Get-AzSentinelAlertRule doesn't show Techniques mapped in the rules. #9491
Comments
|
Thank you for submitting an Issue to the Azure Sentinel GitHub repo! You should expect an initial response to your Issue from the team within 5 business days. Note that this response may be delayed during holiday periods. For urgent, production-affecting issues please raise a support ticket via the Azure Portal. |
|
Hi @ovcrash, Thanks for flagging this issue, we will investigate this issue and get back to you with some updates by 04-12-2023. Thanks! |
|
Hi @ovcrash, I hope this message finds you well. For a more thorough investigation of this issue, please reach out to our dedicated support team via the following GitHub repository: https://github.com/Azure/azure-powershell. Thanks! |
Describe the bug
A clear and concise description of what the bug is.
To Reproduce
Use Get-AzSentinelAlertRule to get a rule or all rules and it will only output the Tactics but not the Techniques.
When we go into the GUI, we can clearly see the Tactics and Techniques.
Expected behavior
We should see the Tactics and Techniques that are mapped on the rule.
Screenshots
n/a
Desktop (please complete the following information):
Script 3.1.1 Az.SecurityInsights
Smartphone (please complete the following information):
n/a
Additional context
In this documentation:
https://learn.microsoft.com/en-us/rest/api/securityinsights/alert-rules/list?view=rest-securityinsights-2023-10-01-preview&tabs=HTTP
They do show in the Responses section, that there is a Techniques field in the Sample Response section.
The text was updated successfully, but these errors were encountered: