Task 6: Set up a pipeline that feeds Azure OpenAI’s content analysis into Defender for Cloud
-
In the Microsoft Azure portal, search for and select Microsoft Defender for Cloud.
-
On the Microsoft Defender for Cloud blade, in the navigation pane, expand Management and then select Workflow automation.
-
On the Workflow automation blade, select Add Workflow automation.
-
On the Add workflow automation dialog, in the Name field, enter WorkflowAutomationxxxx.
-
In the Subscriptions dropdown list, verify your lab subscription is selected.
-
In the Resource group dropdown list, select @lab.CloudResourceGroup(RG1).Name.
-
In the Defender for Cloud data type dropdown list, select Recommendation.
-
In the Recommendation severity dropdown list, select only Medium and High.
-
Under Actions, select visit the Logic Apps page.
-
A new tab will open, on the Logic apps blade, select Add.
-
On the Create Logic App blade, select Multi-tenant and then select Select.
-
On the Create Logic App (Multi-tenant) blade, in the Subscriptions dropdown list, verify your lab subscription is selected.
-
In the Resource group dropdown list, select @lab.CloudResourceGroup(RG1).Name.
-
In the Logic App name field, enter LogicAppxxxx.
-
In the Region dropdown list, select East US and then select Next.
-
On the Tags tab, leave the default settings and select Review + create.
-
On the Review + create tab, review the settings and then select Create.
-
When deployment shows as complete, select Go to resource.
-
On the LogicAppxxxx blade tab, scroll down, select the Get started tab, and then select Choose template.
-
On the Logic Apps Designer blade, scroll down, select When a HTTP request is received and then select Save.
-
Switch back to the Add workflow automation tab, next to Logic App name, select Refresh.
-
In the Logic App name dropdown list, select LogicAppxxxx and then select Create.