Azure Sentinel PowerShell Module Hits GA at Version 1.0.0

Some of you may remember, but during the Christmas/NYE season last year (2020), an official PowerShell module for Azure Sentinel saw the light of day. Just a few hours ago, this module finally hit 1.0.0, hence its been released for General Availability. How cool is that?? Download it from here: PowerShell Gallery | Az.SecurityInsights 1.0.0 … Continue reading Azure Sentinel PowerShell Module Hits GA at Version 1.0.0

How to Import One or Multiple Analytics Rules into Azure Sentinel

There's a few PowerShell options out there (including the official module) to help automate content and collateral deployment to your Azure Sentinel workspace. But, this latest one from Jan Geisbauer is highly recommended. Jan notified me about this late last week, and after some testing, I can say it's a very worthwhile PowerShell module to … Continue reading How to Import One or Multiple Analytics Rules into Azure Sentinel

Creating Cloud Shell Storage Resources in a Different Azure Region

I had a situation recently where I needed to test to determine if a specific cmdlet for the Azure Sentinel PowerShell module would run in a specific Azure region. Cloud Shell instances require storage to function. When you initiate a Cloud Shell instance and accept the defaults it generates a random set of storage account … Continue reading Creating Cloud Shell Storage Resources in a Different Azure Region

Official Azure Sentinel PowerShell Module Released

On December 29th, when the rest of the world wasn't watching, the Microsoft team unleashed the first rev of a PowerShell module specifically for Azure Sentinel. You can find Az.SecurityInsights version 0.1.0 here: https://www.powershellgallery.com/packages/Az.SecurityInsights/0.1.0 I've been playing with it the last couple days when my wife isn't looking. I'm off until January 4th and have … Continue reading Official Azure Sentinel PowerShell Module Released

SCCM Software Update Point (SUP) automated install via PowerShell

Automation is always good in large or small organizations to minimize error and remove the tediousness of repetitive tasks. This script will install the Software Update Point (SUP) role on one or multiple site system servers in their assigned site. This script will run the following task Check if the site server and admin domain … Continue reading SCCM Software Update Point (SUP) automated install via PowerShell

SCCM Distribution Point (DP) automated install via PowerShell

Automation is always good in large or small organizations to minimize error and remove the tediousness of repetitive tasks. This script will install the standard Distribution Point (DP) role on one or multiple site system servers in their assigned site. This script will run the following task Check if the site server CM admin domain … Continue reading SCCM Distribution Point (DP) automated install via PowerShell

Azure – “Executing Runbooks with Power Platform and Webhooks”

The Question In a recent Workshop I wanted to explain how you could use webhooks in clever ways to kick off specific tasks in Azure Automation. Specifically I wanted to create a Power App where I could just click a button and all my Az Modules in my Azure Automation Account gets updated. You can … Continue reading Azure – “Executing Runbooks with Power Platform and Webhooks”

How to Automate the Backup of Azure Sentinel Tables to Blob Storage Using PowerShell

Not too long ago I wrote a blog post describing how to use Cloud Shell to create Export Rules for automating the backup of Azure Sentinel tables to Blob storage for long-term backup. This is useful for those organizations that need to store data, due to policy, for longer periods than the default 2 years … Continue reading How to Automate the Backup of Azure Sentinel Tables to Blob Storage Using PowerShell

How to Automate the Backup of Azure Sentinel Tables to Long-term Storage Using Cloud Shell

Azure Sentinel customers with specific policies around data retention and the ability to retain data longer than Log Analytics allows, are interested in knowing how to move their Azure Sentinel tables to long-term storage. In a more recent blog post, Matt Lowe talked about how to Move Your Azure Sentinel Logs to Long-Term Storage with … Continue reading How to Automate the Backup of Azure Sentinel Tables to Long-term Storage Using Cloud Shell

Azure GitHub Actions and Workflows

Let me give you an introduction how to use the power of GitHub Actions and Workflows to deploy resources into Azure. I'm going to explain you the basics of GitHub Actions, Workflows, runners and how to deploy resources into Azure. At the end of this post you should have understood how GitHub Actions and Workflows … Continue reading Azure GitHub Actions and Workflows