Apr 24 2020 04:14 AM - edited Apr 24 2020 04:16 AM
Hi,
Anyone successfully implement Posting to Teams Channel Playbook i am running in some issues and the default does not seem to work when i attach it to a rule analytics https://github.com/Azure/Azure-Sentinel/tree/master/Playbooks/Post-Message-Teams
Thanks in advance
Apr 24 2020 06:24 AM - edited Apr 24 2020 06:25 AM
I manage to get it through by deleting the for each function and add just post to teams at the end of the Logic App Designer in case anyone needs it
Apr 24 2020 06:46 AM
@akefallonitis I just tried to deploy it, and I also have errors. I just noticed you figured this out. I post my answer anyway, maybe it'll help someone.
If you're interested in deploying this playbook without using a template, you can create a simple Logic App as shown on this picture, fill the necessary fields and associate the Logic App to an analytic rule in Sentinel.