PlaybookName

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Content Index

author: Wayne Lee

Attribute	Value
Type	Playbook
Solution	GitHub Only
Source	View on GitHub

Logic App Connectors

This playbook uses 6 Logic App connectors / built-in actions:

Connector / Action	Type	Connections	Actions
`azuresentinel`	Managed	1	3
`keyvault`	Managed	1	1
`sharepointonline`	Managed	1	3
`wdatp`	Managed	1	1
`wordonlinebusiness`	Managed	1	2
`http`	Built-in	0	1

Action parameters (URLs, paths, function IDs)

`azuresentinel` (Managed)

Action	Method	Endpoint	Other
Alert_-_Get_hosts	post	`/entities/host`	—
Add_comment_to_incident_(V2)	put	`/Comment/@{encodeURIComponent(triggerBody()?['WorkspaceSubscriptionId'])}/@{encodeURIComponent(triggerBody()?['WorkspaceId'])}/@{encodeURIComponent(triggerBody()?['WorkspaceResourceGroup'])}/@{encodeURIComponent('Incident')}/@{encodeURIComponent(body('Alert_-_Get_incident')?['properties']?['CaseNumber'])}`	—
Alert_-_Get_incident	get	`/Cases/@{encodeURIComponent(triggerBody()?['SystemAlertId'])}/@{encodeURIComponent(triggerBody()?['WorkspaceSubscriptionId'])}/@{encodeURIComponent(triggerBody()?['WorkspaceId'])}/@{encodeURIComponent(triggerBody()?['WorkspaceResourceGroup'])}`	—

`keyvault` (Managed)

Action	Method	Endpoint	Other
Get_secret	get	`/secrets/@{encodeURIComponent('DefenderATP-VulnAlerts')}/value`	—

`sharepointonline` (Managed)

Action	Method	Endpoint	Other
Create_PDF	post	`/datasets//files`	—
Create_Word_Doc	post	`/datasets//files`	—
Create_sharing_link_for_a_file_or_folder	post	`/datasets//codeless/_api/v2.0/sites/root/lists//items/@{encodeURIComponent(encodeURIComponent(body('Create_PDF')?['ItemId']))}/driveItem/createLink`	—

`wdatp` (Managed)

Action	Method	Endpoint	Other
Machines_-_Get_list_of_machines	get	`/api/machines`	—

`wordonlinebusiness` (Managed)

Action	Method	Endpoint	Other
Convert_Word_Document_to_PDF	get	`/api/templates/convertFile`	—
Populate_Vulnerability_Report_template	post	`/api/templates/getFile`	—

`http` (Built-in)

Action	Method	Endpoint	Other
HTTP	GET	`https://api.securitycenter.windows.com/api/machines/@{items('For_each_MDATP_host')?['id']}/vulnerabilities`	—

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Playbooks