Comments (26)
Hi @TomJanetscheck , thanks for your respond. I have deployed Send-SecureScoreBriefing LogicApp, which connect to the existing workspace to get the result. Thanks.
from microsoft-defender-for-cloud.
Hi @famjunxiang, Uploaded the ARM template that you can use with existing Log Analytics Workspace. Thank you.
from microsoft-defender-for-cloud.
Hi @famjunxiang,
you can already use the existing workspace by manually changing the connections within the LogicApp. However, the LogicApp will create another Customer Log (dailyAscScore_CL) within that workspace. Today, we do not have a LogicApp that connects and uses data from the existing tables. Adding @safeenab786 as the code owner to see if she can provide another ARM Template which will connect to the existing workspace instead of creating a new one.
from microsoft-defender-for-cloud.
Hi @TomJanetscheck , Good day to you, may i know the ETA for this enhancement?
Thanks.
from microsoft-defender-for-cloud.
Hi @famjunxiang,
adding @safeenab786 who is currently working on this enhancement to reply with an ETA.
from microsoft-defender-for-cloud.
Closing this issue as a solution was provided with PR #175 .
from microsoft-defender-for-cloud.
Hi @safeenab786, i hit error at Append to string variable
InvalidTemplate. Unable to process template language expressions in action 'Append_to_string_variable' inputs at line '1' and column '3354': 'The template language function 'substring' parameters are out of range: 'start index' and 'length' must be non-negative integers and their sum must be no larger than the length of the string. Please see https://aka.ms/logicexpressions#substring for usage details.'.
from microsoft-defender-for-cloud.
@famjunxiang Hello, what is the secure score at the moment in the subscription that you're deploying this template on?
from microsoft-defender-for-cloud.
@safeenab786 i have 23 subscription at the moment, each subscription have different score. and I have assigned managed identity reader role for the Send-SecureScoreReductionAlert at the root management group.
from microsoft-defender-for-cloud.
Reopening due to errors during LogicApp run.
from microsoft-defender-for-cloud.
@famjunxiang - I could reproduce the behavior you mentioned above in my environment with subscriptions that have a Secure Score of 0, which should not apply to productive environments. In that case, the substring function does not work correctly. In case you have subscriptions with a Secure Score of 0, could you please remove the role assignment from the management group and then re-create it on all subscriptions with a Secure Score > 0 for testing?
from microsoft-defender-for-cloud.
Hi, @TomJanetscheck, i try run the query at the failed subscription, found out the subscription with Secure Score is 100 not 0
from microsoft-defender-for-cloud.
Hi @safeenab786, any feedback for the report bug? Thanks.
from microsoft-defender-for-cloud.
Hi @famjunxiang Please help me understand, the secure score in all the subscriptions you're trying this automation on is >single digit or >0%?
I'm using the substring here is to minimize the characters that it shows in the output (email) and if it finds 0 as the secure score, it errors out at the Append to String. This is not a bug, and it is by design.
from microsoft-defender-for-cloud.
Hi @safeenab786, we have subscriptions that disabled, so the secure score is 0. And we have subscription with 100 secure score, 3 digit and it will hit the error as well.
from microsoft-defender-for-cloud.
Hi @famjunxiang Kindly run the script against those subscriptions that has a score to display. Please don't combine the subscriptions with 0 score and the ones with a score. Let me know how it goes.
from microsoft-defender-for-cloud.
Hi @safeenab786 , I have assigned the reader role for the logic app at the root management group, it will run the script against all subscriptions. This is to ensure new subscription is covered as well. Thanks,
from microsoft-defender-for-cloud.
Hi @safeenab786 , any feedback from your end? Thanks
from microsoft-defender-for-cloud.
Hi @famjunxiang Thanks for the confirmation. I'm working on it, I hope to get back to you soon.
from microsoft-defender-for-cloud.
Hi @safeenab786 , thanks for your feedback.
from microsoft-defender-for-cloud.
Hi @safeenab786 , may i know the new merged is it the fix? Thanks.
from microsoft-defender-for-cloud.
Hi @famjunxiang Yes it is. Request you to try it out and let us know your feedback. Thank you.
from microsoft-defender-for-cloud.
Hi @safeenab786 , best to remove everything and redeploy? or ?
from microsoft-defender-for-cloud.
Hi @famjunxiang I've made modifications in the code, yes please redeploy with the new template.
from microsoft-defender-for-cloud.
Hi @safeenab786 Good day to you.
It currently hit error at the subscription that already disable under Logic App>HTTP
{
"Error": {
"Code": "ResourceNotFound",
"Message": "Secure score 'ascScore' does not exist in scope 'XXX-XXXX-XXXX-XXXX'"
}
}
from microsoft-defender-for-cloud.
This issue is closed and therefore no longer monitored. Please create a new issue using our Bug report template.
from microsoft-defender-for-cloud.
Related Issues (20)
- Security Center REST API Endpoint missing
- Reproduce behaviour HOT 1
- Alternative HOT 1
- Permission and Variables HOT 1
- New-ASCVASolution.ps1 Rapid 7 Insight Agent BYOL deployment confusion HOT 2
- Defender for Cloud Environment settings, "Workload protections" views report incorrect resource coverage HOT 1
- this is the official domain for the website and email for teachers and students in the public sector of Kuwait ministry of education: moe.edu.kw
- https://learn.microsoft.com/ar-sa/users/12771345/
- D4Storage-PricingEstimation-Per-Storage.ps1 requires az.Storage HOT 1
- Instructions are outdated and should be updated
- Inconsistent CSV Export Log CSV HOT 1
- Support form link doesn't exist anymore
- Missing Images
- Line 47 provides error of "unexpected token" HOT 1
- Cannot Connect Subscription Based Sentinel Connector for MDC
- ARM Template Issue
- Subscription Not Found (HTTP - Get Azure VM) HOT 2
- ImageScanSummaryAssessmentGate.ps1 no longer finds assessments HOT 2
- CVE Dashboard- old version HOT 2
- Connection Error while accessing Microsoft Defender for Cloud HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from microsoft-defender-for-cloud.