That's a good point, Glory. But I think the question is asking specifically about what we need to configure for the rule itself, not the playbook. So I still think C) the query rule is the best answer.
Hmm, I'm not so sure. What about the Incident automation settings? Couldn't that be a valid option since the playbook is being triggered by the Azure Activity connector?
Hmm, that's an interesting thought, David. But I still think the query rule is the most important thing to configure for a new NRT analytics rule. The other settings are more about what happens after the rule is triggered.
Anastacia
11 months agoGlory
11 months agoHoney
11 months agoCandida
11 months agoEarlean
11 months agoJohnetta
11 months agoJean
11 months agoAlfreda
11 months agoCasie
11 months agoYan
11 months agoRoxane
11 months ago