Multiple Solution Updates: GKE GA Promotion and SAP ETD Investigation Capability

Google Kubernetes Engine (GKE) - GA Promotion

Removed Preview status from Google Kubernetes Engine connector, promoting to General Availability with version 3.0.1.

SAP ETD Cloud - Major Enhancement

Significant expansion adding investigation data stream alongside existing alert ingestion. New DCR configuration supports SAPETDInvestigations_CL table with investigation metadata, severity tracking, and cross-referencing capabilities. Added new detection rule for investigation correlation.

Security Impact (Visibility & Fidelity)

The SAP ETD investigation stream fills a critical gap in enterprise SAP security monitoring — investigations provide contextual threat analysis beyond individual alerts, enabling SOC teams to track comprehensive threat scenarios and analyst workflows from SAP ETD directly in Microsoft Sentinel.

Affected Files

Solutions/Google Kubernetes Engine/Data Connectors/GoogleKubernetesEngineLogs_ccp/GoogleKubernetesEngineLogs_ConnectorDefinition.json
Solutions/SAP ETD Cloud/Analytic Rules/SAPETD-SynchInvestigations.yaml (new)
Solutions/SAP ETD Cloud/Data Connectors/SAPETD_PUSH_CCP/SAPETD_DCR.json
Solutions/SAP ETD Cloud/Data Connectors/SAPETD_PUSH_CCP/SAPETD_connectorDefinition.json
Solutions/SAP ETD Cloud/Data Connectors/SAPETD_PUSH_CCP/SAPETD_PollerConfig.json
.script/tests/KqlvalidationsTests/CustomTables/SAPETDInvestigations_CL.json (new)
(packaging artefacts: multiple mainTemplate.json, createUiDefinition.json files)