all DevOps news
Azure Sentinel getting account from AAD group query
Hello everyone, Im in the process of setting up a automatic watchlist update for sentinel. Where whenever a AAD User is added to a specific AAD group, the given users data will be put into a sentinel watchlist. (Like in picture 1)
The way I have set it up at the moment is that the alert rule triggers on whenever a user is added to the given AAD group it pulls the log file.
That's all well and good but the log file that is pulled, mainly inlcludes …!-->