Update defender-endpoint-false-positives-negatives.md

2025-05-14 22:37:22 +00:00 · 2021-01-22 13:47:49 -08:00 · 2021-01-22 13:47:49 -08:00 · f508a1704b
commit f508a1704b
parent 99e5ed848c
1 changed files with 4 additions and 4 deletions
--- a/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/defender-endpoint-false-positives-negatives.md
@ -54,10 +54,10 @@ Before you classify or suppress an alert, determine whether the alert is accurat
 1. Go to the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)) and sign in.
 2.	In the navigation pane, choose **Alerts queue**.
 3.	Select an alert to more details about the alert. (See [Review alerts](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/review-alerts).)
-4.	Take one of the following steps: <br/>   
-   - If the alert is accurate, assign and investigate the alert further.
-   - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
-   - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.
+4.	Take one of the following steps:   <br/>   
+    - If the alert is accurate, assign and investigate the alert further.
+    - If the alert is a false positive, proceed to classify the alert as a false positive, and then suppress the alert. Also, create an indicator for Microsoft Defender for Endpoint. 
+    - If the alert is accurate but benign (unimportant), classify the alert as a true positive, and then suppress the alert.

 ### Classify an alert as a false positive