Forum Discussion
Custom Alerts output in logic App
Hello, I have a created a custom alert to notify when there is a user added or deleted to Active Directories. This query list down the few values which I would like to use them in Logic APP to trigg...
What information is it you are looking for? When you click in the body of the Email, for example, you should be presented with a listing of dynamic content, some of which will come from the Alert trigger.
Hi GaryA
I have alert output like, the Active Directory name, User who is added/Removed to the AD . I want to add these details to a email body and send to required parties. I want to trigger this email via Logic App. But I am not Sure how the alert trigger data can be accessed via Logic App. Hope I am clear here.
Thanks
Raju
I have alert output like, the Active Directory name, User who is added/Removed to the AD . I want to add these details to a email body and send to required parties. I want to trigger this email via Logic App. But I am not Sure how the alert trigger data can be accessed via Logic App. Hope I am clear here.
Thanks
Raju
- Only those values that have been exposed as Entities will be available to be used. The other values are not accessible.
- Yes GaryA, I have exposed the values under Entities like AD group name, User added and Updated By. Can you please advise how they can be accessed in Logic Apps, an example will help here.
Thanks
Raju- In that case you can use the Azure Sentinel Entities action to get the different type of Entities (Accounts, FileHashes, Hosts, IPs, and URLs) to get the data. The information is stored as a JSON array, since you can have multiple entries in each, so you will need to parse the JSON after to get to the individual entry in each one.