Mar 01 2019 09:34 AM
Where can I find docs to query new alerts and cases and interact with then in Azure Sentinel.
Jul 09 2021 05:00 PM
@dinvlad I don't see anything about creating alerts, only incidents. Is there a reason you would rather create an alert?
Jul 10 2021 02:04 PM
@Gary Bushey tbh I'm just looking for a way to "import" alerts, recommendations, findings, security score and compliance reports from Event Hub into either Security Center or Sentinel (I don't really care which one). So far there appears to be no way to do it from what I can tell, other than maybe through Sentinel incidents like you noted. Any other ideas here? Thanks
Jul 12 2021 03:27 AM
@dinvlad The only thing that comes to mind is to create a Logic App that reads the Event Hub and uses the Azure Monitor action to write an entry to a custom log in Azure Sentinel.