What action is required to create cases in the Case dashboard?

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft SC-900 Exam. Master key concepts with targeted flashcards and multiple-choice questions, featuring hints and explanations. Get prepared and confident for success!

Creating cases in the Case dashboard primarily involves the investigation phase. This action is fundamental to the process because it allows users to thoroughly analyze incidents or alerts that have been detected within a system. During investigation, relevant evidence and context are gathered, which informs the creation of a case. This is where users assess the situation, identify affected resources, and determine the necessary responses.

Effective investigation leads to well-documented cases that can be assigned for further action, escalation, or resolution. Consequently, without conducting an investigation, the necessary details for a case would be missing, making it challenging to understand the situation or take appropriate measures.

The other options pertain to stages of incident management but are not specifically tied to the initial action of creating a case in the dashboard. Triage focuses on prioritizing incidents, while reviewing involves looking over data post-investigation. Thus, investigation is the correct foundational step necessary for case creation.