Skip to content

Commit 54b3366

Browse files
prmerger-automator[bot]prmerger-automator[bot]
authored
Merge pull request #260111 from guywi-ms/patch-77
Update daily-cap.md
2 parents 8e3afc7 + 9901a83 commit 54b3366

1 file changed

Lines changed: 4 additions & 4 deletions

File tree

articles/azure-monitor/logs/daily-cap.md

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -58,12 +58,12 @@ To help you determine an appropriate daily cap for your workspace, see [Azure M
5858
## Workspaces with Microsoft Defender for Cloud
5959

6060
> [!IMPORTANT]
61-
> Starting September 18, 2023, the Log Analytics Daily Cap all billable data types will
62-
> be capped if the daily cap is met, and there is no special behavior for any data types when [Microsoft Defender for Servers](../../defender-for-cloud/plan-defender-for-servers-select-plan.md) is enabled on your workspace.
61+
> Starting September 18, 2023, Azure Monitor caps all billable data types
62+
> when the daily cap is met. There is no special behavior for any data types when [Microsoft Defender for Servers](../../defender-for-cloud/plan-defender-for-servers-select-plan.md) is enabled on your workspace.
6363
> This change improves your ability to fully contain costs from higher-than-expected data ingestion.
64-
> If you have a Daily Cap set on your workspace which has Microsoft Defender for Servers,
64+
> If you have a daily cap set on a workspace that has Microsoft Defender for Servers enabled,
6565
> be sure that the cap is high enough to accommodate this change.
66-
> Also, be sure to set an alert (see below) so that you are notified as soon as your Daily Cap is met.
66+
> Also, be sure to set an alert (see below) so that you are notified as soon as your daily cap is met.
6767
6868
Until September 18, 2023, if a workspace enabled the [Microsoft Defenders for Servers](../../defender-for-cloud/plan-defender-for-servers-select-plan.md) solution after June 19, 2017, some security related data types are collected for Microsoft Defender for Cloud or Microsoft Sentinel despite any daily cap configured. The following data types will be subject to this special exception from the daily cap WindowsEvent, SecurityAlert, SecurityBaseline, SecurityBaselineSummary, SecurityDetection, SecurityEvent, WindowsFirewall, MaliciousIPCommunication, LinuxAuditLog, SysmonEvent, ProtectionStatus, Update, UpdateSummary, CommonSecurityLog and Syslog
6969

0 commit comments

Comments
 (0)