You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/sentinel/automation/generate-playbook.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -16,7 +16,7 @@ ms.collection: usx-security
16
16
17
17
# Generate playbooks using AI in Microsoft Sentinel (preview)
18
18
19
-
The SOAR playbook generator creates python based automation workflows coauthored through a conversational experience with Cline, an AI coding agent. You describe automation logic in natural language, and the system generates validated, code-based playbooks with complete documentation and visual flow diagrams. This experience is powered by an embedded Visual Studio Code environment within the Defender portal, so you can author and refine playbooks without leaving the portal. Generated playbooks use alert data as input and dynamically generate the required API calls, as long as you configure the integration for the target provider.
19
+
The SOAR playbook generator creates python based automation workflows coauthored through a conversational experience with Cline, an AI coding agent. You describe automation logic in natural language, and the system generates validated, code-based playbooks with complete documentation and visual flow diagrams. This experience is powered by an embedded VS Code environment within the Defender portal, so you can author and refine playbooks without leaving the portal. Generated playbooks use alert data as input and dynamically generate the required API calls, as long as you configure the integration for the target provider.
20
20
21
21
This article describes how to generate playbooks by using AI, configure required integrations, and deploy your automation workflows.
22
22
@@ -31,11 +31,11 @@ Playbook generation provides the following capabilities:
31
31
-**Third-party integrations**: Connect external tools and APIs seamlessly through integration profiles
32
32
-**Broad alert coverage**: Apply automation to alerts from Microsoft Sentinel, Microsoft Defender, and XDR platforms
33
33
34
-
An embedded Visual Studio Code environment within the Microsoft Defender portal powers the experience. You can author and refine playbooks without leaving the portal.
34
+
An embedded VS Code environment within the Microsoft Defender portal powers the experience. You can author and refine playbooks without leaving the portal.
35
35
36
36
## Prerequisites
37
37
38
-
You don't need prior coding experience to generate a playbook, but it helps to be familiar with tools like Visual Studio Code and Entra ID app registration.
38
+
You don't need prior coding experience to generate a playbook, but it helps to be familiar with tools like VS Code and Entra ID app registration.
39
39
40
40
You also must meet the following requirements:
41
41
@@ -249,7 +249,7 @@ When the editor opens, the experience starts in **Plan mode**. In this mode, you
249
249
250
250
#### Generate the playbook in Act mode
251
251
252
-
1. After switching to Act mode, the playbook generator delivers:
252
+
1. After you switch to Act mode, the playbook generator delivers:
253
253
- The complete playbook code in Python
254
254
- Code validation
255
255
- Comprehensive documentation, including a visual flow diagram and description of the playbook in natural language
0 commit comments