Forum Discussion
Defender ATP into Sentinel and then SNOW
Hi all I am wanting to move Defender ATP (and other microsoft stack) alerts / incidents into Sentinel (which is easily achieved) and from here move them out into SNOW - what is the current thinking...
Adding to what Gary already said.
We do the same, but with JIRA. It is possible; but not for incidents.
Currently Sentinel will only ingest alerts, not incidents.
It works through Seninel, but it's not ideal
We do the same, but with JIRA. It is possible; but not for incidents.
Currently Sentinel will only ingest alerts, not incidents.
It works through Seninel, but it's not ideal
Thijs Lecomte thanks for the heads up ... a work in progress lets say
