Azure monitor has built-in templates for Azure Activity alerts. You also have tools like Azure AD Identity Protection, Defender for Cloud, and Sentinel that can help to address this requirement. https://learn.microsoft.com/en-us/azure/azure-monitor/alerts/activity-log-alerts
Azure Monitor alerts
David Wrafter
41
Reputation points
Hi
In a recent security BLOG Microsoft have advised alerts should be configured [in Azure tenancy] to prompt review on high-risk modification of tenant configuration, including but not limited to:
Modification of Azure AD roles and privileged users associated with those roles.
Modification of tenant-wide security configurations.
Can someone please provide me with some examples of the rules mentioned?
1 answer
Sort by: Most helpful
-
Andrew Blumhardt 9,491 Reputation points Microsoft Employee
2022-04-26T16:37:02.773+00:00