azure azure-functions azure-automation azure-security

Close Azure Security Center Alerts automatically

Are there any way to close Azure security center alerts automatically? Like via a PowerShell script or something?

We are creating alerts in the new sentinel siem from security center, what we want is to close the cases on both, sentinel as well as security center.

For sentinel cases you can close automatically via logic apps, however the same feature on logic apps do no exist for Azure security center.

Regards, Kelly

Solution

As you are closing the alerts for sentinel via logic apps,similarly Azure Security center uses security playbooks which are based on logic apps. For more information related to Security playbooks, please refer this article.

MS Graph API - How to query additional pages
how to hash users into random values in azure databricks
How can I manage Azure SQL user/login/credentials
How to connect secrets value stored in Azure key vault to Azure app service env variables directly
AVD Insights Host Performance Blade Empty after vhange to new Azure Monitoring Agent
How to get a list of users from azure graph API
Azure App Service Flask Deployment Error: "Failed to Respond to HTTP Pings on Port 8000; Site Start Failed. Check Container Logs for Debugging."
Azure Function App - No continuous deployment setting for "Flex Consumption" hosting plan?
Az-GetRoleAssigments Not returning Data for DisplayName, SignInName & Object Type - Azure Powershell Runbook
Can you publish a new standalone Angular project (esproj) directly from VS2022 to Azure?
Cors configuration
Publish error: Found multiple publish output files with the same relative path
remove event subscriptions from system topics
node-fetch azure document translator
Is it possible to use .env in a React Web project?
Sign in to Azure Account from VS Code
How to copy blobs from azure to aws using python?
AKV10032: Invalid issuer error when connecting to Azure Key Vault from App Service
how to mask hash users into random values [email protected] in azure databricks
Can we use PostgREST API with Azure
Bicep adding DNS Records saying already exists when it doesn't
Issue in sending personal message in MS Teams with Graph API
import files to databricks workspace
Create an Api connection to log analytics workspace via bicep
az funcapp publish .net8 Isolated breaking Azure configuration runtime settings on Sync
Is there a way to get more than 1000 Packages and versions from Azure DEVOPs Feed RESTAPI for GET Packages?
how to insert json into cosmos db collection using c#
How to grant a Managed Identity permissions to an Azure SQL Database using IaC?
How to connect Azure Postgre Server to Google Looker Studio
Azure SignalR: None of the transports supported by the client are supported by the server