Microsoft Security Tech Accelerator
Dec 06 2023, 07:00 AM - 12:00 PM (PST)
Microsoft Tech Community

Issues with Threat Intelligence Upload Indicators API (Preview)

Brass Contributor



Due to Threat Intelligence Platforms connector being deprecated, I'm moving on to the new Threat Intelligence Upload Indicators API (Preview). It installed alright, but I'm struggling with getting the logic app to POST to the new URI due to
{"error":{"code":"UploadIndicatorsValidationErrors","message":"Indicators array is required and cannot be empty. ","target":null,"additionalInfo":null}}


Same is happening even when I'm trying to post a sample request from the reference page:


Has anyone managed to get this to work?



2 Replies


I have the same issue, did you found a solution for that in the meantime? The array is present and exactly the same as from the reference page....

The solution is to write "indicators" instead of "value" in the request body, the documentation seems to be wrong, at least for the V2 (Preview) (preview) step ;)