Feature Request: Alerts when logs ingestion is missing logs

Visitor

We would like to see MSDFE generating alerts when end clients have communication or connectivity issues where logs are not being ingested into the MSDFE portal.

 

Thanks,

sac

 

 

1 Reply
You can leverage Advanced Hunting Query in MDE portal to create a custom detection alert when there is any connectivity issue. sample query: DeviceTvmSecureConfigurationAssessment | where ConfigurationId in ('scid-2002')