Integrate Security Centre Alerts to Azure Sentinel
Вставка
- Опубліковано 17 вер 2024
- Integrate Azure Security Centre (Defender for Cloud) Alerts to Azure Sentinel.
Using Sentinel as the single source to analyse incidents and alerts will be helpful as you start to recieve alerts from different security products and want to have just one pane of glass for all monitoring purposes.
Have also shown how to generate sample alerts from Azure Security Centre (Microsoft Defender for Cloud) inro Azure Sentinel
hi, That's fine but how do we identify what is the alert for? and this alert is generated by whom?
Hi Dubesto, more than i try to explain if you ahve a chance to generate a test alert would be great as the answers to your questions will be in that. So basically when you look into that alert it will tell you the rule that generated the alert, will give you an incident overview and a description to help you understand what the alert is for. Hope this helps