Azure-docs: A security contact phone number should be provided for your subscription
[Enter feedback here]
The security center generated a compliance alert to register the contact phone, but I noticed that this field was removed from the notification option, but it still appears in the az security contact list command, the question is: is there a field for registration or is it false positive at the security center? shouldn't it be removed?
Document Details
⚠Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
- ID: 0a455a24-920e-f9f8-7a6f-60b5f4019acd
- Version Independent ID: e6a4d8e2-0ada-e535-810f-5eb19e45ee1e
- Content: Provide security contact details in Azure Security Center
- Content Source: articles/security-center/security-center-provide-security-contact-details.md
- Service: security-center
- GitHub Login: @memildin
- Microsoft Alias: memildin
jose-lima2011
All 10 comments
@jose-lima2011 Thanks for your feedback! We will investigate and update as appropriate.
SaurabhSharma-MSFT
on 1 Sep 2020
@jose-lima2011 I am able to see the email contact list on the page and it is not removed. Can you please share screenshot of your Azure portal ?
SaurabhSharma-MSFT
on 3 Sep 2020
@jose-lima2011 I am able to see the email contact list on the page and it is not removed. Can you please share screenshot of your Azure portal ?
I think I didn't explain it correctly, the security center generates a non-compliance by CIS: 2.17.
Ensure that security contact 'Phone number' is set
This compliance was previously corrected in the phone field that no longer exists according to your printscreen. The question is: does this field exist? was it depreciated? if so why is the Security Center signaling this non-compliance?
see the image of the previous version in portuguese:
So again my question is about the phone field not about email.
jose-lima2011
on 3 Sep 2020
Having the same issue as stated above as well.
shaunfindley
on 3 Sep 2020
@jose-lima2011 Sorry about my confusion. Yes, I see what you are talking about. I am checking internally with the product team on this issue and update you as soon as I hear back from them.
SaurabhSharma-MSFT
on 3 Sep 2020
@jose-lima2011 I have received the confirmation from product team that the field is still exist, but can only be set via PowerShell or API. For PowerShell use:
Set-AzSecurityContact -Name "default1" -Email "[email protected]" -Phone "2142754038" -AlertAdmin -NotifyOnAlert
For API use:
https://docs.microsoft.com/en-us/rest/api/securitycenter/securitycontacts/update
SaurabhSharma-MSFT
on 3 Sep 2020
Thank you, but another question. If a security contact already exists with a email address you want to add the phone number to I cannot find a method to just update the phone number. I have tried to remove the contact then add it again and it fails the same saying the email address already exists even though it was deleted.
shaunfindley
on 4 Sep 2020
shaun findley, your question makes sense i had already seen this problem in fact i had flagged in a similar issue:
https://github.com/Azure/azure-cli/issues/14594
corrected without feedback, I add the question if the phone numbers are still restricted to the US format, I believe it shouldn't because the phone exists worldwide. Add the solution procedure in the System Center or I believe that many people will get lost in the correction
jose-lima2011
on 4 Sep 2020
@shaunfindley Yes, unfortunately, you need to pass both Name and Email even you want to setup Phone Number and it works as expected.
Also, I tried setting up Phone Number other than USA and it works as well. See screenshot below -
SaurabhSharma-MSFT
on 8 Sep 2020
@jose-lima2011 We will now proceed to close this thread. If there are further questions regarding this matter, please reopen it and we will gladly continue the discussion.
SaurabhSharma-MSFT
on 11 Sep 2020
Related issues
AronT-TLV
·
3Comments
behnam89
·
3Comments
Ponant
·
3Comments
Favna
·
3Comments
jebeld17
·
3Comments