In Azure kusto query window We can create two alerts
- Azure Monitor Alert
- Azure Sentinel Alert
What are the difference between these.
Asked
Active
Viewed 57 times
1
1 Answers
2
These are two different things. In general Azure Monitor alert will be related to a performance metric type of alert maybe when your CPU on VM is at 75% and you want to be notified about it via e-mail/SMS/webhook etc. and Sentinel alert is being triggered when there has been some security alert in your environment for example Failed SSH brute force attack, the Sentinel alerts are being correlated into actionable security incidents to reduce noise.
Hope it helps :)
catJam
- 224
- 1
- 10