Skip to content

initial CCF commit #13449

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nadavgru wants to merge 21 commits into
base: master
Choose a base branch
from
Open

initial CCF commit #13449

nadavgru wants to merge 21 commits into from
+4,002 −6

Conversation

@nadavgru
Copy link

@nadavgru nadavgru commented Jan 15, 2026

Change(s):

  • Initial Filewall Data Connector

Reason for Change(s):

  • Initial Filewall Data Connector

Version Updated:

  • Initial version
  • Including initial Workbook, Parsers, Data connector and Analytics Rules.

Testing Completed:

  • Yes

Checked that the validations are passing and have addressed any issues that are present:

  • Yes

@nadavgru nadavgru requested review from a team as code owners January 15, 2026 11:33
@nadavgru
Copy link
Author

nadavgru commented Jan 15, 2026

@microsoft-github-policy-service agree [company="odix"]
@microsoft-github-policy-service agree
@microsoft-github-policy-service agree company="Microsoft"

@nadavgru
Copy link
Author

nadavgru commented Jan 15, 2026

@microsoft-github-policy-service agree company="odix"

@v-atulyadav v-atulyadav added Codeless Connector Framework (CCF) Connector New Solution For new Solutions which are new to Microsoft Sentinel labels Jan 15, 2026
@v-maheshbh
Copy link
Contributor

v-maheshbh commented Jan 19, 2026
edited
Loading

Hi @nadavgru
BasePath Format:
Modify the BasePath to the following structure:
C:\GitHub\Azure-Sentinel\solutions\Solution Name

Kindly add the release notes with proper comments. Please include the workbook preview images inside the solution folder as well as in the following path:
https://github.com/Azure/Azure-Sentinel/tree/master/Workbooks/Images/Preview.
Additionally, update the workbook metadata file and refer to any existing solution for guidance.

For the CCF connector, kindly refer to the solution provided below and attach the Testing screenshot of the connector in a connected state.
https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Cloudflare%20CCF/Data%20Connectors

Thanks!

nadavgru and others added 4 commits January 19, 2026 13:19
@nadavgru
Merge branch 'Azure:master' into filewall
51b4dd4
@nadavgr
update workbook
15139e8
@nadavgr
update package
ba07291
@nadavgr
Merge branch 'filewall' of github.com:odixer/Azure-Sentinel into file…
a0c54c0 
…wall

# Conflicts:
#	.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
#	Workbooks/WorkbooksMetadata.json
@nadavgru nadavgru requested a review from a team as a code owner January 19, 2026 14:02
@nadavgru
Copy link
Author

nadavgru commented Jan 19, 2026

Connected State:
image

@v-maheshbh
Copy link
Contributor

v-maheshbh commented Jan 23, 2026
edited
Loading

Hi @nadavgru
The relevantTechniques field is missing in the analytic rule. Kindly update the rule to include the appropriate relevant techniques and update your branch from master to resolve the workbook validation issues.
Kindly add the release notes with version, date and descriptive details for this update.

For the CCF connector, kindly refer to the solution provided below.
https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Cloudflare%20CCF/Data%20Connectors

Thanks!

@v-maheshbh
Copy link
Contributor

v-maheshbh commented Jan 27, 2026

Hi @nadavgru
Please resolve the conflicts in this branch.

Thanks!

@nadavgr
Merge branch 'master' of github.com:odixer/Azure-Sentinel into filewall
c26170d 
# Conflicts:
#	Workbooks/WorkbooksMetadata.json
@nadavgru
Copy link
Author

nadavgru commented Jan 27, 2026

fixed conflicts

@nadavgru
Copy link
Author

nadavgru commented Jan 28, 2026

Hi @v-maheshbh ,
Please Re-run as the last test failed on api limit error: message: "API rate limit exceeded for 172.215.209.99. (But here's the good news: Authenticated requests get a higher rate limit. Check out the documentation for more details.)",

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@v-maheshbh v-maheshbh

Labels

Codeless Connector Framework (CCF) Connector New Solution For new Solutions which are new to Microsoft Sentinel

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@nadavgru @v-maheshbh @v-atulyadav @nadavgr