deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-12 13:27:23 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

Merge pull request #563 from MicrosoftDocs/MDATP-suppression-condition-logic

Browse Source 
Update manage-alerts.md
This commit is contained in:
jcaparas 2019-06-25 11:15:54 -07:00 committed by GitHub
commit 2692d77a43
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
windows/security/threat-protection/microsoft-defender-atp/manage-alerts.md
View File

@ -68,13 +68,13 @@ Create custom rules to control when alerts are suppressed, or resolved. You can
2. Select **Create a suppression rule**.
You can create a suppression rule based on the following attributes:
You can create a suppression condition using these attributes. An AND operator is applied between each condition, so suppression occurs only if all conditions are met.
* File hash
* File name - wild card supported
* File path - wild card supported
* IP
* URL - wild card supported
* File SHA1
* File name - wildcard supported
* Folder path - wildcard supported
* IP address
* URL - wildcard supported
3. Select the **Trigerring IOC**.