Mar 03 2023 07:28 AM
Hello Community !
I have a set of playbooks to run automatically when an incident is created - using "When Azure Sentinel incident creation rule was triggered" or "Microsoft Sentinel incident" triggers.
So far it's been working well without issues, until today.
In my case, im creating incident based on this API : https://learn.microsoft.com/en-us/rest/api/securityinsights/preview/incidents/create-or-update?tabs=...
Inside the logic app page for the playbook, there is no errors that appear !
It just seems like the logic app just doesn't fire.
However, I can run it manually, by selecting my incident, then "Run playbook".
Thank you for your help
Mar 03 2023 08:49 AM