![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 74%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
3,202 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Hello metalheart,
Greetings! Welcome to Microsoft Q&A Platform.
I understand that you are facing issue in receiving the alert emails from Defender for cloud. The Email Recipients defined with "Roles" would be the only ones who would receive the email. So, in your case, please check user account that have specific privileges only then they would receive notification emails.
If you don't have roles enabled, then you may have email addresses added in Additional email addresses (separated by commas), with dedicated users whom you want to receive email for alters regardless of their PIM status.
You can configure Microsoft Defender XDR to send email notifications to specified recipients for new alerts. This feature enables you to identify a group of individuals who will immediately be informed and can act on alerts based on their severity.
If you're using Defender for Business, you can set up email notifications for specific users (not roles or groups).
You can set the alert severity levels that trigger notifications. You can also add or remove recipients of the email notification. New recipients get notified about alerts triggered after they're added. For more information about alerts, see View and organize the Alerts queue.
If you're using role-based access control (RBAC), recipients will only receive notifications based on the device groups that were configured in the notification rule. Users with the proper permission can only create, edit, or delete notifications that are limited to their device group management scope. Only users assigned to the Global administrator role can manage notification rules that are configured for all device groups.
The email notification includes basic information about the alert and a link to the portal where you can do further investigation.
To confirm the process of creation on rules for alert notifications you can follow below article,
I have often seen the alerts get blocked before for people who had spam filters on their emails, so they should make sure to check their spam and junk sections. If possible, the receivers should also make sure that they allow the sender of azure-noreply@microsoft.com. If the users have any email security products, or if you have any conflicting email application rules, the alerts may also get blocked.
Additional Link: Tutorial: Create a policy using the Defender for Cloud Apps policy templates Support and troubleshooting Microsoft Defender for Cloud Apps,https://learn.microsoft.com/en-us/azure/defender-for-cloud/configure-email-notifications,
https://learn.microsoft.com/en-us/azure/defender-for-cloud/managing-and-responding-alerts
Hope this answer helps! Please let us know if you have any further queries. I’m happy to assist you further.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
