A live view of Microsoft Sentinel incidents directly in Microsoft Teams? Its possible and as I’ve implemented this a few times recently, I wanted to share my solution with the community.
Thanks. :) Pulling from Defender/XDR portal is just as possible, but not with this solution. It needs a reworked Logic App that uses scheduling/recurrence trigger and connects to Graph to get the incident data, instead of using the Sentinel incident trigger.
this is really good. Can I pull incidents from the Defender Portal?
Thanks. :) Pulling from Defender/XDR portal is just as possible, but not with this solution. It needs a reworked Logic App that uses scheduling/recurrence trigger and connects to Graph to get the incident data, instead of using the Sentinel incident trigger.
everything is done except role assignment, can you please help us?
Sorry for the delay. Which role assignment is the problem (Teams or Azure)?
Hi sorry for the delay from my side as well. I am getting error 404 in run history for the SharePoint URL linked
Hi, I am facing problem in deploying