Azure-Sentinel 11302022 as incident response approval email

Change(s): New Playbook

Reason for Change(s): New Playbook

Testing Completed: Yes

Dec 02 '22 05:12 AcceleryntSecurityDev

Hi,

The name of the playbook may be too general - incident response approval email may be relevant to multiple scenarios.
Why is Key Vault required? Can managed identity replace it?

Dec 04 '22 07:12 lior-tamir

@manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Dec 07 '22 04:12 v-spadarthi

@lior-tamir

I will update the playbook name.
The key vault is used to store the client secret of the app registration used for http callouts to the graph api- there is not a connector for this, so managed identity cannot be used.

Dec 07 '22 23:12 AcceleryntSecurityDev

@manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Dec 13 '22 06:12 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Dec 15 '22 05:12 v-mchatla

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Dec 21 '22 04:12 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Dec 23 '22 04:12 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks @manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Dec 28 '22 04:12 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks @manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Dec 29 '22 09:12 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks @manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Jan 03 '23 09:01 v-spadarthi

Hi @lior-tamir, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks @manishkumar1991 / @rahul0216 : Please have a look and provide your feedback. Thanks!

Jan 06 '23 04:01 v-spadarthi

Hi @lior-tamir, waiting for your response for author's comment. Thanks

Jan 11 '23 04:01 v-atulyadav

Hi @lior-tamir, @manishkumar1991, @rahul0216, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Jan 13 '23 04:01 v-mchatla

Hi @lior-tamir, @manishkumar1991, @rahul0216, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Jan 20 '23 05:01 v-mchatla

Hi @lior-tamir, @manishkumar1991, @rahul0216, Can you please review the comments from author and suggest if there is any alternate to this approach. Thanks

Jan 27 '23 04:01 v-atulyadav

Hi @manishkumar1991, @rahul0216, Can you please go through the authors comments and suggest if there is feasibility to use managed identity. Thanks

Feb 01 '23 05:02 v-mchatla

Hi @manishkumar1991, @rahul0216, Can you please go through the authors comments and suggest if there is feasibility to use managed identity. Thanks

I will review it , please allow some time

Feb 02 '23 10:02 manishkumar1991

Hi @AcceleryntSecurityDev, Could you please address the Rahul's comments. Thanks

Feb 08 '23 04:02 v-mchatla

@AcceleryntSecurityDev Please share screenshot of successful run of the playbook as well.

Feb 08 '23 10:02 rahul0216

Azure-Sentinel Azure-Sentinel copied to clipboard

11302022 as incident response approval email

Azure-Sentinel
Azure-Sentinel copied to clipboard