question

DavidWrafter-8948 avatar image
0 Votes"
DavidWrafter-8948 asked Monalla-MSFT commented

Azure Monitor alerts

Hi

In a recent security BLOG Microsoft have advised alerts should be configured [in Azure tenancy] to prompt review on high-risk modification of tenant configuration, including but not limited to:

Modification of Azure AD roles and privileged users associated with those roles.
Modification of tenant-wide security configurations.

Can someone please provide me with some examples of the rules mentioned?

azure-monitorazure-ad-audit-logs
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@DavidWrafter-8948 - Did the below answer help resolve your issue, if not please revert back with any questions.
and if it did, please feel free to "accept as answer" so it can be beneficial to the community.

0 Votes 0 ·

1 Answer

AndrewBlumhardt-1137 avatar image
0 Votes"
AndrewBlumhardt-1137 answered

Azure monitor has built-in templates for Azure Activity alerts. You also have tools like Azure AD Identity Protection, Defender for Cloud, and Sentinel that can help to address this requirement. https://docs.microsoft.com/en-us/azure/azure-monitor/alerts/activity-log-alerts

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.