Aqua CSPM

Admin Security Alerts Enabled

Quick Info

Plugin TitleAdmin Security Alerts Enabled
CloudAZURE
CategorySecurity Center
DescriptionEnsures that security alerts are configured to be sent to admins
More InfoEnabling security alerts to be sent to admins ensures that detected vulnerabilities and security issues are sent to the subscription admins for quick remediation.
AZURE Linkhttps://docs.microsoft.com/en-us/azure/security-center/security-center-provide-security-contact-details
Recommended ActionEnsure that security alerts are configured to be sent to subscription owners.

Detailed Remediation Steps

  1. Log into the Microsoft Azure Management Console.
  2. Select the “Search resources, services, and docs” option at the top and search for Security Center.
  3. On the “Security Center” page scroll down the left navigation panel and choose “Pricing and Settings."
  4. On the “Security Center - Pricing & settings” page, select the “Subscription” by clicking on the “Name."
  5. Under the “Settings - Pricing tier”, click on the “Email Notifications” options and if the “Email notification settings” are turned off then the security alerts are not configured to be sent to admins.
  6. Repeat steps number 2 - 5 to verify other Azure accounts for “Admin Security Alerts."
  7. Navigate to Security center, choose “Pricing and Settings”, select the “Subscription” by clicking on the “Name” and click on the “Email Notifications” options.
  8. On the “Settings - Email notifications” page, enter the “Email address” and if there are more than 1 “Email address” then separate the email addresses by “comma."
  9. On the “Email notification settings” click on “ON” option next to “Send email notification for high severity alerts.“Click on the Save button to make the changes.
  10. Repeat steps number 7 - 9 to ensure that security alerts are configured to be sent to subscription owners.