Build in Rbac Monitoring

Azoh,Felix F 0 Reputation points
2023-06-29T15:20:40.0866667+00:00

I used this Azure document to create a build in rbac alert
https://video2.skills-academy.com/en-us/azure/role-based-access-control/role-assignments-alert

But the problem is, after the alert was created I am not receiving an email when the rbac is assigned to a user, and I tried assigning the storage account contributor,but the alert did not trigger by sending an email,but I could see some logs that is updated and person who did it.

How do I fix this so that I can receive and an email each time this rbac role is assigned to a user or group?

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
710 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,366 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. James Hamil 22,981 Reputation points Microsoft Employee
    2023-06-30T20:11:04.4133333+00:00

    Hi @Azoh,Felix F , I assume you followed this page on alerts. If not please read through it. To help fix this issue please follow these steps and let me know the results:

    1. Verify the alert rule: Make sure the alert rule is created with the correct Kusto query, measurement, aggregation granularity, and frequency of evaluation. Double-check the query to ensure it filters for the desired role assignments.
    2. Check the action group: Ensure that the action group associated with the alert rule is configured to send email notifications. When creating or editing an action group, you need to specify the email address where the notifications should be sent.
    3. Test the alert rule: After verifying the alert rule and action group, test the alert rule by assigning the desired role to a user or group. Wait a few minutes for the alert to be triggered based on the aggregation granularity and frequency of evaluation.
    4. Monitor the Alerts page: Keep an eye on the Alerts page in the Azure portal to see if the alert is triggered. If the alert is triggered but you still don't receive an email, check your email's spam folder or any email filtering rules that might be blocking the notification.

    If this still isn't working please let me know and I can open a support ticket for you.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James

    1 person found this answer helpful.