D3 Smart SOAR’s integrations with Microsoft tools enable security analysts to focus their investigative efforts while letting Smart SOAR orchestrate and automate the analysis, prioritization, remediation, and audit trail generation. For example, alerts in Azure Sentinel trigger automated playbooks in Smart SOAR that orchestrate and automate security actions across Microsoft tools as well as unlimited third-party products. Integrations with on-premise and cloud-based deployments of Active Directory are used to expand the understanding of an event with identity information and then rapidly manage users during response workflows. The integrated solution achieves consistent security outcomes and end-to-end management of incident response across cloud, on-premise, and hybrid environments.
Integration | Capabilities |
---|---|
Azure Sentinel | Gather critical information, trigger playbooks, and add new rules for monitoring and detection. |
Microsoft 365 Defender | Initiate endpoint security actions, including quarantining endpoints, managing scans, and running advanced hunting queries. |
Azure REST | Create and manage integrations, analytic rules, incidents, entity operations, dashboards, and bookmarks. |
Azure Security Center | Validate threats and orchestrate end-to-end response for attacks on cloud, IoT, and hybrid environments. |
Active Directory | Enrich security events with identity data and orchestrate actions such as restricting access when credentials have been compromised. |
Microsoft Teams | Keep teams up to date with automated alerts and communications. |
Microsoft Entra ID | Retrieve information and orchestrate actions related to access to cloud applications. |
Microsoft Exchange Server | Manage on-premise mail servers to investigate and prevent phishing attempts targeting your employees. |
Office 365 (O365) | Manage Office 365's cloud-based mail service to protect your organization from phishing and spear phishing attempts. |
Our Connected SOAR Security Alliance brings hundreds of vendors together, allowing customers to benefit from our deep industry relationships and fully vendor-agnostic, independent SOAR platform.