Admin Security Alerts Enabled
Ensures that security alerts are configured to be sent to admins
Enabling security alerts to be sent to admins ensures that detected vulnerabilities and security issues are sent to the subscription admins for quick remediation.
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
-
Log in to the Microsoft Azure Management Console.
-
Select the “Search resources, services, and docs” option at the top and search for “Microsoft Defender for Cloud”.
-
On the “Microsoft Defender for Cloud” page scroll down the left navigation panel and choose “Environment Settings”.
-
On the “Environment Settings” page, select the “Subscription” by clicking on the “Name”.
-
Under the “Settings | Defender plans " page, click on the “Email Notifications”
-
On the “Settings | Email notifications” page under “Email recipients” if the “Additional email addresses (separated by commas)” is empty and only “owner” is selected in “All users with the following roles” then the security alerts are not configured to be sent to admins.
-
Under “Email recipients”, click the dropdown for “All users with the following roles” and check mark “AccountAdmin and Service"Admin” along with owner and enter one or more than one “Email addressess” separated by “comma in section “Additional email addresses (separated by commas)”.
-
Under “Notification types” select “High” from the dropdown next to “Notify about alerts with the following severity (or higher). Click on the “Save” button to make the changes.
-
Repeat step number 3 - 8 to ensure that security alerts are configured to be sent to subscription owners.