快速入门:设置 Azure 安全中心Quickstart: Set up Azure Security Center

Azure 安全中心为你的混合和多云工作负载提供统一的安全管理和威胁防护。Azure Security Center provides unified security management and threat protection across your hybrid and multi-cloud workloads. 免费功能只能为 Azure 资源提供有限的安全性,而启用 Azure Defende 能将这些功能扩展到本地和其他云。While the free features offer limited security for your Azure resources only, enabling Azure Defender extends these capabilities to on-premises and other clouds. 借助 Azure Defende,可以查找和修复安全漏洞、应用访问和应用程序控制来阻止恶意活动、使用分析和智能检测威胁,以及在受到攻击时迅速做出响应。Azure Defender helps you find and fix security vulnerabilities, apply access and application controls to block malicious activity, detect threats using analytics and intelligence, and respond quickly when under attack. 可以免费试用 Azure Defender。You can try Azure Defender at no cost. 若要了解详细信息,请参阅定价页To learn more, see the pricing page.

本快速入门部分将指导你完成启用 Azure 安全中心和 Azure Defender 的所有建议步骤。This quickstart section will walk you through all the recommended steps to enable Azure Security Center and Azure Defender. 如果完成了所有这些快速入门步骤,那么你便完成了以下任务:When you've completed all the quickstart steps, you'll have:

  • 在 Azure 订阅中启用安全中心Security Center enabled on your Azure subscriptions
  • 在 Azure 订阅中启用 Azure DefenderAzure Defender enabled on your Azure subscriptions
  • 设置自动数据收集Automatic data collection set up
  • 为安全警报设置电子邮件通知Email notifications set up for security alerts
  • 将混合和多云计算机连接到 AzureYour hybrid and multi-cloud machines connected to Azure

先决条件Prerequisites

若要开始使用安全中心,必须订阅 Azure。To get started with Security Center, you must have a subscription to Azure. 如果你没有订阅,则可以注册试用版If you do not have a subscription, you can sign up for a Trial.

若要在订阅中启用 Azure Defende,必须拥有“订阅所有者”、“订阅参与者”或“安全管理员”角色。To enable Azure Defender on a subscription, you must be assigned the role of Subscription Owner, Subscription Contributor, or Security Admin.

在 Azure 订阅中启用安全中心Enable Security Center on your Azure subscription

提示

若要在管理组中的所有订阅上启用安全中心,请参阅在多个 Azure 订阅上启用安全中心To enable Security Center on all subscriptions within a management group, see Enable Security Center on multiple Azure subscriptions.

  1. 登录到 Azure 门户Sign into the Azure portal.

  2. 从门户的菜单中,选择“安全中心”。From the portal's menu, select Security Center.

    此时会打开安全中心的“概述”页面。Security Center's overview page opens.

    安全中心的“概述”仪表板

    “安全中心 - 概述”提供了统一的视图,用于查看混合云工作负荷的安全态势,可让你发现和评估工作负荷的安全性,以及识别和缓解风险。Security Center - Overview provides a unified view into the security posture of your hybrid cloud workloads, enabling you to discover and assess the security of your workloads and to identify and mitigate risk. 安全中心会自动免费启用以前尚未由你或其他订阅用户加入的所有 Azure 订阅。Security Center automatically, at no cost, enables any of your Azure subscriptions not previously onboarded by you or another subscription user.

可以通过选择“订阅”菜单项来查看和筛选订阅列表。You can view and filter the list of subscriptions by selecting the Subscriptions menu item. 安全中心会调整显示信息,以反映所选订阅的安全状况。Security Center will adjust the display to reflect the security posture of the selected subscriptions.

在首次启动安全中心后的几分钟内,可以看到:Within minutes of launching Security Center the first time, you might see:

  • 有关如何改善已连接资源的安全性的“建议”。Recommendations for ways to improve the security of your connected resources.
  • 当前正在由安全中心评估的资源的清单,以及每个资源的安全状况。An inventory of your resources that are now being assessed by Security Center, along with the security posture of each.

若要充分利用安全中心,请继续阅读快速入门部分的后续步骤。To take full advantage of Security Center, continue with the next steps of the quickstart section.

后续步骤Next steps

在本快速入门中,你已经启用了 Azure 安全中心。In this quickstart you enabled Azure Security Center. 下一步是启用 Azure Defender,以便为混合云工作负载实施统一的安全管理和威胁防护。The next step is to enable Azure Defender for unified security management and threat protection across your hybrid cloud workloads.