Illumio Workload Quarantine Playbook
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
This playbook leverages Illumio workloads API to quarantine a workload based on user inputs. 
.
| Attribute | Value |
|---|---|
| Type | Playbook |
| Solution | IllumioSaaS |
| Source | View on GitHub |
Additional Documentation
📄 Source: Illumio-Quarantine-Workload/readme.md
Microsoft Sentinel Playbooks for Illumio Integration
Playbooks are collections of procedures that can be run from Microsoft Sentinel.
Quarantine Workload Playbook
- The logic app can be invoked as a http request.
- The payload should contain workload hostname/s and label/s.
- Function app is called with the above payload which makes a call to the PCE and applies labels to the workloads mentioned in payload.
To deploy, follow the below steps
Deploy the function app first
Deploy the logic app next:
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊