Purview Alert Policy Creation Procedure

This admin procedure will provide background information on creating a custom alert policy that will be generated to notify Administrators of the events that fall within the scope of what is outlined.

This article is intended for employees of organizations that use Sittadel's security. Additionally, there are some actions that can only be accomplished by those with administrative privileges.

Alert Policies

An alert policy is a set of rules and conditions that define the user or admin activity that generates an alert, a list of users who trigger the alert if they perform the activity, and a threshold that defines how many times the activity has to occur before an alert is triggered.


Procedure Scope: Administrators

Required Group Membership: Admin.Compliance


Creating an Alert Policy

  1. Navigate to Alert Policies – Purview, select New Alert Policy, a window will be displayed asking to provide a name, description, severity level, and category type for the policy being generated. Select Next to proceed.
  2. A list of all the configurable settings related to the category selected will be displayed, specify the event trigger such as the activity and the frequency of occurrence. Select Next to continue.
  3. Specify the users you wish to notify of the alert generation. Select Next to proceed to revisions.
  4. All the configured settings will be displayed, if you detect a discrepancy select the Edit button next to the policy section you need to alter, if the policy looks good make sure to specify deployment status and select Submit to finalize the creation process.

You're Finished!

You should have successfully created a new alert policy that will be enforced based on the events specified; when triggered the administrative group listed will be notified of the event and will be able to react accordingly. For any other problems or questions, reach out to us!