Best practices for Sentinel components Deployment

Copper Contributor

I'm working on configuring sentinel components such as playbooks, workbooks, Hunting, Alerting rules, connectors via the Azure DevOps CI/CD pipeline, but when I dig in deep, I am thinking that playbooks, workbooks, connectors need a long-lined specific schema/JSON format to update/add as artifacts 


so in this case I'd like to  seek some suggestions on best practices for Azure sentinel deployment 


via the portal UI or by pipelines?


0 Replies