Merge pull request #9082 from Azure/v-sabiraj-insiderriskmanagement2

Updated text Azure Sentinel to Microsoft Sentinel
Azure · Sep 25, 2023 · de86ed2 · de86ed2
2 parents d8d82e4 + 4169ee1
commit de86ed2
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/Solutions/MicrosoftPurviewInsiderRiskManagement/Package/3.0.1.zip b/Solutions/MicrosoftPurviewInsiderRiskManagement/Package/3.0.1.zip
diff --git a/Solutions/MicrosoftPurviewInsiderRiskManagement/Package/mainTemplate.json b/Solutions/MicrosoftPurviewInsiderRiskManagement/Package/mainTemplate.json
@@ -975,7 +975,7 @@
                           "type": "ApiConnection",
                           "inputs": {
                             "body": {
-                              "messageBody": "<p>Insider Risk Team,<br>\n<br>\nAn Insider Risk Management Alert was observed per the details below:<br>\n<br>\nSeverity of Alert: @{items('For_each')?['properties']?['severity']}<br>\n<br>\n<u><strong>Azure Sentinel Incident</strong></u><br>\nTItle: @{triggerBody()?['object']?['properties']?['title']}<br>\nStatus: @{triggerBody()?['object']?['properties']?['status']}<br>\nNumber: @{triggerBody()?['object']?['properties']?['incidentNumber']}<br>\nCreated Time (UTC): @{triggerBody()?['object']?['properties']?['createdTimeUtc']}<br>\nIncident Link: &nbsp;@{triggerBody()?['object']?['properties']?['incidentUrl']}<br>\n<br>\n<u><strong>Alert Details</strong></u><br>\nAlert Display Name: @{items('For_each')?['properties']?['alertDisplayName']}<br>\nAlert Type: @{items('For_each')?['properties']?['alertType']}<br>\nSubscription ID: @{triggerBody()?['workspaceInfo']?['SubscriptionId']}<br>\nProvider Alert ID: @{items('For_each')?['properties']?['providerAlertId']}<br>\nAlert Link: @{items('For_each')?['properties']?['alertLink']}</p>",
+                              "messageBody": "<p>Insider Risk Team,<br>\n<br>\nAn Insider Risk Management Alert was observed per the details below:<br>\n<br>\nSeverity of Alert: @{items('For_each')?['properties']?['severity']}<br>\n<br>\n<u><strong>Microsoft Sentinel Incident</strong></u><br>\nTItle: @{triggerBody()?['object']?['properties']?['title']}<br>\nStatus: @{triggerBody()?['object']?['properties']?['status']}<br>\nNumber: @{triggerBody()?['object']?['properties']?['incidentNumber']}<br>\nCreated Time (UTC): @{triggerBody()?['object']?['properties']?['createdTimeUtc']}<br>\nIncident Link: &nbsp;@{triggerBody()?['object']?['properties']?['incidentUrl']}<br>\n<br>\n<u><strong>Alert Details</strong></u><br>\nAlert Display Name: @{items('For_each')?['properties']?['alertDisplayName']}<br>\nAlert Type: @{items('For_each')?['properties']?['alertType']}<br>\nSubscription ID: @{triggerBody()?['workspaceInfo']?['SubscriptionId']}<br>\nProvider Alert ID: @{items('For_each')?['properties']?['providerAlertId']}<br>\nAlert Link: @{items('For_each')?['properties']?['alertLink']}</p>",
                               "recipient": {
                                 "channelId": "[[parameters('TeamschannelId')]",
                                 "groupId": "[[parameters('TeamsgroupId')]"
@@ -999,7 +999,7 @@
                           "type": "ApiConnection",
                           "inputs": {
                             "body": {
-                              "Body": "<p>Insider Risk Team,<br>\n<br>\nAn Insider Risk Management Alert was observed per the details below:<br>\n<br>\n<br>\n<u><strong>Azure Sentinel Incident</strong></u><br>\nTItle: @{triggerBody()?['object']?['properties']?['title']}<br>\nStatus: @{triggerBody()?['object']?['properties']?['status']}<br>\nNumber: @{triggerBody()?['object']?['properties']?['incidentNumber']}<br>\nIncident Severity: @{triggerBody()?['object']?['properties']?['severity']}<br>\nCreated Time (UTC): @{triggerBody()?['object']?['properties']?['createdTimeUtc']}<br>\nIncident Link: &nbsp;@{triggerBody()?['object']?['properties']?['incidentUrl']}<br>\n<br>\n<u><strong>Alert Details</strong></u><br>\nAlert Display Name: @{items('For_each')?['properties']?['alertDisplayName']}<br>\nAlert Product Name: @{items('For_each')?['properties']?['productName']}<br>\nAlert Severity: @{items('For_each')?['properties']?['severity']}<br>\nAlert Type: @{items('For_each')?['properties']?['alertType']}<br>\nSubscription ID: @{triggerBody()?['workspaceInfo']?['SubscriptionId']}<br>\nProvider Alert ID: @{items('For_each')?['properties']?['providerAlertId']}<br>\nAlert Link: @{items('For_each')?['properties']?['alertLink']}</p>",
+                              "Body": "<p>Insider Risk Team,<br>\n<br>\nAn Insider Risk Management Alert was observed per the details below:<br>\n<br>\n<br>\n<u><strong>Microsoft Sentinel Incident</strong></u><br>\nTItle: @{triggerBody()?['object']?['properties']?['title']}<br>\nStatus: @{triggerBody()?['object']?['properties']?['status']}<br>\nNumber: @{triggerBody()?['object']?['properties']?['incidentNumber']}<br>\nIncident Severity: @{triggerBody()?['object']?['properties']?['severity']}<br>\nCreated Time (UTC): @{triggerBody()?['object']?['properties']?['createdTimeUtc']}<br>\nIncident Link: &nbsp;@{triggerBody()?['object']?['properties']?['incidentUrl']}<br>\n<br>\n<u><strong>Alert Details</strong></u><br>\nAlert Display Name: @{items('For_each')?['properties']?['alertDisplayName']}<br>\nAlert Product Name: @{items('For_each')?['properties']?['productName']}<br>\nAlert Severity: @{items('For_each')?['properties']?['severity']}<br>\nAlert Type: @{items('For_each')?['properties']?['alertType']}<br>\nSubscription ID: @{triggerBody()?['workspaceInfo']?['SubscriptionId']}<br>\nProvider Alert ID: @{items('For_each')?['properties']?['providerAlertId']}<br>\nAlert Link: @{items('For_each')?['properties']?['alertLink']}</p>",
                               "Subject": "Insider Risk Management Alert",
                               "To": "[[parameters('Email')]"
                             },