Lars Villaume Jørgensen

My feedback

  1. 82 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Lars Villaume Jørgensen commented  · 

    The Detections preview currently shows events from the ATA event log which means that suspicious activities that has been investigated and marked as dismissed is shown in OMS as suspicious activity with severity critical while they in the ATA console is not. maybe the events in the ATA event log could be written written with different events ids so we can filter on open suspicious, resolved and dismissed suspicious activities.

  2. 7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Lars Villaume Jørgensen supported this idea  · 
  3. 6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Lars Villaume Jørgensen shared this idea  · 
  4. 6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Automation » Hybrid  ·  Flag idea as inappropriate…  ·  Admin →
    Lars Villaume Jørgensen supported this idea  · 
  5. 3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Security Center  ·  Flag idea as inappropriate…  ·  Admin →
    Lars Villaume Jørgensen shared this idea  · 
  6. 82 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Lars Villaume Jørgensen supported this idea  · 
  7. 10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)

    Hi, we are discussing this internally.

    Today you have a way to do this, by overriding the rules that perform MP/IP download and import – there is an override MP here http://blogs.technet.com/b/momteam/archive/2015/02/06/notice-upcoming-url-change-for-opsmgr-reporting-to-opinsights.aspx
    - you could keep them turned off in PROD and leave them enabled in QA/TEST – once you see a new MP has been updated in the test environment, you can remove the override in prod/let the update run/then block it again.

    We are determining how to make this more polished.
    Also see the similar idea http://feedback.azure.com/forums/267889-azure-operational-insights/suggestions/7161777-intelligence-pack-updates

    Lars Villaume Jørgensen supported this idea  · 
  8. 39 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Change Tracking  ·  Flag idea as inappropriate…  ·  Admin →
    Lars Villaume Jørgensen supported this idea  · 

Feedback and Knowledge Base