This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 3%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENS%3C/text%3E%3C/svg%3E)
Hi
I wish to add an additional sentinel incident status value . Is this possible and how do you modify the list of status values
Regards
Nigel
This is not currently possible.
Will this be an enhancement going forward. and if yes any timescales ?
It is quite critical to MSSP operations and creating playbook triggers .
I am sure the request has been considered but I have no info on development or timelines. I am not aware of this being on any of the early previews. You might get more info from your Microsoft support contacts if available. Not something that could be discussed on an open forum.
You might consider tagging or some other tracking mechanism to meet your needs. Maybe the new ingestion-time filtering. https://learn.microsoft.com/en-us/azure/azure-monitor/logs/ingestion-time-transformations