Scheduled Rules Overview - Document Details

About This Page

This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.

View on GitHub 📚 View on Microsoft Learn

Bias Analysis

Detected Bias Types

windows_first

powershell_heavy

missing_linux_example

Summary

The documentation page for scheduled analytics rules in Microsoft Sentinel demonstrates a Windows bias primarily in the 'Next steps' section, where automation is described via API and PowerShell, with PowerShell mentioned explicitly and no Linux-native equivalents (such as Bash, shell scripts, or CLI tools) provided. There are no examples or references to Linux tools or workflows, and the only automation scripting language referenced is PowerShell, which is traditionally associated with Windows environments. No Linux-specific instructions, examples, or parity is offered for users who may be managing Sentinel from Linux systems.

Recommendations

Include examples of automating rule enablement using Azure CLI (az), which is cross-platform and commonly used on Linux.
Provide sample Bash or shell scripts for exporting/importing rules, alongside PowerShell examples.
Mention that PowerShell Core is available on Linux, but also offer instructions for users who prefer native Linux tools.
Reference Linux-compatible tools and workflows (e.g., curl for API calls, jq for JSON processing) in automation sections.
Ensure that scripting and automation instructions are presented in a platform-neutral way, or provide both Windows and Linux examples side-by-side.

Create Pull Request

Scan History

Date	Scan	Status	Result
2026-01-14 00:00	#250	in_progress	Biased
2026-01-13 00:00	#246	completed	Biased
2026-01-11 00:00	#240	completed	Biased
2026-01-10 00:00	#237	completed	Biased
2026-01-09 00:34	#234	completed	Biased
2026-01-08 00:53	#231	completed	Biased
2026-01-06 18:15	#225	cancelled	Clean
2025-08-17 00:01	#83	cancelled	Clean
2025-07-13 21:37	#48	completed	Clean
2025-07-12 23:44	#41	cancelled	Biased