Azure audit securitycenter security contacts not set remediation

Using Console

Using CLI

To remediate the “No Security Contact Set” misconfiguration in Azure using Azure CLI, you can follow these steps:

Open the Azure CLI and login to your Azure account.
Run the following command to get the list of security contacts set for your subscription:
```
az security contact list --query '[].{name:name,email:email}' --output table
```
If the output is empty, it means that no security contact has been set for your subscription.
To set a security contact for your subscription, run the following command:
```
az security contact create --email <email_address> --name <name> --phone <phone_number>
```
Replace <email_address>, <name>, and <phone_number> with the appropriate values.
Once the command is executed successfully, run the following command again to verify that the security contact has been set:
```
az security contact list --query '[].{name:name,email:email}' --output table
```
The output should now show the security contact that you just set.

By following these steps, you have successfully remediated the “No Security Contact Set” misconfiguration in Azure using Azure CLI.

Using Python

To remediate the misconfiguration “No Security Contact Set” in Azure using Python, you can follow these steps:

Import the necessary modules:

from azure.identity import DefaultAzureCredential
from azure.mgmt.security import SecurityCenter

Authenticate to Azure using the DefaultAzureCredential:

credential = DefaultAzureCredential()

Create a SecurityCenter client object:

security_center_client = SecurityCenter(
    credential=credential,
    subscription_id="<subscription-id>"
)

Note: Replace <subscription-id> with your Azure subscription ID.

Get the security contact for the subscription:

security_contact = security_center_client.security_contacts.get(
    resource_group_name="<resource-group-name>",
    security_contact_name="<security-contact-name>"
)

Note: Replace <resource-group-name> and <security-contact-name> with the appropriate values.

If the security_contact object is None, create a new security contact:

if security_contact is None:
    security_center_client.security_contacts.create(
        resource_group_name="<resource-group-name>",
        security_contact_name="<security-contact-name>",
        email="<email-address>",
        phone="<phone-number>"
    )

Note: Replace <email-address> and <phone-number> with the appropriate values.

If the security_contact object is not None, update the existing security contact:

else:
    security_center_client.security_contacts.create_or_update(
        resource_group_name="<resource-group-name>",
        security_contact_name="<security-contact-name>",
        email="<email-address>",
        phone="<phone-number>"
    )

Note: Replace <email-address> and <phone-number> with the appropriate values.

Verify that the security contact has been set:

security_contact = security_center_client.security_contacts.get(
    resource_group_name="<resource-group-name>",
    security_contact_name="<security-contact-name>"
)

if security_contact is not None:
    print("Security contact set successfully.")
else:
    print("Failed to set security contact.")

That’s it! These steps will remediate the misconfiguration “No Security Contact Set” in Azure using Python.

Azure Introduction

Azure Pricing

Azure Threats

Azure Misconfigurations

Azure audit securitycenter security contacts not set remediation

Triage and Remediation

Remediation