Forum Discussion

Luizao_f's avatar
Luizao_f
Brass Contributor
Dec 01, 2020

Close MCAS alert via API

Good afternoon people. I am drawing a flow in the Logic App to close the alert in MCAS. I have little experience with API and would like to get help. I was using the API call via the path [ [XXXX....
Luizao_f's avatar
Luizao_f
Brass Contributor
Dec 04, 2020

Pranesh1060 
Very good. I tested your process and it worked correctly. Thank you. Show.

My second step is to close open incidents in Defender ATP. Do you have something like that? Are you ending incidents on another technology through the Logic App?

Ofer_Shezaf's avatar
Ofer_Shezaf
Icon for Microsoft rankMicrosoft
Dec 06, 2020

Luizao_f , Pranesh1060 : note that incident synchronizatoin with all Microsoft 365 defender sources is already in private preview.

  • Luizao_f's avatar
    Luizao_f
    Brass Contributor
    Dec 07, 2020

    Ofer_Shezaf 

    Is this reverse closure mentioned above about Micrososft 365 Security Center (https://security.microsoft.com)? I use Azure Sentinel as a centralizer, so I am trying to create integrations for the reserve closure.

Resources