Microsoft Azure Sentinel

Jason Nicholas · ‎06-20-2024

Hi

Not sure if this is the correct forum for this question. I have recently installed Azure Sentinel plugin and all related security plugins in or dev environment and have created an Azure account and set up the connection.

It has successfully created Security Incidents however I want to understand if it can be configured to create standard incidents rather than security ones.

Has anyone done this or does anyone know if it can be done

Jason

Mark Manders · ‎06-20-2024

Check on how they are currently created. I don't know the plugin myself, but you will have some kind of ruling/flow that creates the security incidents. Adjusting that to normal incidents shouldn't be that hard to do.

Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark