常见问题解答 - 关于虚拟机的问题FAQ - Questions about virtual machines

支持哪些类型的虚拟机?What types of virtual machines are supported?

使用经典部署模式和 Resource Manager 部署模式创建的虚拟机 (VM) 支持监视和建议。Monitoring and recommendations are available for virtual machines (VMs) created using both the classic and Resource Manager deployment models.

有关支持平台的列表,请参阅 Azure 安全中心支持的平台See Supported platforms in Azure Security Center for a list of supported platforms.

Azure 安全中心为何不能识别我的 Azure VM 上运行的反恶意软件解决方案?Why doesn't Azure Security Center recognize the antimalware solution running on my Azure VM?

Azure 安全中心可识别出通过 Azure 扩展安装的反恶意软件。Azure Security Center has visibility into antimalware installed through Azure extensions. 例如,安全中心无法检测出预装在所提供的映像上的反恶意软件或使用自己的进程(例如配置管理系统)在虚拟机上安装的反恶意软件。For example, Security Center is not able to detect antimalware that was pre-installed on an image you provided or if you installed antimalware on your virtual machines using your own processes (such as configuration management systems).

为什么会显示消息称 VM“缺少扫描数据”?Why do I get the message "Missing Scan Data" for my VM?

没有可供 VM 扫描的数据时会出现此消息。This message appears when there is no scan data for a VM. 在 Azure 安全中心启用数据收集之后,扫描数据导入可能需要一段时间(低于一小时)。It can take some time (less than an hour) for scan data to populate after Data Collection is enabled in Azure Security Center. 首次导入扫描数据后可能会收到此消息,因为此时根本没有扫描数据或没有最近扫描数据。After the initial population of scan data, you may receive this message because there is no scan data at all or there is no recent scan data. 扫描不会导入处于停止状态的 VM。Scans do not populate for a VM in a stopped state. 如果最近(根据 Windows 代理的保留策略,此值默认为 30 天)没有导入扫描数据,也可能会显示此消息。This message could also appear if scan data has not populated recently (in accordance with the retention policy for the Windows agent, which has a default value of 30 days).

安全中心多长时间扫描一次操作系统漏洞、系统更新和终结点保护问题?How often does Security Center scan for operating system vulnerabilities, system updates, and endpoint protection issues?

以下是安全中心扫描漏洞、更新和问题的延迟时间:Below are the latency times for Security Center scans of vulnerabilities, updates, and issues:

  • 操作系统安全配置 - 数据在 48 小时内更新Operating system security configurations – data is updated within 48 hours
  • 系统更新 – 数据在 24 小时内更新System updates – data is updated within 24 hours
  • 终结点保护问题 – 数据在 8 小时内更新Endpoint Protection issues – data is updated within 8 hours

安全中心通常每小时扫描一次新数据,并相应地刷新建议。Security Center typically scans for new data every hour, and refreshes the recommendations accordingly.

备注

安全中心使用 Log Analytics 代理来收集和存储数据。Security Center uses the Log Analytics agent to collect and store data. 若要了解详细信息,请参阅 Azure 安全中心平台迁移To learn more, see Azure Security Center Platform Migration.

为什么会显示消息称“VM 代理缺失”?Why do I get the message "VM Agent is Missing?"

VM 代理必须安装在 VM 上才能启用数据收集。The VM Agent must be installed on VMs to enable Data Collection. 对于从 Azure 市场部署的 VM,默认安装 VM 代理。The VM Agent is installed by default for VMs that are deployed from the Azure Marketplace. 有关如何在其他 VM 上安装 VM 代理的详细信息,请参阅博客文章 VM 代理和扩展For information on how to install the VM Agent on other VMs, see the blog post VM Agent and Extensions.