Getting alert with empty tags, destination address, and destination domain and also unable to update it.

Herman Edwards 1 Reputation point
2021-11-10T10:28:07.107+00:00

We are using GET API for getting alerts from Microsoft graph API. and for that we are using this API endpoint:- https://graph.microsoft.com/v1.0/security/alerts.

While making GET API call we are getting all the parameters except tags, destination address, and destination domain parameters values in any alerts but in UI [Microsoft 365 Defender] the values of the tags are available.(PFA)

While making API call we got the below parameters with empty values in alerts:

          1. “tags”: []  

          2. “destinationAddress”: null,   

          3. “destinationDomain”: null   

We need alerts that contain parameter values like tags, a destination address, and destination domain.

Can anyone help us?
148185-screenshot-2021-11-10-at-42111-pm.png

Microsoft Graph Security API
Microsoft Graph Security API
A Microsoft API that provides a unified interface to connect security solutions from multiple Microsoft and third-party providers.
102 questions
No comments
{count} votes