Merge pull request #153540 from memildin/asc-melvyn-jitWork

PRMerger6 · web-flow · commit 77ac3798e566 · 2021-04-07T22:30:41.000+05:30
Small tweaks
diff --git a/articles/security-center/security-center-alerts-overview.md b/articles/security-center/security-center-alerts-overview.md
@@ -5,7 +5,7 @@ author: memildin
 manager: rkarlin
 ms.service: security-center
 ms.topic: conceptual
-ms.date: 02/25/2021
+ms.date: 04/07/2021
 ms.author: memildin
 ---
 # Security alerts and incidents in Azure Security Center
@@ -73,7 +73,7 @@ The severity is based on how confident Security Center is in the finding or the
 | **High**          | There is a high probability that your resource is compromised. You should look into it right away. Security Center has high confidence in both the malicious intent and in the findings used to issue the alert. For example, an alert that detects the execution of a known malicious tool such as Mimikatz, a common tool used for credential theft.                                                                                                               |
 | **Medium**        | This is probably a suspicious activity might indicate that a resource is compromised. Security Center's confidence in the analytic or finding is medium and the confidence of the malicious intent is medium to high. These would usually be machine learning or anomaly-based detections. For example, a sign-in attempt from an anomalous location.                                                                                                                |
 | **Low**           | This might be a benign positive or a blocked attack. Security Center isn't confident enough that the intent is malicious and the activity might be innocent. For example, log clear is an action that might happen when an attacker tries to hide their tracks, but in many cases is a routine operation performed by admins. Security Center doesn't usually tell you when attacks were blocked, unless it's an interesting case that we suggest you look into. |
-| **Informational** | You will only see informational alerts when you drill down into a security incident, or if you use the REST API with a specific alert ID. An incident is typically made up of a number of alerts, some of which might appear on their own to be only informational, but in the context of the other alerts might be worthy of a closer look.                                                                                                                         |
+| **Informational** | An incident is typically made up of a number of alerts, some of which might appear on their own to be only informational, but in the context of the other alerts might be worthy of a closer look.                                                                                                                         |
 
 ## Export alerts
 
diff --git a/articles/security-center/security-center-provide-security-contact-details.md b/articles/security-center/security-center-provide-security-contact-details.md
@@ -5,7 +5,7 @@ author: memildin
 manager: rkarlin
 ms.service: security-center
 ms.topic: quickstart
-ms.date: 02/09/2021
+ms.date: 04/07/2021
 ms.author: memildin
 
 ---
@@ -54,6 +54,8 @@ You can also manage your email notifications through the supplied REST API. For
 
 This is an example request body for the PUT request when creating a security contact configuration:
 
+URI: https://management.azure.com/subscriptions/<SubscriptionId>/providers/Microsoft.Security/securityContacts/default?api-version=2020-01-01-preview
+
 ```json
 {
     "properties": {
@@ -64,7 +66,7 @@ This is an example request body for the PUT request when creating a security con
         },
         "alertNotifications": {
             "state": "On",
-            "minimalSeverity": "High"
+            "minimalSeverity": "Medium"
         },
         "phone": ""
     }
