diff --git a/Deploy/GrantPermissions.ps1 b/Deploy/GrantPermissions.ps1 index e151bd4..0643c7c 100644 --- a/Deploy/GrantPermissions.ps1 +++ b/Deploy/GrantPermissions.ps1 @@ -166,6 +166,8 @@ Set-APIPermissions -MSIName $STATIdentityName -AppId "00000003-0000-0000-c000-00 Set-APIPermissions -MSIName $STATIdentityName -AppId "8ee8fdad-f234-4243-8f3b-15c294843740" -PermissionName "AdvancedHunting.Read.All" Set-APIPermissions -MSIName $STATIdentityName -AppId "00000003-0000-0000-c000-000000000000" -PermissionName "IdentityRiskyUser.Read.All" Set-APIPermissions -MSIName $STATIdentityName -AppId "00000003-0000-0000-c000-000000000000" -PermissionName "IdentityRiskEvent.Read.All" +Set-APIPermissions -MSIName $STATIdentityName -AppId "00000003-0000-0000-c000-000000000000" -PermissionName "SecurityAnalyzedMessage.Read.All" #Not supported in GCC/GCC High/DoD +Set-APIPermissions -MSIName $STATIdentityName -AppId "00000003-0000-0000-c000-000000000000" -PermissionName "ThreatIntelligence.Read.All" #Not supported in GCC/GCC High/DoD #Triage-Content Sample if ( $PSBoundParameters.ContainsKey('SampleLogicAppName') ) { diff --git a/Deploy/deployui.json b/Deploy/deployui.json index da65714..217045e 100644 --- a/Deploy/deployui.json +++ b/Deploy/deployui.json @@ -516,7 +516,7 @@ "type": "Microsoft.Common.TextBox", "label": "STAT Function ZIP Package", "placeholder": "", - "defaultValue": "https://github.com/briandelmsft/STAT-Function/releases/download/v2.2.0/stat.zip", + "defaultValue": "https://github.com/briandelmsft/STAT-Function/releases/download/v2.3.0/stat.zip", "toolTip": "Full path to the STAT Function ZIP deployment package", "constraints": { "required": true, @@ -550,7 +550,7 @@ "STATConnectorName": "[coalesce(steps('namingStep').customNaming.statConnectorName, 'SentinelTriageAssistantv2')]", "STATConnectorDisplayName": "[coalesce(steps('namingStep').customNaming.statConnectorDisplayName, 'STAT v2')]", "storageAccountType": "Standard_LRS", - "FunctionPackage": "[coalesce(steps('additionalStep').advanced.functionPackage, 'https://github.com/briandelmsft/STAT-Function/releases/download/v2.2.0/stat.zip')]", + "FunctionPackage": "[coalesce(steps('additionalStep').advanced.functionPackage, 'https://github.com/briandelmsft/STAT-Function/releases/download/v2.3.0/stat.zip')]", "MSGraphEndpoint": "[coalesce(steps('apiStep').customApi.graphApi,'graph.microsoft.com')]", "M365Endpoint": "[coalesce(steps('apiStep').customApi.m365Api,'api.security.microsoft.com')]", "MDEEndpoint": "[coalesce(steps('apiStep').customApi.mdeApi,'api.securitycenter.microsoft.com')]", diff --git a/Deploy/statdeploy.json b/Deploy/statdeploy.json index 48f4bbe..75565ea 100644 --- a/Deploy/statdeploy.json +++ b/Deploy/statdeploy.json @@ -135,28 +135,12 @@ "allowBlobPublicAccess": false } }, - { - "type": "Microsoft.Web/serverfarms", - "apiVersion": "2021-02-01", - "name": "[variables('functionName')]", - "location": "[parameters('location')]", - "sku": { - "name": "Y1", - "tier": "Dynamic", - "size": "Y1", - "family": "Y" - }, - "properties": { - "reserved": true - } - }, { "condition": "[equals(parameters('identityType'), 'sp')]", "apiVersion": "2019-10-01", "name": "STATFunctionSP", "type": "Microsoft.Resources/deployments", "dependsOn": [ - "[resourceId('Microsoft.Web/serverfarms', variables('functionName'))]", "[resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName'))]" ], "properties": { @@ -229,7 +213,6 @@ "name": "STATFunctionSystemId", "type": "Microsoft.Resources/deployments", "dependsOn": [ - "[resourceId('Microsoft.Web/serverfarms', variables('functionName'))]", "[resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName'))]" ], "properties": { @@ -296,7 +279,6 @@ "name": "STATFunctionUser", "type": "Microsoft.Resources/deployments", "dependsOn": [ - "[resourceId('Microsoft.Web/serverfarms', variables('functionName'))]", "[resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName'))]" ], "properties": { diff --git a/Function/ServicePrincipalIdentity.json b/Function/ServicePrincipalIdentity.json index 71ef7a2..dba466f 100644 --- a/Function/ServicePrincipalIdentity.json +++ b/Function/ServicePrincipalIdentity.json @@ -107,9 +107,8 @@ "reserved": true, "httpsOnly": true, "clientAffinityEnabled": true, - "serverFarmId": "[resourceId('Microsoft.Web/serverfarms', parameters('STATFunctionName'))]", "siteConfig": { - "linuxFxVersion": "PYTHON|3.10", + "linuxFxVersion": "PYTHON|3.12", "appSettings": [ { "name": "AzureWebJobsStorage", @@ -224,4 +223,4 @@ "value": "[reference(resourceId('Microsoft.Web/sites', parameters('STATFunctionName'))).defaultHostName]" } } -} \ No newline at end of file +} diff --git a/Function/SystemIdentity.json b/Function/SystemIdentity.json index 3554a67..48cc697 100644 --- a/Function/SystemIdentity.json +++ b/Function/SystemIdentity.json @@ -95,9 +95,8 @@ "reserved": true, "httpsOnly": true, "clientAffinityEnabled": true, - "serverFarmId": "[resourceId('Microsoft.Web/serverfarms', parameters('STATFunctionName'))]", "siteConfig": { - "linuxFxVersion": "PYTHON|3.10", + "linuxFxVersion": "PYTHON|3.12", "appSettings": [ { "name": "AzureWebJobsStorage", @@ -204,4 +203,4 @@ "value": "[reference(resourceId('Microsoft.Web/sites', parameters('STATFunctionName'))).defaultHostName]" } } -} \ No newline at end of file +} diff --git a/Function/UserAssignedIdentity.json b/Function/UserAssignedIdentity.json index a3c7d1b..89b6964 100644 --- a/Function/UserAssignedIdentity.json +++ b/Function/UserAssignedIdentity.json @@ -107,9 +107,8 @@ "reserved": true, "httpsOnly": true, "clientAffinityEnabled": true, - "serverFarmId": "[resourceId('Microsoft.Web/serverfarms', parameters('STATFunctionName'))]", "siteConfig": { - "linuxFxVersion": "PYTHON|3.10", + "linuxFxVersion": "PYTHON|3.12", "appSettings": [ { "name": "AzureWebJobsStorage", @@ -220,4 +219,4 @@ "value": "[reference(resourceId('Microsoft.Web/sites', parameters('STATFunctionName'))).defaultHostName]" } } -} \ No newline at end of file +}