История

Lior Tamir 4fce63f980 Fix tags		2021-08-02 11:13:44 +03:00
..
images	Added Dark screenshots and metadata	2021-06-08 10:34:47 +01:00
README.md	Updating Deploy buttons and links part 2	2021-06-16 01:40:49 +00:00
azuredeploy.json	Fix tags	2021-08-02 11:13:44 +03:00

README.md

Send-basic-email

author: Benjamin Kovacevic

This playbook will be sending email with basic incidents details (Incident title, severity, tactics, link,…) when incident is created in Azure Sentinel.

Pre-requisites:

An O365 account to be used to send email notification (The user account will be used in O365 connector (Send an email).)

Deployment:

Post-deployment

Configure connections

Edit the Logic App or go to Logic app designer.
Expand “Send an email with Incident details” and fix this connector by adding a new connection or signing-in to marked one with user that has mailbox.
Note: Email sent with this playbook will be from user that creates connection!

Attach the playbook

After deployment, attach this playbook to an automation rule so it runs when the incident is created. Learn more about automation rules
Note: Playbook is disabled by default. Please enable it before assigning to the Automation rule!