Update azuredeploy.json

2024-03-06 12:36:55 -08:00 · 2024-03-06 12:36:55 -08:00 · a15ef34359
--- a/Playbooks/AS-MDE-Unisolate-Machine/azuredeploy.json
+++ b/Playbooks/AS-MDE-Unisolate-Machine/azuredeploy.json
@ -4,6 +4,7 @@
    "metadata": {
        "title": "AS-MDE-Unisolate-Machine", 
        "description": "This playbook is intended to be run from a Microsoft Sentinel Incident. It will match Microsoft Defender for Endpoint isolated machines with the host entities on the incident and then reslease them from isolation.",
+        "postDeployment": "1. Microsoft Contributor Role must be added to the Logic App. 2. Access to Azure Key Vault Secrets must be granted.",
        "prerequisites": "1. An App Registraton with the Machine.Isolate must be created. 2. A Microsoft Azure key vault containing the app registration client secret must also be set up. Support for the set up and configuration of each of these items can be found here: https://github.com/Accelerynt-Security/AS-MDE-Unisolate-Machine",
        "lastUpdateTime": "2024-02-08T14:29:33Z",
        "entities": ["Host"],