Forum Discussion
Sentinel as Code - Api COnnections
Hello, I have several JSON templates for Playbooks and Logic apps. I can deploy them successfully with any issues. However, I have to manually authorize API connections used in Sentinel Playbook....
What API connectors are you looking into?
You can create them through an ARM template:
https://github.com/Azure/Azure-Sentinel/blob/master/Playbooks/Close-Incident-ASCAlert/azuredeploy.json
But OAuth API connections that utilize username/passwords require you to authorize user interaction
What connection are you looking into automating?
Happy to look into these with you as I have researched this quite a bit
You can create them through an ARM template:
https://github.com/Azure/Azure-Sentinel/blob/master/Playbooks/Close-Incident-ASCAlert/azuredeploy.json
But OAuth API connections that utilize username/passwords require you to authorize user interaction
What connection are you looking into automating?
Happy to look into these with you as I have researched this quite a bit
Thijs Lecomte Do you have a walkthrough for creating a playbook template?
I know there are some instructions here:
But a walkthrough or video example would greatly help.
- Rod_Trent
Microsoft
I don't know offhand, but there's been some discussion about this internally. This may be something we need to put together, or supply some better context on how to accomplish the templatizing.
