How can we improve Microsoft Azure Security Center?

Does Security center playbook can be triggered automatically when any alert get fired?

I have explored security center playbook , but found that we need to trigger it manually. It will be great if we can map certain alert with playbook and when that alert is fired our playbook will be triggered automatically.

21 votes
Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)

We’ll send you updates on this idea

Tarun Shukla shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

3 comments

Sign in
(thinking…)
Sign in with: Microsoft
Signed in as (Sign out)
Submitting...
  • Alex Cole commented  ·   ·  Flag as inappropriate

    I don't understand why you don't have the option to make an automation job automatic.

  • JH commented  ·   ·  Flag as inappropriate

    I agree this would make this feature much more powerful. It should trigger on any alert and allow us to decide what happens with it in the Playbook. You could abviously achieve a similar result using an Azure Monitor Alert that triggers on Activity Log "Activate" events (per subscription) and run a LogicApp from an Action group, but it would make more sense to have this integrated in ASC.

Feedback and Knowledge Base