然后,它将生成反映行业标准的安全建议。It then generates security recommendations that reflect industry standards.

  • 运行时保护 - 通过连续分析以下 AKS 源,安全中心会提醒你主机上检测到的威胁和恶意活动,还会提醒你 AKS 群集级别:Run-time protection - Through continuous analysis of the following AKS sources, Security Center alerts you to threats and malicious activity detected at the host and AKS cluster level:

    • 原始安全事件(如网络数据和进程创建)Raw security events, such as network data and process creation
    • Kubernetes 审核日志The Kubernetes audit log

    有关详细信息,请参阅针对 Azure 容器的威胁防护For more information, see threat protection for Azure containers

    有关可能出现警报的列表,请参阅警报引用表中的以下部分:AKS 群集级别警报容器主机级别警报For the list of possible alerts, see these sections in the alerts reference table: AKS cluster level alerts and Container host level alerts.

详细了解 Azure 安全中心与 Azure Kubernetes 服务 (AKS)

备注

Azure 安全中心从 Kubernetes 环境扫描的某些数据可能会包含敏感信息。Some of the data scanned by Azure Security Center from your Kubernetes environment may contain sensitive information.

后续步骤Next steps

若要详细了解安全中心的容器安全功能,请参阅:To learn more about Security Center's container security features, see: