Organizing security alerts and changing a security alert status
Security alerts are generated continuously based on advanced analytics and threat intelligence, and when a security alert is raised, you should respond to it and resolve it as soon as possible. In this recipe, you will learn how to respond to a security alert and change its alert status.
Getting ready
Open a web browser and navigate to https://portal.azure.com.
How to do it
To respond to a security alert and change its alert status, take the following steps:
- In the Azure portal, open Microsoft Defender for Cloud.
- On the left menu, select Security alerts.
- Select a security alert you want to investigate and remediate. A details pane opens on the right. At the top of the details pane, click on the Status drop-down menu, showing the alert status as Active:
- If a security alert is resolved, you should change its status...