Microsoft Incidnet creation rule is not an option anymore in the pull down menu.
the two options are: scheduled alerts en de NRT rules , we miss anomaly fusion Microsoft security, machine learning Treat intelligence rules.
7-1-1 Sentinal analytics rule types missing (microsoft security type) despite we added in the content hub the microsoft defender XDR items
7-1-1-T1-8 the create rule button has no option: Microsoft Incident Creation rule
Assign to me is missing (step 7-1-3-T1, step 23)
7-1-4-T1 -10 is incomplete
7-1-4-T1 - 11/12 ,not correct (general settings for sentinel , settings tab)
7-1-4-T2 - 3, edit button not present on blade but via … menu to find behind the rule
may the reason behind this might be explained in below article:
Contact Details
siebren@kerkstra.info
What happened?
Microsoft Incidnet creation rule is not an option anymore in the pull down menu. the two options are: scheduled alerts en de NRT rules , we miss anomaly fusion Microsoft security, machine learning Treat intelligence rules.
7-1-1 Sentinal analytics rule types missing (microsoft security type) despite we added in the content hub the microsoft defender XDR items 7-1-1-T1-8 the create rule button has no option: Microsoft Incident Creation rule
Assign to me is missing (step 7-1-3-T1, step 23) 7-1-4-T1 -10 is incomplete 7-1-4-T1 - 11/12 ,not correct (general settings for sentinel , settings tab) 7-1-4-T2 - 3, edit button not present on blade but via … menu to find behind the rule
may the reason behind this might be explained in below article:
https://learn.microsoft.com/en-us/azure/sentinel/create-incidents-from-alerts
Lab
Lab 07 Exercise 01 Activate a Microsoft Security rule
Relevant screenshots
paste here 😉
Do you want to help us? 👏