Forum Discussion
Office 365 and managing default alerts
Hi there,
Has anybody success to modify the thresholds for the default alerst? For example:
- - - - - - - - - - - - - - - - - - - - - - - - -
A medium-severity alert has been triggered
Unusual volume of file deletion
Severity: Medium
Activity: FileDeleted
Details: 90 matched activities in 5 minutes.
- - - - - - - - - - - - - - - - - - - - - - - - -
Yes, I can disable that, but it is not the point.
No. That's one of the "anomaly detection" policies which apparently use some ML models and should apply different criteria for different users. You can simply disable this and create an alert with pre-set criteria for the delete operation.
2 Replies
No. That's one of the "anomaly detection" policies which apparently use some ML models and should apply different criteria for different users. You can simply disable this and create an alert with pre-set criteria for the delete operation.
Thank you VasilMichev. Not the answer I wish to hear, but that is what we get from clouds.
