Forum Discussion

sac2000's avatar
sac2000
Copper Contributor
Aug 10, 2021

Feature Request: Alerts when logs ingestion is missing logs

We would like to see MSDFE generating alerts when end clients have communication or connectivity issues where logs are not being ingested into the MSDFE portal.

 

Thanks,

sac

 

 

  • AnuragSrivastava's avatar
    AnuragSrivastava
    Iron Contributor
    Aug 17, 2021
    You can leverage Advanced Hunting Query in MDE portal to create a custom detection alert when there is any connectivity issue. sample query: DeviceTvmSecureConfigurationAssessment | where ConfigurationId in ('scid-2002')

Resources