Forum Discussion
Adding playbooks to Microsoft Security out-of-the-box alert rule templates
Hi all, I am trying to find a way to attach a playbook to the default Microsoft Security alert rules in Azure Sentinel. I am referring to the rules that automatically create Azure Sentinel incidents...
Ofer_Shezaf
Microsoft
Microsoftpemontto : the feature is currently in private preview.
Ofer_Shezaf Do you have an update on the progress for this feature ?
Thanks
- Ofer_Shezaf
Manvie : still in private preview, I hope we are getting closer to going public. We made major changes based on private preview input.
Ofer_Shezaf any update on this please?
Asaad_Moosa Azure Sentinel Automation is available to everyone. You can create a playbook that uses the Azure Sentinel incident trigger and then create an automation rule that can be run when the rule creates an incident.
https://docs.microsoft.com/en-us/azure/sentinel/automate-incident-handling-with-automation-rules
