SentinelOne V2 CCF Connector: UAM GraphQL Alerts Now Visible in Sentinel (Plus Packaging Fix)

The SentinelOne solution adds a new CCF-based V2 connector ingesting Unified Alert Management (UAM) alerts from the GraphQL API into SentinelOneAlertsV2_CL, closing a blind spot for Wayfinder, cloud, identity, STAR, and third-party detections that the legacy REST connector never surfaced. Read More →

Vaikora-SentinelOne Playbook: Broken IOC Push Restored After HTTP 422 API Rejection

The v3.0.0 playbook always appended an empty agent_id= parameter, causing the Vaikora API to reject every poll request with HTTP 422, silently halting all IOC delivery to SentinelOne Threat Intelligence since initial deployment. Read More →

SentinelOne CCF Connector Upgraded to Multi-Instance for MSSP Deployments

The SentinelOne CCF connector now supports multiple simultaneous instances via a grid/context-pane UX, enabling MSSPs to ingest from multiple SentinelOne tenants without deploying duplicate solutions. Read More →

Vaikora AI Security: New Logic App Playbook for SentinelOne Threat Intelligence Integration

Data443 introduces Vaikora AI agent behavioral signal integration with SentinelOne threat intelligence via a 6-hour polling playbook. Read More →

Four Legacy Azure Function Connectors Marked for Deprecation - Migration to CCF Required

Microsoft has deprecated Azure Function-based connectors for Okta SSO, SentinelOne, Sophos Endpoint Protection, and VMware Carbon Black Cloud in favor of CCF alternatives. Read More →

Cyren-SentinelOne Connector: Restoring Threat Intelligence Deployment After ARM Template Failure

Critical deployment fix for Cyren-SentinelOne connector that was failing ARM template validation in Content Hub, preventing threat intelligence data ingestion. Read More →

SentinelOne Connector: Template Cleanup for JSON Schema Compliance

Code hygiene fix removes redundant null values from CCF connector configuration. Read More →

SentinelOne Connector: Title Update to Clarify CCF Usage

Cosmetic title change to clarify the connector uses Codeless Connector Framework for API ingestion. Read More →

Cyren Threat Intelligence: SentinelOne IOC Automation Solution Deployed

New Content Hub solution automates IOC ingestion from Cyren CCF feeds (IP reputation and malware URLs) into SentinelOne for automated threat detection and response. Read More →

TacitRed SentinelOne Playbook: Critical API Fix Restores IOC Automation After HTTP 500 Failures

Fixed broken TacitRed playbook that was failing with HTTP 500 errors when posting IOCs to SentinelOne due to missing account scope parameter. Read More →

TacitRed-SentinelOne v3.0.2: Critical Fix for Broken SentinelOne Connection

Fixes a critical deployment bug present since v1.0.0 where hardcoded placeholder URL caused complete playbook failure for all Content Hub installations. Read More →

TacitRed SentinelOne Solution: Partner Center Metadata Alignment and Template Fixes

TacitRed SentinelOne solution metadata updated for Partner Center alignment with ARM template variable corrections. Read More →

Salesforce Service Cloud Connector: Column Name Bug Fix Plus Multi-Solution Updates

Fixed critical column name mapping bug in Salesforce Service Cloud CCF connector preventing proper data ingestion. Read More →