description | page_type | products | urlFragment | languages | |||
---|---|---|---|---|---|---|---|
This template allows you to create an Azure Security Center Automation which triggers an empty logic app, which will be triggered by any Security Center Alert |
sample |
|
securitycenter-create-automation-for-all-alerts |
|
This template deploys an Azure Security Center Automation for any of Azure Security Center's alerts. Automation is an Azure Resource which triggers a Logic App.
This is an overview of the solution
The following resources are deployed as part of the solution
The Microsoft.Logic Resource provider is used to create an empty triggerable Logic App.
- Logic App: An Empty triggerable Logic App
The Microsoft.Security Resource provider (Azure Security Center) is where the Automation which will trigger the logic app will be created.
- Automation: The Automation which will trigger the empty Logic App, upon receiving any Azure Security Center alert.
Users need to be registered to both Microsoft.Logic and Microsoft.Security resource providers to run this.
You can click the "deploy to Azure" button at the beginning of this document or follow the instructions for command line deployment using the scripts in the root of this repo.
Solution notes
Tags: Security, Security Center, LogicApps, Automations, Microsoft.Security/automations, Microsoft.Logic/workflows, request, object, string