针对安全警报配置电子邮件通知Configure email notifications for security alerts

安全警报需要传达至组织中适当的人员。Security alerts need to reach the right people in your organization. 默认情况下,只要触发针对其订阅的高严重性警报,安全中心就会向订阅所有者发送电子邮件。By default, Security Center emails subscription owners whenever a high-severity alert is triggered for their subscription. 本页说明了如何自定义这些通知。This page explains how to customize these notifications.

若要定义你自己的通知电子邮件首选项,Azure 安全中心的“电子邮件通知”设置页允许你选择:To define your own preferences for notification emails, Azure Security Center's Email notifications settings page lets you choose:

  • 应通知的人员 - 可将电子邮件发送给选定的个人或任何具有指定 Azure 订阅角色的人。who should be notified - Emails can be sent to select individuals or to anyone with a specified Azure role for a subscription.
  • 他们应得到通知的内容 - 修改安全中心应发出通知的严重性级别。what they should be notified about - Modify the severity levels for which Security Center should send out notifications.

为了避免警报疲劳,安全中心限制了外发邮件的数量。To avoid alert fatigue, Security Center limits the volume of outgoing mails. 对于每个订阅,安全中心都会发送以下数量的电子邮件:For each subscription, Security Center sends:

  • 对于“严重级别高”的警报,每 6 小时最多发送 1 封电子邮件(每天 4 封) a maximum of one email per 6 hours (4 emails per day) for high-severity alerts
  • 对于“严重级别中等”的警报,每 12 小时最多发送 1 封电子邮件(每天 2 封) a maximum of one email per 12 hours (2 emails per day) for medium-severity alerts
  • 对于“严重级别低”的警报,每 24 小时最多发送 1 封电子邮件 a maximum of one email per 24 hours for low-severity alerts

配置将接收有关安全警报的电子邮件的联系人的详细信息。

可用性Availability

方面Aspect 详细信息Details
发布状态:Release state: 正式发布 (GA)Generally available (GA)
定价:Pricing: 免费Free
所需角色和权限:Required roles and permissions: 安全管理员Security Admin
订阅所有者Subscription Owner
云:Clouds: 是 中国云China cloud

自定义安全警报电子邮件通知Customize the security alerts email notifications

可以将电子邮件通知发送给具有特定 Azure 角色的个人或所有用户。You can send email notifications to individuals or to all users with specific Azure roles.

  1. 从安全中心的“定价和设置”区域中选择相关订阅,然后选择“电子邮件通知” 。From Security Center's Pricing & settings area, select the relevant subscription, and select Email notifications.

  2. 使用以下一个或两个选项定义通知的收件人:Define the recipients for your notifications with one or both of these options:

    • 从下拉列表中,选择某个可用角色。From the dropdown list, select from the available roles.
    • 输入用逗号分隔的特定电子邮件地址。Enter specific email addresses separated by commas. 输入的电子邮件地址数量无限制。There's no limit to the number of email addresses that you can enter.
  3. 若要将安全联系人信息应用到订阅,请选择“保存”。To apply the security contact information to your subscription, select Save.

另请参阅See also

若要了解有关安全警报的详细信息,请参阅以下页面:To learn more about security alerts, see the following pages: