Skip to content

Commit

Permalink
compiled solution package, added an entry in workbooksmetadata
Browse files Browse the repository at this point in the history
  • Loading branch information
@ashwinvenkatesha
ashwinvenkatesha committed Jan 18, 2025
1 parent 5d265fa commit f40bf0d
Show file tree
Hide file tree
Showing 7 changed files with 396 additions and 69 deletions.
Binary file added Solutions/IllumioSaaS/Package/3.4.0.zip
View file
Binary file not shown.
16 changes: 15 additions & 1 deletion Solutions/IllumioSaaS/Package/createUiDefinition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
"config": {
"isWizard": false,
"basics": {
"description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/IllumioLogo.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/IllumioSaaS/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\n[IllumioSaaS](https://www.illumio.com/) solution provides ability to ingest auditable and flow events from AWS S3 bucket.\n\n**Data Connectors:** 1, **Workbooks:** 3, **Analytic Rules:** 6, **Function Apps:** 1, **Playbooks:** 3\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
"description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/IllumioLogo.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/IllumioSaaS/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\n[IllumioSaaS](https://www.illumio.com/) solution provides ability to ingest auditable and flow events from AWS S3 bucket.\n\n**Data Connectors:** 1, **Workbooks:** 4, **Analytic Rules:** 6, **Function Apps:** 1, **Playbooks:** 3\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
"subscription": {
"resourceProviders": [
"Microsoft.OperationsManagement/solutions",
Expand Down Expand Up @@ -142,6 +142,20 @@
}
}
]
},
{
"name": "workbook4",
"type": "Microsoft.Common.Section",
"label": "Illumio OnPrem Health Workbook",
"elements": [
{
"name": "workbook4-text",
"type": "Microsoft.Common.TextBlock",
"options": {
"text": "This workbook leverages events ingested by 'Syslog via AMA devices' and presents insights"
}
}
]
}
]
},
Expand Down
330 changes: 266 additions & 64 deletions Solutions/IllumioSaaS/Package/mainTemplate.json
View file

Large diffs are not rendered by default.

8 changes: 8 additions & 0 deletions Solutions/IllumioSaaS/Package/testParameters.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,5 +44,13 @@
"metadata": {
"description": "Name for the workbook"
}
},
"workbook4-name": {
"type": "string",
"defaultValue": "Illumio OnPrem Health Workbook",
"minLength": 1,
"metadata": {
"description": "Name for the workbook"
}
}
}
44 changes: 42 additions & 2 deletions Solutions/IllumioSaaS/Playbooks/Illumio-Port-Blocking-Switch/azuredeploy.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,9 +50,38 @@
"hostingPlanName": "[parameters('FunctionAppName')]",
"storageAccountName": "[parameters('FunctionAppName')]",
"functionAppName": "[parameters('FunctionAppName')]",
"applicationInsightsName": "[parameters('FunctionAppName')]"
"applicationInsightsName": "[parameters('FunctionAppName')]",
"o365ConnectionName": "[[concat('o365-', parameters('PlaybookName'))]",
"sentinelConnectionName": "[[concat('azuresentinel-', parameters('PlaybookName'))]"

},
"resources": [
{
"type": "Microsoft.Web/connections",
"apiVersion": "2016-06-01",
"name": "[variables('o365ConnectionName')]",
"location": "[resourceGroup().location]",
"properties": {
"displayName": "[parameters('DeployersUserName')]",
"customParameterValues": {},
"api": {
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/office365')]"
}
}
},
{
"type": "Microsoft.Web/connections",
"apiVersion": "2016-06-01",
"name": "[variables('sentinelConnectionName')]",
"location": "[resourceGroup().location]",
"properties": {
"displayName": "[parameters('DeployersUserName')]",
"customParameterValues": {},
"api": {
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/azuresentinel')]"
}
}
},
{
"type": "Microsoft.Logic/workflows",
"apiVersion": "2017-07-01",
Expand Down Expand Up @@ -189,7 +218,18 @@
},
"parameters": {
"$connections": {
"value": {}
"value": {
"azuresentinel": {
"connectionId": "[resourceId('Microsoft.Web/connections', variables('sentinelConnectionName'))]",
"connectionName": "[variables('sentinelConnectionName')]",
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/azuresentinel')]"
},
"office365": {
"connectionId": "[resourceId('Microsoft.Web/connections', variables('o365ConnectionName'))]",
"connectionName": "[variables('o365ConnectionName')]",
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/office365')]"
}
}
}
}
}
Expand Down
47 changes: 45 additions & 2 deletions Solutions/IllumioSaaS/Playbooks/Illumio-Quarantine-Workload/azuredeploy.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,10 @@
"description": "PlayBook Name"
}
},
"DeployersUserName": {
"defaultValue": "<username>@<domain>",
"type": "string"
},
"FunctionAppName": {
"defaultValue": "illumiopbfuncapp",
"type": "String",
Expand All @@ -47,9 +51,37 @@
}
},
"variables": {
"functionAppName": "[parameters('FunctionAppName')]"
"functionAppName": "[parameters('FunctionAppName')]",
"o365ConnectionName": "[[concat('o365-', parameters('PlaybookName'))]",
"sentinelConnectionName": "[[concat('azuresentinel-', parameters('PlaybookName'))]"
},
"resources": [
{
"type": "Microsoft.Web/connections",
"apiVersion": "2016-06-01",
"name": "[variables('o365ConnectionName')]",
"location": "[resourceGroup().location]",
"properties": {
"displayName": "[parameters('DeployersUserName')]",
"customParameterValues": {},
"api": {
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/office365')]"
}
}
},
{
"type": "Microsoft.Web/connections",
"apiVersion": "2016-06-01",
"name": "[variables('sentinelConnectionName')]",
"location": "[resourceGroup().location]",
"properties": {
"displayName": "[parameters('DeployersUserName')]",
"customParameterValues": {},
"api": {
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/azuresentinel')]"
}
}
},
{
"type": "Microsoft.Logic/workflows",
"apiVersion": "2017-07-01",
Expand Down Expand Up @@ -108,7 +140,18 @@
},
"parameters": {
"$connections": {
"value": {}
"value": {
"azuresentinel": {
"connectionId": "[resourceId('Microsoft.Web/connections', variables('sentinelConnectionName'))]",
"connectionName": "[variables('sentinelConnectionName')]",
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/azuresentinel')]"
},
"office365": {
"connectionId": "[resourceId('Microsoft.Web/connections', variables('o365ConnectionName'))]",
"connectionName": "[variables('o365ConnectionName')]",
"id": "[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', resourceGroup().location, '/managedApis/office365')]"
}
}
}
}
}
Expand Down
20 changes: 20 additions & 0 deletions Workbooks/WorkbooksMetadata.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8023,6 +8023,26 @@
"subtitle": "",
"provider": "Illumio"
},
{
"workbookKey": "IllumioOnPremHealthWorkbook",
"logoFileName": "IllumioLogo.svg",
"description": "This workbook leverages events ingested by 'Syslog via AMA devices' and presents insights",
"dataTypesDependencies": [
"Syslog"
],
"dataConnectorsDependencies": [
"SyslogAMA"
],
"previewImagesFileNames": [
"IllumioWorkloadsSummarizedBlack.png",
"IllumioWorkloadsSummarizedWhite.png"
],
"version": "1.2.0",
"title": "Illumio OnPrem Health Workbook",
"templateRelativePath": "IllumioOnPremHealth.json",
"subtitle": "",
"provider": "Illumio"
},
{
"workbookKey": "CEFOverview",
"logoFileName": "Azure_Sentinel.svg",
Expand Down

0 comments on commit f40bf0d

Please sign in to comment.