Merge pull request #2756 from MicrosoftDocs/main

learn-build-service-prod[bot] · web-flow · commit efe2f7258fc6 · 2026-04-20T06:01:57.000Z
Auto Publish – main to live - 2026-04-20 06:00 UTC
diff --git a/articles/defender-for-cloud/release-notes.md b/articles/defender-for-cloud/release-notes.md
@@ -32,9 +32,27 @@ This article summarizes what's new in Microsoft Defender for Cloud. It includes
 
 | Date | Category | Update |
 | -------- | -------- | -------- |
+| April 20, 2026 | GA | [General availability of Defender for Storage integration in Azure Portal Storage Center](#general-availability-of-defender-for-storage-integration-in-azure-portal-storage-center) |
 | April 1, 2026 | GA | [General availability of container security capabilities in Azure Government cloud](#general-availability-of-container-security-capabilities-in-azure-government-cloud) |
 | April 1, 2026 | Upcoming change | [Update to Defender for SQL servers on machines plan for Fairfax customers](#update-to-defender-for-sql-servers-on-machines-plan-for-fairfax-customers) |
 
+
+## General availability of Defender for Storage integration in Azure Portal Storage Center
+
+April 20, 2026
+
+This integration brings Defender for Storage insights directly into the native storage management experience. This approach makes it easier for customers to understand and improve their storage security posture at scale.
+
+Customers can now view Defender for Storage threat protection and security posture coverage directly in Storage Center, next to their storage resources.
+
+Storage Center provides a centralized, storage-native view of Defender for Storage protection status. This view helps customers quickly understand the following items:
+
+1. Which storage accounts are protected, partly protected, or not protected  
+1. Where malware scanning, activity monitoring, and sensitive data discovery are enabled  
+1. Where security gaps exist across Azure Blob Storage and Azure Files storage
+
+Learn more about [Azure storage](/azure/storage/blobs/storage-blobs-overview).
+
 ### General availability of container security capabilities in Azure Government cloud
 
 April 1, 2026
diff --git a/articles/defender-for-cloud/support-matrix-defender-for-storage.md b/articles/defender-for-cloud/support-matrix-defender-for-storage.md
@@ -28,6 +28,9 @@ This article lists the prerequisites and permissions required to [enable Microso
   
 - Storage accounts that belong to a resource group with any of the following names are not supported: `App_Browsers`, `App_Code`, `App_Data`, `App_GlobalResources`, `App_LocalResources`, `App_Themes`, `App_WebReferences`, `Bin`.
 
+> [!NOTE]
+> AWS S3 buckets are not directly supported by Defender for Storage. You can use Microsoft Sentinel with the AWS S3 connector to consume AWS GaurdDuty findings and display them within the Defender portal **Alerts** table. For more information, see [Sentinel data connectors](/azure/sentinel/data-connectors-reference#sentinel-data-connectors/azure/sentinel/connect-aws?tabs=s3).
+
 ## Permissions
 
 Depending on the scenario, you need different levels of permissions to enable Defender for Storage and its features. You can enable and configure Defender for Storage at the subscription level or at the storage account level. You can also use built-in Azure policies to enable Defender for Storage and enforce its enablement on a desired scope.
diff --git a/articles/defender-for-cloud/tutorial-enable-storage-plan.md b/articles/defender-for-cloud/tutorial-enable-storage-plan.md
@@ -51,9 +51,20 @@ We recommend that you enable Defender for Storage via a policy. This method faci
 ## View your current coverage
 
 Defender for Cloud provides access to [workbooks](custom-dashboards-azure-workbooks.md) through [Azure workbooks](/azure/azure-monitor/visualize/workbooks-overview). Workbooks are customizable reports that provide insights into your security posture.
-
 The [coverage workbook](custom-dashboards-azure-workbooks.md#coverage-workbook) helps you understand your current coverage by showing which plans are enabled on your subscriptions and resources.
 
+In addition, you can view Defender for Storage threat protection and posture coverage directly in Storage Center, alongside your storage resources.
+
+Storage Center gives you a centralized, storage-native view of Defender for Storage protection status. This view helps you quickly understand:
+
+- Which storage accounts are protected, partially protected, or not protected
+- Where malware scanning, activity monitoring, and sensitive data discovery are enabled
+- Where security gaps exist across Azure Blob Storage and Azure Files storage
+
+You can drill down from high-level insights to service-level and resource-level views, and seamlessly deep‑link into Defender for Cloud to take action and remediate gaps.
+
+Learn more about [Azure storage](/azure/storage/blobs/storage-blobs-overview).
+
 ## Related content
 
 - Learn how to [enable and configure the Defender for Storage plan at scale by using an Azure built-in policy](defender-for-storage-policy-enablement.md).
