Azure Sentinel API release to GA!

%3CLINGO-SUB%20id%3D%22lingo-sub-1509996%22%20slang%3D%22en-US%22%3EAzure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1509996%22%20slang%3D%22en-US%22%3E%3CTABLE%20style%3D%22border-style%3A%20hidden%3B%20width%3A%20100%25%3B%22%20border%3D%221%22%20width%3D%22100%25%22%3E%0A%3CTBODY%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22100%25%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22httspdatacollector.PNG%22%20style%3D%22width%3A%20799px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F204213iFCBC7D7B5D500E7B%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20title%3D%22httspdatacollector.PNG%22%20alt%3D%22httspdatacollector.PNG%22%20%2F%3E%3C%2FSPAN%3E%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22100%25%22%3E%3CP%3EAPI%20was%20one%20the%20main%20ask%20from%20our%20customers%20and%20MSSPs%2C%20and%20automating%20their%20scenarios%20in%20Azure%20Sentinel.%20We%20have%20gathered%20feedback%20from%20our%20customers%20to%20improve%20our%20APIs%20before%20releasing%20them%20to%20GA%2C%20and%20now%20we%20are%20happy%20to%20share%20that%20our%20APIs%20are%20released%20to%20General%20Availability.%20This%20is%20our%20first%20step%20for%20our%20APIs%20as%20we%20still%20need%20to%20invest%20in%20documenting%20and%20adding%20real-life%20samples%20to%20our%20customers.%20Here%20is%20a%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-sentinel%2Fazure-sentinel-api-101%2Fba-p%2F1438928%22%20target%3D%22_blank%22%3Eblog%20covering%20APIs%20101%3C%2FA%3E.%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3C%2FTBODY%3E%0A%3C%2FTABLE%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1509996%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAPI%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EAzure%20Sentinel%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ega%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1511595%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1511595%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F293935%22%20target%3D%22_blank%22%3E%40Valon_Kolica%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20know%20it%20would%20be%20technically%20difficult%20and%20time%20consuming%20to%20implement%20but%20it%20would%20have%20been%20nice%20to%20have%20something%20like%20drag%20and%20drop%20and%20flow%20builder%20so%20we%20drag%20and%20drop%20and%20like%20flowchart%20create%20rules%20too.%20Something%20similar%20to%20Microsoft%20Power%20Automate%20for%20Azure%20Sentinel.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1511802%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1511802%22%20slang%3D%22en-US%22%3ELogic%20App%20-%20is%20the%20same%20engine%20as%20Power%20Automate%2C%20but%20looks%20at%20Azure%20and%203rd%20party%20connectors.%20Open%20it%20and%20take%20a%20look%2C%20it%20looks%20very%20similar%20but%20has%20other%20connectivity%20options.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1515135%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1515135%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F239477%22%20target%3D%22_blank%22%3E%40Clive%20Watson%3C%2FA%3E%26nbsp%3Bfor%20sharing%20about%26nbsp%3B%3CSTRONG%3ELogic%20App%3C%2FSTRONG%3E.%3C%2FP%3E%3CP%3EMay%20be%20this%20should%20be%20integrate%20directory%20to%20Azure%20Sentinel%20too.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1515164%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1515164%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F13441%22%20target%3D%22_blank%22%3E%40Reza%20Ameri%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ELogic%20App%20is%20integrated%20in%20the%20Azure%20Sentinel%20User%20Interface%20-%20its%20the%20%3CSTRONG%3EPlaybooks%3C%2FSTRONG%3E%20blade.%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Annotation%202020-07-10%20190735.jpg%22%20style%3D%22width%3A%20438px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F204652i7BD94BE10E5DA636%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20title%3D%22Annotation%202020-07-10%20190735.jpg%22%20alt%3D%22Annotation%202020-07-10%20190735.jpg%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1516293%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20API%20release%20to%20GA!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1516293%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F239477%22%20target%3D%22_blank%22%3E%40Clive%20Watson%3C%2FA%3E%26nbsp%3Bfor%20sharing.%3C%2FP%3E%3CP%3EThis%20is%20great.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Microsoft
httspdatacollector.PNG

API was one the main ask from our customers and MSSPs, and automating their scenarios in Azure Sentinel. We have gathered feedback from our customers to improve our APIs before releasing them to GA, and now we are happy to share that our APIs are released to General Availability. This is our first step for our APIs as we still need to invest in documenting and adding real-life samples to our customers. Here is a blog covering APIs 101.

5 Replies

@Valon_Kolica 

I know it would be technically difficult and time consuming to implement but it would have been nice to have something like drag and drop and flow builder so we drag and drop and like flowchart create rules too. Something similar to Microsoft Power Automate for Azure Sentinel.

Logic App - is the same engine as Power Automate, but looks at Azure and 3rd party connectors. Open it and take a look, it looks very similar but has other connectivity options.

Thank you @CliveWatson for sharing about Logic App.

May be this should be integrate directory to Azure Sentinel too.

@Reza_Ameri-Archived 

 

Logic App is integrated in the Azure Sentinel User Interface - its the Playbooks blade.Annotation 2020-07-10 190735.jpg

Thank you@CliveWatson for sharing.

This is great.