Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
11,226 questions
Please allow subscriptions on new Alerts API (/alerts_v2)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 56.00000000000001%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
Roch AUBURTIN
0
Reputation points
Hi,
To automate the remediation of high-level alerts, we have set up Powerautomate flows for :
- revoke sessions and block a user concerned by a High alert in cases of phishings or abnormal connections (UserEvidence)
- isolate workstations in cases of malware or suspicious behavior (DeviceEvidence)
We wanted powerautomate flows to work only with Principal Services (non-human users) so we called directly the graph API with appid and secrets
We tried to create subscriptions on the new Alerts API (/alerts_v2) but this API doesn't support subscriptions. We tried to create subscriptions on legacy alerts, but since they are based on the MDE API, we didn't succeed. We opened a TrackingID#2405090050002397 ticket and MS support confirmed that it didn't work.
Can you envisage enabling subscriptions to be created on the V2 APIs?
Best
Microsoft Graph
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
174 questions
Azure Startups
Azure Startups
Azure: A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.Startups: Companies that are in their initial stages of business and typically developing a business model and seeking financing.
172 questions