Forum Discussion
graph api query sentinel CEF log
hi team, 1. i have CEF (Common Event Format) logs i collected in azure sentinel, i want to query CEF logs from graph.microsoft.com or Graph Security API 2. how can we create alert on every CEF ...
thanks for your answer
alerts created by analytics can be query in https://graph.microsoft.com/v1.0/security/alerts ?
where can i find samples on analytics rules to create alert per row ?
analytics rules run on schedule times it not triggered per row insert, when creating alert how can iterate each row?
haimmag While you cannot guarantee that each new row will generate its own Alert at this time, that functionality should be available very soon (Disclaimer: I don't work for MS so I am just going off of rumors)