Deploying Microsoft Sentinel Analytic Rules with Azure DevOps

Подписаться 1,3 тыс.

Просмотров 4,8 тыс.

50% 1

Deploying Azure Sentinel Analytic Rules with Azure DevOps
--------------------------------------------------------------------------------------------------
🔔 Subscribe and ring the bell to get notified when I post a video!
🔴 Check out my blog 🔴
craigclouditpro.wordpress.com/
🔥Social Media's 🔥
🐥 Twitter: / craigclouditpro
📸 Instagram: / craigclouditpro
💻 Javier's Github: github.com/javiersoriano/sent...
💻 MSFT Community: techcommunity.microsoft.com/t...
🎵Outro music on the video by Spojaz
Using ARM Templates Powershell and JSON within a YAML Pipeline

Опубликовано:

13 июл 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 25

@antoneandrade5358 2 года назад

Dude, you have no idea how much you've helped me by making this video. Preciecly what I have been asked to do as a project at work. Thank you so much!

@CraigCloudITPro 2 года назад

I’m glad I could help Antone :) thanks for watching, I hope you subscribed and told your friends :-D

@miteshc1 3 года назад

Dude ! Great job Craig... you are right that got JUICY very quickly... This is the level of detail and demo quality people need ! Really awesome if that is your first one !!

@CraigCloudITPro 3 года назад

Thank you Mitesh

@yaya2devops Год назад

That intro bro!

@CraigCloudITPro Год назад

Thank you man

@andrewwhite4901 3 года назад

Liked and subscribed baby. Keep up the good work.

@CraigCloudITPro 3 года назад

Thanks Andrew :)

@JuanCarlos-xl5pn 3 года назад

Nice video , excellent

@rohit06232 3 года назад

Great job dude.. please do make more such videos regarding Sentinel as code..

@CraigCloudITPro 3 года назад

I will do Rohit ;)

@yaya2devops Год назад

what if i'm having a bunch of yaml files for each rule instead of a single JSON for all

@dudishosh 3 года назад

Hi, is this require also creating Service Connection as was mentioned in Javier's guide? Otherwise how the connection was authenticated from the Devops project to the Sentinel environments?

@CraigCloudITPro 3 года назад

Absolutely, creating an SPN and granting access to multiple Subs will give you the ability to deploy to multiple environments, if you add the SPN at management group level :)

@dudishosh 3 года назад

@@CraigCloudITPro So after creating the SPN and service connection, should I add to the yaml file the azureSubscription:'' ?

@CraigCloudITPro 3 года назад

Yes that is correct :)

@rohit06232 3 года назад

I have one question.. in visual studio code which azure extension need to be installed to import export analytical rules..?

@CraigCloudITPro 3 года назад

Hi mate thank you :) you will need the wortell AZSentinel PowerShell module for using the Sentinel cmdlets

@rohit06232 3 года назад

@@CraigCloudITPro thanks

@iambest7666 3 года назад

Thanks for the video.. I tried as you have shown in video.. but at deploy analytical rule stage I am getting error as "D:/a/1/s/sentinelascode-master/Scripts/....." is not recognized as cmlet... I checked spelling but everything ia good... Please help..thanks in advance

@CraigCloudITPro 3 года назад

Hey Iam, can you provide me abit more information on the error you got ? That's a pretty generic error, can you confirm that you've got the Sentinel modules being installed at the start of the script