You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: ATPDocs/notifications.md
+7-6Lines changed: 7 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -19,18 +19,19 @@ This article describes how to configure Defender for Identity notifications so t
19
19
20
20
## Configure email notifications
21
21
22
-
This section describes how to configure email notifications for Defender for Identity health issues or security alerts.
22
+
This section describes how to configure email notifications for Defender for Identity health issues.
23
23
24
24
1. In [Microsoft Defender XDR](https://security.microsoft.com), select **Settings** > **Identities**.
25
25
26
-
1. Under **Notifications**, select **Health issues notifications** or **Alert notifications** as needed.
26
+
1. Under **Notifications**, select **Health issues notifications**.
27
27
28
28
1. In the **Add recipient email**, enter the email address(es) where you want to receive email notifications, and select **+ Add**.
29
29
30
-
Whenever Defender for Identity detects a health issue or security alert, configured recipients receive an email notification with the details, with a link to Microsoft Defender XDR for more details.
30
+
Whenever Defender for Identity detects a health issue, configured recipients receive an email notification with the details, with a link to Microsoft Defender XDR for more details.
31
31
32
32
> [!NOTE]
33
-
> *Alert notifications* page will be deprecated by January 15, 2025. Please use the '[Email Notifications](https://security.microsoft.com/securitysettings/defender/email_notifications)' page under Defender XDR settings for new and existing notifications rules. [Learn more](https://aka.ms/IncidentsNotificationsDefenderXdr)
33
+
> To receive email notifications about Incidents, please use the [Email Notifications](https://security.microsoft.com/securitysettings/defender/email_notifications) page under Defender XDR Settings for new and existing notifications rules. [Learn more](https://aka.ms/IncidentsNotificationsDefenderXdr).
34
+
34
35
## Configure Syslog notifications
35
36
36
37
This section describes how to configure Defender for Identity to send health issues and security events to a Syslog server through a configured sensor.
@@ -41,13 +42,13 @@ Events aren't sent from the Defender for Identity service to your Syslog server
41
42
42
43
1. In [Microsoft Defender XDR](https://security.microsoft.com), select **Settings** > **Identities**.
43
44
44
-
1. Under **Notifications**, select **Syslog notifications** and then toggle on the **Syslog service** option.
45
+
1. Under **Notifications**, select **Syslog notifications**, and then toggle on the **Syslog service** option.
45
46
46
47
1. Select **Configure service** to open the **Syslog service** pane.
47
48
48
49
1. Enter the following details:
49
50
50
-
-**Sensor**: Select the sensor you want to send notifications to the Syslog server
51
+
-**Sensor**: Select the sensor you want to send notifications to the Syslog server.
51
52
-**Service endpoint** and **Port**: Enter the IP address or fully qualified domain name (FQDN) for the Syslog server, and then enter the port number. You can configure only one Syslog endpoint.
52
53
-**Transport**: Select the **Transport** protocol (TCP or UDP).
53
54
-**Format**: Select the format (RFC 3164 or RFC 5424).
0 commit comments