Workflow for Advanced Threat Protection when a blob is scanned

Copper Contributor

Is it possible to create a logic app or function which is triggered each time Advanced Threat Protecton scans a blob for malware? I am aware of that ATP will create an alert in security center if the blob is detected as malware. However, it is hard to know if a blob has been scanned and not been flagged as malware. What i am looking for is a way to mark the blobs which have passed the malware scan done by ATP.  

 

Any idea\solution for achieving this under current ATP support?

1 Reply

@pit3445 Try reaching out to the Information Protection of Azure community here: https://www.yammer.com/askipteam/#/home

They should be able to answer your question!

 

Thanks,


Jason Cohen