From bf442ba96a4c60389e9da94bc0a50a10a83b5aa3 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Mon, 27 Jan 2025 15:47:01 +0100
Subject: [PATCH 01/17] Initial SAP etd release

---
 ...P ETD - Login from unexpected network.yaml |   63 +
 .../SAP ETD - Synch alerts.yaml               |   74 ++
 Solutions/SAP ETD Cloud/Package/1.0.0.zip     |  Bin 0 -> 9716 bytes
 .../Package/createUiDefinition.json           |  127 ++
 .../SAP ETD Cloud/Package/mainTemplate.json   | 1050 +++++++++++++++++
 .../SAP ETD Cloud/Package/testParameters.json |   38 +
 Solutions/SAP ETD Cloud/ReleaseNotes.md       |    3 +
 Solutions/SAP ETD Cloud/SolutionMetadata.json |   16 +
 8 files changed, 1371 insertions(+)
 create mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
 create mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
 create mode 100644 Solutions/SAP ETD Cloud/Package/1.0.0.zip
 create mode 100644 Solutions/SAP ETD Cloud/Package/createUiDefinition.json
 create mode 100644 Solutions/SAP ETD Cloud/Package/mainTemplate.json
 create mode 100644 Solutions/SAP ETD Cloud/Package/testParameters.json
 create mode 100644 Solutions/SAP ETD Cloud/ReleaseNotes.md
 create mode 100644 Solutions/SAP ETD Cloud/SolutionMetadata.json

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
new file mode 100644
index 00000000000..b317a2dae5c
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
@@ -0,0 +1,63 @@
+id: 7a830484-e349-4527-85f6-7850c468c238
+kind: Scheduled
+name: "SAP ETD - Login from unexpected network"
+description: "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*"
+severity: Medium
+status: Available
+requiredDataConnectors:
+  - connectorId: SAPETDAlerts
+    dataTypes:
+      - ETDAlerts_CL
+queryFrequency: 1h
+queryPeriod: 2d
+triggerOperator: gt
+triggerThreshold: 0
+tactics: []
+relevantTechniques: []
+query: |
+  let regex_ip = @"user_ip:(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})";
+  let regex_user = @"user_name:(\w+)";
+  let regex_sid = @"sid:(\w{3})";
+  let regex_client = @"client:(\d{3})";
+  let regex_instance_name = @"instance_name:(\w+)";
+  let regex_instance_host = @"instance_host:([\w-]+)";
+  let SAPNetworks = _GetWatchlist('SAP - Networks');
+  ETDAlerts_CL
+  | mv-expand TriggeringEvents
+  | extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)
+  | extend Id_ = TriggeringEvents.Id
+  | extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)
+  | extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)
+  | extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)
+  | extend extracted_client = extract(regex_client, 1, sapOriginalEvent)
+  | extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)
+  | extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)
+  | evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)
+  | where isempty(Network)
+  | project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status
+  | extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({"IsPrivate": true}), geo_info_from_ip_address(extracted_user_ip))
+eventGroupingSettings:
+  aggregationKind: AlertPerResult
+entityMappings:
+  - entityType: CloudApplication
+    fieldMappings:
+      - identifier: AppId
+        columnName: extracted_sid
+      - identifier: InstanceName
+        columnName: extracted_instance_name
+  - entityType: Host
+    fieldMappings:
+      - identifier: FullName
+        columnName: extracted_instance_host
+  - entityType: IP
+    fieldMappings:
+      - identifier: Address
+        columnName: extracted_user_ip
+alertDetailsOverride:
+  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
+  alertDescriptionFormat: |
+    {{PatternDescription}}
+customDetails:
+  SAP_User: extracted_sap_user
+  ETD_AlertID: AlertId
+version: 1.0.0
diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
new file mode 100644
index 00000000000..db7963e388c
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -0,0 +1,74 @@
+id: 7a830484-e349-4527-85f6-7850c468c238
+kind: Scheduled
+name: SAP ETD - Synch alerts
+description: Synch alerts coming in from SAP® enterprise threat detection into Sentinel
+  (one way)
+severity: Medium
+status: Available
+requiredDataConnectors:
+  - connectorId: SAPETDAlerts
+    dataTypes:
+      - ETDAlerts_CL
+queryFrequency: 1h
+queryPeriod: 2d
+triggerOperator: gt
+triggerThreshold: 0
+tactics: []
+relevantTechniques: []
+query: |
+  let minThreshold= 1;
+  let minScore= 50;
+  let lookBack= 70d;
+  ETDAlerts_CL
+  // | where CreationTimestamp > ago(lookBack)
+  | where PatternName <> "Logon from external with SAP standard users"
+  | summarize arg_max(TimeGenerated, *) by AlertId, Id
+  | project-away TenantId, Type, Version, EventSourceId, Technical*
+  | where Threshold >= minThreshold and Score >= minScore
+  | order by Timestamp
+  | extend NewEvent= split(OriginalEvent, "\n")
+  | mv-expand NewEvent to typeof(string)
+  | parse NewEvent with Key: string ":" Value: string
+  | extend
+      Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),
+      Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)
+  | extend KV= bag_pack(Key, Value)
+  | summarize
+      KeyValues= make_bag(KV),
+      take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)
+      by AlertId, Id
+  | extend
+      SystemId= KeyValues.sid,
+      ClienId= KeyValues.client,
+      Host= KeyValues.instance_host,
+      Instance= KeyValues.instance_name,
+      User= KeyValues.user_name,
+      IP= KeyValues.user_ip
+eventGroupingSettings:
+  aggregationKind: AlertPerResult
+entityMappings:
+  - entityType: CloudApplication
+    fieldMappings:
+      - identifier: Name
+        columnName: SystemId
+      - identifier: AppId
+        columnName: ClienId
+      - identifier: InstanceName
+        columnName: Instance
+  - entityType: Host
+    fieldMappings:
+      - identifier: FullName
+        columnName: Host
+  - entityType: IP
+    fieldMappings:
+      - identifier: Address
+        columnName: IP
+alertDetailsOverride:
+  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
+  alertDescriptionFormat: |
+    Alert synched from SAP® enterprise threat detection into Sentinel (one way).
+    {{PatternDescription}}
+customDetails:
+  SAP_User: User
+  ETD_AlertID: AlertId
+version: 1.0.0
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Package/1.0.0.zip b/Solutions/SAP ETD Cloud/Package/1.0.0.zip
new file mode 100644
index 0000000000000000000000000000000000000000..c4a30d64440f038096601d9a4847a8f555ac9bdf
GIT binary patch
literal 9716
zcma)?V{j&1v#y`m$;6)6HYc|2OgOP^b7I@JjVHEk+cx(5o~pCYw||_f-Cea%)z$0g
z)wS+hK^hDk4FLU5$~y6A0sbQ}0fYb}hd%~Re^kvy{+O8Cm^+!<+R$4#+S)j~!2v+P
z|E>K$i>e9&0LmyL#Z)sT#kBr!is_`rxy?E|+84k6wSXC}6;ypDI2Jp&G#m$2JLoA6
z>F)?4L|CnSI(oFS_{7adxLVUyunVFmO3(N#VO?6y`V6b{TK*8ppV{ZG^b4WW{3HYK
zb3shfrLH2KD{BjQQDU!hu?muyv<7pK58lO^KgtU^SqeUP2s!bJ)9JXhqvTi%l0RQQ
z5+~aZl4-CzM}iJ(;&)674luK?jR#f40?ZR1146a1*;;y6ZmaDn!%}2$^@9cw3<m9`
z*kn^7h;v{3v}>`cxsD?qA+7B1(}5-20h3(lA+L+0kvKooxtXlQCW6vSnqxok<uL|M
zZrrro#phLPci5*)(hP7&wH|)F4Qa-IBQh8yNRx~0&?-1M6=RG=(hncYlOOwQ(ii{K
zyd4?pdC91mcdd=Y)*EQn;!htd+gN`W)O2ZV5ubu62tl4al0mHqi^5K$AzJu54v|*Z
zHWz7UPKyredb2?pmq#QH?*93DZhO$@UTZH=O|LP9E1GuhV{U4*@6umsQrUP_uYW}Q
zac1{@df=o|>#P$<ij#{7o|HNO?<9LdS1Ma=Q>Z1`7d3j;cZ#qx9VtUpsj|d*mgy#-
zR7?lanb&rLY$H(?CO_BQAK#n<x&VttT%?H(byH2Qj{u^*6YvKP0l@Z(LF-)3b(1py
zt>XYI0l&!x3uu9~rBw3oG`#M2M{XETp%`FJ$67#SPp#vVL@SJ$6Cfu+F`YyCOY2aF
z+{6k9-%x?g6Co$65mK0}Wt`s#(6cp2n8N#UL@z{2jsCEEg<^aQF_}V1wR@Oe$_3JI
z1K)$nOP!@po}xn&Uep85MK3Ri>5yLtUM+<ibmA}n^fVOzS9@I8Ar2<lc0ag+MXU+@
zzUSSkn0b9SL+wF#k&1|s5E#pz0_)bnp#BoB!g=$d)tzCbCjX*E<tMD4%Zy*|Se48>
zCOxT|6|exeD&13XpXaWqI;BX~M(?~XN}VkosM-^$CbgZKD5N27PUU@2dx+N&s2w;c
zQ<kASppfi#LU|03-d}{NS&ryv9}j{xFX_m|Qyw@u0#Wn%DLSFLaP1ycOPls$JU9}d
z*+-XVnbf*Qx&W%51_tA&(Vm~TsoPI!JBpA4qo(#sSDpgmU96hi{NP&l`hXvL5W6B$
zIdv8}1{}<Zzip3EnJMK!gVBY(gv6a5s-aOn(^_3mWb-tHIM=UCupc9utyIf*m!@Lc
zH48qL>dS<?2uc00yz%47<7R4vx!dA;&c6Y%m-EXfA`I4C*g?>x+xvsmsnxnw`5rJD
z9QBSs@dO2;#d-4#wfuX2(Kb(Foj!H|wxjO(;<PYa=H!&!1x1jrr$A3$?#BQLP<=e)
zoqWb9{my_%7LVYH;0oy(h<`=!Ah26~^45{x+HMMvR{<^J<y@rx6&$^oi{Uf`9`9N}
zgkFnEgM1h`R}_JiXB=^YfF?r7)EC{pC-lSLUR`N{P*FI@oscwgamJ?VR1OcLD<4$o
z3N&@5F$b(Zr$ijMEaSIDs6pH&58DpH<s)L34vJiCyNGSKFo-SUvy<RZgX#-Lc;YyY
zG7J?W-2Vpg*Mp$AZMtM@cHvwQ44m0@oT97jSpHXu<nyU6l7^n`4qDwLTf`b${#Bi`
zWH~CjKnHyVl+*D;!5~<Lg$CQY4Xd@&0pzUAOqgt|^V&sW&`bwAaP^cO&ZETyN_c#0
zRSmeBPJo*016s9H>?~U3zHHTmVjRjW)uVo|#k7DOYNisQ;<0Gj=J!#^jG}bfF2}XQ
z<uMYXEuc1RRxg+17kSJnZ;jpL9nUYwoT;E+>tKX6ZaR;Ul`B^R^&&b%g14s->gAz<
zbi!E=^?M%9_3=*w`WAzdu)^ojjj}jwuoM1*{d)Q-EZHpG)F1cemSU`7h@;K7ar7Y`
zH%pcF{q?~~|3zU#6-EN$V}numgxgJe(;Cc0zs3$zl>`~rt!SQ@yvHnbv`H<v8vW7+
zzvTK~IVyg_gf6iCmSZbNUCLzVsEeCV9<x=u!Ze~qtG;?9GNw@)rg~*Kv)JS`(z#Ik
z6^{jNSC9oB`5c^S@~M-Sw(WTDdWW~bgfjL(?!hvwBl+b#X9jB)corkoyO&2&i9QZq
zZa#IKe3nXD@BMD&&N5#G4+S6okx!`S=Z`;MUpBg>cp6XnL~Wf(20C7nX0x{A9f-~y
zs#g=h&30SSsE%eZF0OTA%ySdLBzeX>Lg9@Dq{#1m*OC0QeyN{VkFF6P5mJk>?+RTb
zf42~|daZ+7n(Q~jT-ASVr_Scm6lpqM=>ow+nx1Q2*^bv%zP9mv^I{*qd!aA-HDF`5
z??N&Rq;D&l4x%(yCp(G|qBNH+HPq<e5aJ&zz|FY}lVWI(m0#N4;S{8ypq06+jNTvt
z09OnEK;ggf3hwzo@rwKpUabwxZB+hP+gbes+5azCVg7;Y{{`#iuS=y3iTH1Zy{)`_
zSNir{ErgZqm_w`U`ks|cAeO$#-qfW&Y}v_Desbd*faNFgmF5-5715RAl_Y%w-@+Sp
z*}|s&5Ev>GWEnNhzrjMo@_3r_9o{2<U9pl~k9}#Ku*E9b=jLf7%!@r)Do<fG^kFRG
zD@(#&ADHHaY0JB|@z&7vI<U5}W~XrivAl8>G$|BAZuRiYdGo!1J4STTBfoPgPy2VX
zXE?4|EaOFQ$#4keYzDmUh4g2ya60)sVc*d(PiQ$66i0ur;TQSM9JpV+2%_v%V3>es
zy>I<8s;<ofB~cV*B)A#c&@E^NIcVJl5wBdeaES1L<iT6Q>q}VmInd;bG_CKw>H{t`
zYkoo6C;#`@dv}ZmUSZtiZxKNp#3eC{N+eM?w)vDBLmmg=aNTR`*jQGRso2aSm|JYe
zRN;8PAl7J@C=<1K9RS&0(8rw?qA|XF;DRIViN$A>CWHCG3W(GDACZyi$X1_B#xp{d
zcp2>1L+UX4z1X!0rP42<>f-8OWHvH*7;Pzx2kvMSZuiSPq~|jkMm_~TU1>F1=(Sv3
z<HovSZrA<@20Mb^VX~aV;39VP;pnJki+{ua#HA7e3B`A<(C2PejM%@H2&P`mXVkCX
zEiDOTs1%6>_GvR(XJY~U753psX7^Ed+^MnnIUdX5mczAEw1x*!mg0hVnG^?DE@|g1
zNGW_Kk~qyWl|2`>29bm6t@ZXl4hPwz0z}B6r6#;r(}qqpeIi9EPG>o>2l9^lz8!xU
zw9{YQenFZRiymc$is_j4z9tVGlSS!x9M$DN@Tzu*)4R#TY#TI5UV*!1rhH2%t{(L4
zzRbsxO-XzhDaMErUReVEE?u)sKz_bv_+-2MqHg=3d|c^h0QO^SQPb&k2a7mWKq}+$
zZL9pWfkL$Xp!>YKJxaLF*0{J$;MbP#_Iap!++051*4XxWek}ex$hf``j{(y3j0MIs
zGH>zQL4I0IiVaW5k#Mx}-59wt%kD+tlfpeI58G@&6*Kkb>KRt>qQI`$k67u<RdrrW
zNO#IaJ}!rRMnUqv_cw20L{)w<K5qIJ%3Ngl@A8h}7TTC27W7D3Hwjr#!*uBf;_YW1
zahbk6lIJfHJee;X1Aq8$*7eBs&A1%vvh@CKg{CxVKmmK=+7G8<&mtDbZc#}!O{N>`
zh!y?t%KzO=zv}MiRiK&C_fu%J0r!Q^Dw}X^^A|0R(<{D~RmGFUlW|N|M|Vc)FGyxE
zks&$v985pTA(7&RUh_lc@w)NMWIYkbO6kgFW`h%Cb@Fu2WrHc~Qtd1nf+Ak=+5UvL
z>F(<w|MQe*RbLX{mz}F=l2qT}L$TdVhL&ndv`%R(h!pzLe0#YQV;S8TBkbDf{%PJb
zy#WUTkV9+slbqe(2j4W=lor-crUnjl(P&%9);WUT^Rji$<OE|v<{)Wko^a!&e;8l@
zQPz^1+HHq%EX;L@RM2T}@QxleCcjH?yUY`%SN8_mijs}T|6%bfdOMfqgW3J8kwLna
z!2rFki>ld$^e?g+wgoe&&nCtFIt^Y|2X@(OZ@LmqN4Q;KNgDXH>w)VJ-o=-U=L?bv
z>=L$=+dz-Q+_Y$fJN%XQ-4nG5sY^KST{|aQ<ysHEgJUR5=n*m-McYJW2D2(9M^X%~
z?x)^8G>`2vZt=2EIOJn^jE@YRwoxaWFFja3Li8$xCeyPw3;glcjc^K5-10Nz)1fFS
z{!ayeod^4kL_JKWm$CIVgi0U2B!UGSGcdZQNS09JZW^{V*I+a}t1M%;!Z>)%61e4K
z!&fY|6@S6ZHMI!a*H=UH7O|zmPEiNkKmcaI4n;MC4qC1E*RwCQLZGO@fkUX=fSC|p
z&p1YMZVtHPy6umbTF;Y5Eqoi!Mz~_CF8WpHqRq0?aW5U=!ac4>L$z(_sp=CPK~GvD
z#w64pj%>*6`$((L^_3L)m`g&#>5=7(yEsg6OkXhnhe)rE)1C&I9PUl;Ur!wDBeruJ
zn}e(Ujq)4VC;Uzr@y9`O0sf%1>`$um!s&p;Rv77QK8pRVbA1$v`urc!euqK1g46)U
z?L6e?bkW<^P`f=RcCe|>BxD>}In#%IK&W@GSK|0dowgo{>2i>f2f+6y=L#GaV0A6O
z7XAP{?C3s)qP8kTg!wA=La#3#U%Cv*HtpA=B3|`0MQmI&udf;*8HfrDMV?o`?{Ksr
zI26rZ;w)6o9mz0}?J7FKBR29?xN97by+8EF?hk0zpYQuWOLi{i3<-qO&x5Mj65)Ga
z1x~U$@vV?|Mk^6Yj%ZxEWJPfO+J0RjU*RcEA3;ZXA7FjmVcSnnL-lNzx*`DjaB>Q8
z-vx=Y%b0fTl!1t%+f8`@@Gfru-EUC&u;AVyF0HP&Q*5q+1m%@GOlXNHRs9GnoiF;3
zB7p8ST06q;&%#=vN2J2_$K1X);kzNa4^jT3FKWZ*kXfv$(mcbnt~PM&BW!PpXw>w=
zTe~S<VI_@YHh;Aw>w8NFFMO~rMEz-#1l+-Dl9I;rwh4yr##=?=Z6N#}={L&f>_W@x
zDcbK5cBnf|YaU(>;|>A?j-&ORe})o%&dN?_|6?|kNVt+~63Fj2_7tU13T=iA9D@20
zgqL3X7c=>JMw8s!p4$;5*`wA|nPo<V-LSukfQuqUml@Wb*z-DDVsC>`S#nyG^nzAX
zcYm+p`~<2+MNyYAPDl@Hi<#YtU<FtDvU4IKoKy)T4#TP6TZC1rf&=oGf}=!vx1kxi
zc`UXm{LCKhE(8{Jho9ELMU309TM=(^9L_Q4;wQVWnL5Bc188D9B5r7C3MH=f$AE=Z
z7{O@iU{U@$#}s$D_mQXqM*;mt5JW)qJ-RwkW5FFF`wB`!8<Hk0`sLn%uEF>&WDr-W
z>P_Q_WSR?9E7j<7noqeAYP44OvR$o-momMGr0;X)v-g>MR@ty(7k?rTXQyZTB`0Dw
z*=FjMU6RN-F{7g9E}sx#ACokSB-~_>rxSDdO3-+p`rN{PA1>kz2}a59&%I>^qiMN)
z($vd3aKyG^!QEI+Q3MF_{cj72h|u}6nU*K!3D!BWK$MmVQn71+?J#}oj1i)AQ?0#c
zLDm9EcJ}bu4ds?EINY>?y6;nERkE(OS#y1C6Gs-O=+zCZNk7BD3|uAo(zE`t0%|4#
z-k*bNIfMK5xd%${$^2M{bvwdm2@6mis1o3nrw!otSWyLa4Df&I``hd@prwD(%~64|
zOm+(-&>g*rLZ0r#DiGZq)zRxiqQI^_3}7;`j|}&6g%XQLyxQHl8iHlAh|LT`<0A32
z@!9@5ny~PvqSgwC^Att(JZrPhCp1|ni!fC(kjb;_y31Qq6ec(Hxor+}NVgSP7%dZi
zs*g(Ttq)_|*?X+c{z;g9N3UAe#k`CJZS;g}#dH_>;k=O$vihXY>%wP^K(HM-TyUhf
zJoM`n7bW(G5F&;RYmm!h&0&as$zPWnINRGYSeev{{InNceKl*%T1nB+z5)+CSPa`T
zOun_BouM{Mp*rFk1cNd&yAKf3K5Fo6CzxqfK(*W0!(Z$aeVKvx@wgxMQx(YbwL9>B
zaq$AbNs>FF#%u!N$NU{(@o6saZNNV$@<%jE98U8>z1S5hnMk$!VWlja1ag!1{D{%K
zRv-{fqluxNtWt&lse%^a7MR#g#I6v@44^RvDUH8nRcIp-Lwbz&pxWwa-91cDeyA+o
zB^=J_KRZK2cSJORA~iqADgJ_gO(E(^knora(o=ptHcn~EoKH-|t7HRHO*7Qc*)jOj
z6vExU-2G!<w9^RUS}W^a)@{RK{5AlBT1lCkG%ni43zqp4<%q3R&eB>U)3Rrz2`Xo(
zEAU035igKcbZ@ig9R?0Ce7}Q6#^J=3RI;86D|7szH}<)>Q|NKytE$EK0{lAz<o#B6
zB~TWW+BB6<5YyTsc^<tUxh>=}xI$*~W#}#)6MWuDf2-F~)+=Th<;0_x24{2tvHzBj
zfTMI2uOeOO!1{=s4QkT~mCKWZnp%oA6{@VF4-=zzql&eXF315PYwfS{OiiAW<cI;V
z1g{N3q~0H+s|n6OIUEX_q11+vS*~oREh}=DH+n9Yq%Xv;Ay=^eqB9A0ic_bCQsfB5
zv(VkiuR{?DC(_^aLUkAVIY)Vmd(eFRhWT1MM0GDDQ@v{+DW^Y->jr)S{I$x@&CAWX
z#sACQy%Ff>(B9%(5A<}nxuRQvx%S!M+1%#o0b*cA3_=CpH%XLcKX`Uq7$YxAp^9rp
zX?-bde_Kb<bjL0iUapQ=4*qsH{&_#6=*_OueQ7}!6!2EAD?p3#y<8DxqX+%$z9i=k
zdsQW%>yMS$Uonc^3ADc%$A5VZyODe4257CjX6vX(`g?^n>XFX<rjg+;;!S#%=?XGS
z=7eBazGfBB8?VUW`ROa_>9L#0*-v9$EB>`%5<^Qw0!KNGTnP-(>n&=YGjeU~y8J4?
ze@suMPP2Rz$1JwHlEYCM7?9;9>B3@|a_7O>bAF-h&NN$ZS52v|Hc!oVx8X(SHfxq!
zJL00bK!~Ex-1&?834RSMvhk-8XGZy9pM;0H3>7z0Qy=JvBJHE9`QyU{hX)f>K18H^
z1xqVBbubxU1o^(SHGDT~cQaPpdz>)Y{BITo$t4;&GC~P|A#DH|ui!@F360x=tOrNi
zFixhC1_+^pHQR+`tU`<(g|ZB>2@CD?>;dJuyHy`}3-RcHvz1XO3r+*Ug7s&Kd=px0
z+id$X>lEAOp%6ncVajT}2=(ea!_8D?zvvfJ<}<(6G4Io;Ew4$Am36h%mzX-ItfRWP
zpHCUiYTyt|_KbLZ%9?t%vLJch0fX_M`pKn&Q>`U{Jx|nVgQ@YxJy_j(oz7&d_#HMY
zbf|ua2vxWV9fumdJlJ|=l@&<ggFS=bz(qi&|LdISvQU-*gSk%ohBkV$$_8C~cB}GY
z$L;2e!q4Wt^w#x90i@`vwDD^-T)a`Ps6&OHL*pBuL5^5MS_0!_f;KpF=w6`d{D^iz
zb;@pNACZ=F4hS$1F3PTrYXx~h_rDccrljZ^o&K4ZE*1oLoz0s0>X*@{6q$ucy!b$!
z;WM}=jIcL~o7Zqt{?M~x8l*(I!B(7i8ZJva$YtvZz#;38Li8NQd139RL}?jQ-hHKp
zuW8Hamzbr8aVrA`jactS;T@k(G-JuRen7wW3up?S^x;lMc<0{sPZHkxT4MNt;)&pz
z-2m8cP@Mb*+CiJxTK|5dWg7J4vn{*o4hLlE_hO}=#KKNWU)Tst^XxfUNR#PfCogna
z{Egiy?omp~JtN#kS2Tta;vEI{m_-Ow2yO{^A3-+>MGg}4ghJ5;(Nc*Mt3kdaTdZS&
zp1(mmIzhEe@y;<xz2e|g(CQ@hwRA_%j9}D-G3FbCBZu3^T8W!H3zY4Xi{ez*#C+C$
zd+)gSqTAAVNcp%jQlNMOV+^hx`XO9)y!h2V&u2`)erlMS!!N;Lk-(7OLh7gLYTsLj
zyZJS7)e#3rKr}Z%FjR$OX71)R<NL*-XxAE8M_T%)lwFG~W85=rQr;-~Sye`jz?>DK
z6{I%Q9zH&@-YqSU=9+XL3>Pe03R?-CO0f4==+~1#9(1-OfMW5-8L;*Q&XP6yEm_Wm
z8DcTvuh1`lgVQ3b9&?|clN6rZKR&ix%RRM#eEEV?A*CaJGyoFH-2I$M2k_%r<)#;`
z;x>-G=w{O2H^$?J2>D<04-~9)WAUNbYwN95gE$JFSUD6wv*!sS@SB4d_+jKcgtm4a
zP_PSN=YocH6lzwf$8->3lN*1j+CZ1^;pr|aIY#L_I^>F)G)qio&P{r&5+n$pwcydA
zGw3=R9pa<qs_M%q0<Rg_IohZE_=x9%CDa&CLa4jo$mg5VJd*W(=@fC%q(?3aDop!o
zQE3iHjpCr!&HYuwW)p6VR75=)MHlnFrhPFBLBC#&s&K$(2~psYIt6H9>V3Xw^uQLV
z1S@r7{b2JxIF`dt`XVNkG3vIuEfGYgVPz3Ha&4Ov0&4eKFaRXtKq_DZ6=zUdwa#>O
zoVnim$JBYIg87h`?0r=agWHrK&af!;d3f%wF?cE?mE%woah&iAktw+~j7>z~$~P$Y
z$l}D6&*l|(c&s4b@RpN7ty<&2F(-BsNAhYL7kcc2173{|elaS@4oCXeM<kS1&elX)
z*231z*x2W0@<m>pu2~u9%rizdc{#Oof~_<c-eCI5v<(%e4S`;Pmq3UaeTSrI)ka`r
zLi|xm6O7XGS-tlgk_Ufs9$>T&T}Ms}1{c#syvo8w5_SF(J!sAj(6tUr3ro-|BG!fX
z-=_HsPA;8?W3dRTrdICd<M?Zj%YX@wD6e9y0_UR9rP!83s3%bl31#U>ZG7$8-uHob
z<zVZQXY!By=Ki8+Rt@J&N3HVMA0y1_lFWYBJhP{D*eZ^&9m=2x-=|h)UD^p|xJ9mF
z?=->&_%~5cfaa1K>V)~v7P8&OkXl@^%od2|45**WKS(2@s*`Y$>@TH<nwI5N2I85w
zZGJ$sk|jqHY9N!)SYfQ^R#QT5!)x0Ypg0YNg-(GWxjI6EdTQjFXnA&s51CGL*gauo
zbETI*bVfc}Ly;V%s3$h*<&z^(u0&2frCuu9OR(K`LI*a&64}c#kq9m7jOvzYRUYBa
z%u#qeSYslIDL|K@NwNf`tDYX#jsD@-B0y2S=e$O;$^Sk4*;}H7weo{4mY>!>WBx8h
zj9xGQ<@at9O|n<c&0bRLb+~aVCTknP%Lwt(GkAu>C$%y?${!D#jt4(EVTi1KPH6(F
z6EL=%>e+Px#E`A`s*-L@nR??s(I(wZjw*-JWmfZfnPYXOl$h$hs>RZLk96N_2z5Bs
zDr6}&?aOTLOQ~_uH$c-|IeXNKSWAdveApWk<b3BF6tMh<bh0Xt8Zwff#K(@!to7^+
z!W^Y|l&M77wgZl?ec@up`>1>iy5bd2%{%%vzF0~-L^7+YzRBFCqVZ)IC9cS&Lo6c4
zV=EuyuM~pSJrCBOGptlnaxN^0FPrEJW>sE{j*3%#g0%96aUw%~Ozf<yaRUQ0q)i0L
z_EkaGK;@24M-Dfqde18hmb5h<*N~XJEJyX1#x)Mt+Wx4Ebe^96p6oU_3#VG6$g0#N
zPrC>tpJ`D;jPE6iQNE|s6*%9Eh8_PJpWBA<BAvsC+&2gOr1xH)(xmy%bmOhABDL`@
z>av-##6Ig31&v}fY3<RVWG!-QG88RolGH>IM#^A)4bWXzoj3iuc&Mr(#53AW2x(lb
z6jqJKM8Q`9>glE?W5G@16iUTfEAxQnSJq@gGY3T{YOWiIBpfr6QgccFVw}87GVrxp
zGaB?6CE{GA%+exKKLaX&Ed1h_(zh+$p>MB>@BYBC4a_t-)hA@x$0gN=GmaNR?IN9}
z<=-!13m>|uDCIlb2oi1OYuU)&@`!G(rta)(wM;3X46L_v2%X^)>HVBQubV`;uSEDa
zv(nyV^`u(zTlZd~Yk?KIbua(@f=j<sB6?B1tBe7MyzX^&{T7pI7Z<>|Zs8%C>h!Wr
zD60XE#}u7D&7oVR-2FHRcvW^tw<>P^n)~b#Ji*eLB8RL;$>vp;c*9^ZsFu9<iLKm$
zxm~oW)CMdK)}v>8ZzwTl=sqf@TCuL!d}t@qb!4+oS`1CP3L$u7l1=(;|Mx*EQTATN
zOgU?w^07^mNn5b|eoQG7vkb{Bb<8TWuhXHMo-5(r_h@T#a`V)>1jkj1>9@0m{k-fk
z0e#X-a<{TUEO)0>aS^+!TQAyfuu@=#a)5L%OFNpr^_guMkbSX*YOsZ_=~+$LLmJgg
zZr567vx?_HJ-*x%m#SS?*-@S3{kwFVGoI%5#=7AB%evr=u3?5FiWRqF<v8NIRZ%l~
z0<7sMw1L#JYxpa(_;>v2J_11#6;#$TTUy(f<&k_mRpYt^$NEv5X~@aqwR{$|O?Z4w
z?{Hl~F%lr@cGl~qkzKTm!Vowct5P%KQ!uFlIsmlh&M4xglDOz#?t})Go*k{J^e(kI
zFbhHO(#!@aq@k`@ZPp*T4yZ%am|~(m+N^S=Q<|^B#?iH(P1MpowULxlf5&70Eq}x(
zIu2Ng@cF8|D}2d)ZE!^YK$x0TH7~hmA%?3_Z`UFKvLm+lkveAu?2)T0r{2<`e(LDW
zXm9-?GJjG)zg*JA&ceg8&{Wd_t7;oi%79ScKFxzpe{-h{aKR*aW^aeR9XI3y`bR*S
zmK3J<aT$J*%?&Rd6?D9zoK~fLfS$%)1YHqX>^6POoq`pj7fkLH<XWpmm=&-|ZDB&k
z_MX*5oxPt73RQF&a;ub8_=qTW3CE2!GK&i1Bcn$z{;tgx$3M;jCiv02C6h-zLdP`p
zw6}GuR%kD()|#OeA_SHr4D?_9G^c9SZcLO)J=|u;hwgB6ti=$z*L)z(_sOSZxTsYQ
zwB3J@V~orn8B^*OjojYDJkaSi7Sc1|Cx`+$lK|e`FrW@xph><~{#Bn(ge~ndUNG;-
zPHGP?8WHH9Nth+YC8(;Xpn-qL)HFX}+D61Hh6A1{RZ48NvNI}v(W|-o7;i)jpmI6j
zrfB0DzO&ATnW}tF1YRM1aL~i<SIO!c@tSQjD&TX*bj^gyJ>E#Yd8BMl*(MCX1^NsH
zuyWn_w}EZ<4!(-<a1Nu*$99LZ<z}KS-xzhd8*xpIj;E|Qth(TRo8HSHO<tV>|M?xG
zj>fp3xZP4eu1*;NG&rn6GE0t>%o7|f@W}~u^e%G{lLF^@jRp~Wz&hKaj~gRQdR};%
zC;JK~?oNcQQ|Uv3w0TmSdSfJT!7rqqgz*9-X9}Go7!Q1*E)dO`t>H;eyxH0hd_vwJ
zb*XiNorr}voXo-@rCd584^>7o#XeP8cjKjGp*?-sJhs0r{X%y~pfZsCAK9Q1!UMFt
zZp0aAf6ysv=58TgY8VP^CVm=7!_oSRmRB!e0Eu+>#_D#ZuIkf@(F?q951HDl$Lk-S
zsjJ3!j&5BU60l=-y>R$^VaL38<g<YYD9xWv!e63@zr>6tFnLXpP5ksRrg$liBeRUQ
z5JPqpr^oA^4iZ6RUc4^AZoc1ZzRAVC3}6vPl%<LRZ>yXQ7Zf(kveT`)z<x*Q*KfKc
zn|cro==IcDEDSs0xMc0`?>jTpdCzDpaV%5h7?Y{iXB|GGkJ)*Iw@$xB7<u39S<6&u
z1n!4`Xp>tp+EDedVN4&p!w!3RSbX^2Z{j_9Jdk@Prm{FxaPy-f5h5N^gQUU+YBF)`
z^v-|)5kj#3`!JP6-jfKc0ItnCH*jAugM&Uoiu}9YpNyTY4e_ezZcM=z>_`}LvC^I&
zHYubU708Nc=r|!F#SVYVVU@E9hawnm3|_GzN!sm0engLaP(2!$PSfyY>PE~VaZYgQ
zN$pXBht52sR0ztbkU?RYAC&`{$`Ht1kP~S1(Uy<Fj+LtSxK`1G?|Vku0*Qy$wT1I>
z%IdR&mg%Nj()#C_pn$b%c%U0M?U@|fMJ%TA+YcXVfHbBo)D`EQ25UystD}k!lQ<P#
zyYuJ_hyJtOefq^!jQpE2o{U(|ddGwClSK)MFf<h<7%2wY!pxpM3LUYJ%Yz>gxsjed
zzvP%9dbWM=eS-K);HUF0u8)V1J!L8EcDZ{R6W9l;UwNtCv@I)ou{>&VS%*T++K<fI
z{Vdrtg}Sm@7ST^|tV@!4E4U*2%CtrBlXUA!C<EZvPEJ_AInO&(uiY0ZLmy-B<%`rB
zRGUmDHco~J`rDHH`u;c>a!EUCUu;C}9VnRDc@n$8CaqB{Es>ntm$lO|P#dkW&lgwl
zs;^cNNC_e7%LkNZFJ=LRyDSjyvfBp;la=@dRw&vtm$pD$Z^)L}YFv)!Ve@mBSl7Gw
zz|e_t)wr)SN^@BBY`7AYFyAN?6<AaL<ZzX}R%Cob{VV0-V)Qm!;R67jGyh7tAfRYq
z|IaJ+pE55d0PDY<Q_cSW9{;z_DF^__zs{-uZ2qrO{GSga|BvQ+P=No1Zv0Q%e|2L8
VX^4M>XaE58pKSbRrzZRN_Fvsyn*sm;

literal 0
HcmV?d00001

diff --git a/Solutions/SAP ETD Cloud/Package/createUiDefinition.json b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json
new file mode 100644
index 00000000000..6305e079ed3
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json	
@@ -0,0 +1,127 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/0.1.2-preview/CreateUIDefinition.MultiVm.json#",
+  "handler": "Microsoft.Azure.CreateUIDef",
+  "version": "0.1.2-preview",
+  "parameters": {
+    "config": {
+      "isWizard": false,
+      "basics": {
+        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.\n\n**Data Connectors:** 1, **Analytic Rules:** 1\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
+        "subscription": {
+          "resourceProviders": [
+            "Microsoft.OperationsManagement/solutions",
+            "Microsoft.OperationalInsights/workspaces/providers/alertRules",
+            "Microsoft.Insights/workbooks",
+            "Microsoft.Logic/workflows"
+          ]
+        },
+        "location": {
+          "metadata": {
+            "hidden": "Hiding location, we get it from the log analytics workspace"
+          },
+          "visible": false
+        },
+        "resourceGroup": {
+          "allowExisting": true
+        }
+      }
+    },
+    "basics": [
+      {
+        "name": "getLAWorkspace",
+        "type": "Microsoft.Solutions.ArmApiControl",
+        "toolTip": "This filters by workspaces that exist in the Resource Group selected",
+        "condition": "[greater(length(resourceGroup().name),0)]",
+        "request": {
+          "method": "GET",
+          "path": "[concat(subscription().id,'/providers/Microsoft.OperationalInsights/workspaces?api-version=2020-08-01')]"
+        }
+      },
+      {
+        "name": "workspace",
+        "type": "Microsoft.Common.DropDown",
+        "label": "Workspace",
+        "placeholder": "Select a workspace",
+        "toolTip": "This dropdown will list only workspace that exists in the Resource Group selected",
+        "constraints": {
+          "allowedValues": "[map(filter(basics('getLAWorkspace').value, (filter) => contains(toLower(filter.id), toLower(resourceGroup().name))), (item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.name, '\"}')))]",
+          "required": true
+        },
+        "visible": true
+      }
+    ],
+    "steps": [
+      {
+        "name": "dataconnectors",
+        "label": "Data Connectors",
+        "bladeTitle": "Data Connectors",
+        "elements": [
+          {
+            "name": "dataconnectors1-text",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "text": "This Solution installs the data connector for SAP ETD. You can get SAP ETD data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
+            }
+          },
+          {
+            "name": "dataconnectors-link2",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "link": {
+                "label": "Learn more about connecting data sources",
+                "uri": "https://docs.microsoft.com/azure/sentinel/connect-data-sources"
+              }
+            }
+          }
+        ]
+      },
+      {
+        "name": "analytics",
+        "label": "Analytics",
+        "subLabel": {
+          "preValidation": "Configure the analytics",
+          "postValidation": "Done"
+        },
+        "bladeTitle": "Analytics",
+        "elements": [
+          {
+            "name": "analytics-text",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "text": "This solution installs the following analytic rule templates. After installing the solution, create and enable analytic rules in Manage solution view."
+            }
+          },
+          {
+            "name": "analytics-link",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "link": {
+                "label": "Learn more",
+                "uri": "https://docs.microsoft.com/azure/sentinel/tutorial-detect-threats-custom?WT.mc_id=Portal-Microsoft_Azure_CreateUIDef"
+              }
+            }
+          },
+          {
+            "name": "analytic1",
+            "type": "Microsoft.Common.Section",
+            "label": "SAP ETD - Synch alerts",
+            "elements": [
+              {
+                "name": "analytic1-text",
+                "type": "Microsoft.Common.TextBlock",
+                "options": {
+                  "text": "Synch alerts coming in from SAP® enterprise threat detection into Sentinel (one way)"
+                }
+              }
+            ]
+          }
+        ]
+      }
+    ],
+    "outputs": {
+      "workspace-location": "[first(map(filter(basics('getLAWorkspace').value, (filter) => and(contains(toLower(filter.id), toLower(resourceGroup().name)),equals(filter.name,basics('workspace')))), (item) => item.location))]",
+      "location": "[location()]",
+      "workspace": "[basics('workspace')]"
+    }
+  }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
new file mode 100644
index 00000000000..3de6ea7ff84
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -0,0 +1,1050 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+    "contentVersion": "1.0.0.0",
+    "metadata": {
+      "author": "SAP",
+      "comments": "Solution template for SAP ETD"
+    },
+    "parameters": {
+      "location": {
+        "type": "string",
+        "minLength": 1,
+        "defaultValue": "[resourceGroup().location]",
+        "metadata": {
+          "description": "Not used, but needed to pass arm-ttk test `Location-Should-Not-Be-Hardcoded`.  We instead use the `workspace-location` which is derived from the LA workspace"
+        }
+      },
+      "workspace-location": {
+        "type": "string",
+        "defaultValue": "",
+        "metadata": {
+          "description": "[concat('Region to deploy solution resources -- separate from location selection',parameters('location'))]"
+        }
+      },
+      "workspace": {
+        "defaultValue": "",
+        "type": "string",
+        "metadata": {
+          "description": "Workspace name for Log Analytics where Microsoft Sentinel is setup"
+        }
+      },
+      "resourceGroupName": {
+        "type": "string",
+        "defaultValue": "[resourceGroup().name]",
+        "metadata": {
+          "description": "resource group name where Microsoft Sentinel is setup"
+        }
+      },
+      "subscription": {
+        "type": "string",
+        "defaultValue": "[last(split(subscription().id, '/'))]",
+        "metadata": {
+          "description": "subscription id where Microsoft Sentinel is setup"
+        }
+      }
+    },
+    "variables": {
+      "_solutionName": "SAP ETD",
+      "_solutionVersion": "3.0.0",
+      "solutionId": "sapetd.sapetd-alerts",
+      "_solutionId": "[variables('solutionId')]",
+      "analyticRuleObject1": {
+        "analyticRuleVersion1": "3.0.0",
+        "_analyticRulecontentId1": "7a830484-e349-4527-85f6-7850c468c238",
+        "analyticRuleId1": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', '7a830484-e349-4527-85f6-7850c468c238')]",
+        "analyticRuleTemplateSpecName1": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('7a830484-e349-4527-85f6-7850c468c238')))]",
+        "_analyticRulecontentProductId1": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','7a830484-e349-4527-85f6-7850c468c238','-', '3.0.0')))]"
+      },
+      "workspaceResourceId": "[resourceId('microsoft.OperationalInsights/Workspaces', parameters('workspace'))]",
+      "dataConnectorCCPVersion": "1.0.0",
+      "_dataConnectorContentIdConnectorDefinition1": "SAPETDAlerts",
+      "dataConnectorTemplateNameConnectorDefinition1": "[concat(parameters('workspace'),'-dc-',uniquestring(variables('_dataConnectorContentIdConnectorDefinition1')))]",
+      "_dataConnectorContentIdConnections1": "SAPETDAlertsConnections",
+      "dataConnectorTemplateNameConnections1": "[concat(parameters('workspace'),'-dc-',uniquestring(variables('_dataConnectorContentIdConnections1')))]",
+      "dataCollectionEndpointId1": "[concat('/subscriptions/',parameters('subscription'),'/resourceGroups/',parameters('resourceGroupName'),'/providers/Microsoft.Insights/dataCollectionEndpoints/',parameters('workspace'))]",
+      "blanks": "[replace('b', 'b', '')]",
+      "TemplateEmptyObject": "[json('{}')]",
+      "_solutioncontentProductId": "[concat(take(variables('_solutionId'),50),'-','sl','-', uniqueString(concat(variables('_solutionId'),'-','Solution','-',variables('_solutionId'),'-', variables('_solutionVersion'))))]"
+    },
+    "resources": [
+      {
+        "type": "Microsoft.OperationalInsights/workspaces/providers/contentTemplates",
+        "apiVersion": "2023-04-01-preview",
+        "name": "[variables('analyticRuleObject1').analyticRuleTemplateSpecName1]",
+        "location": "[parameters('workspace-location')]",
+        "dependsOn": [
+          "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
+        ],
+        "properties": {
+          "description": "SAP ETD - Synch alerts_AnalyticalRules Analytics Rule with template version 3.0.0",
+          "mainTemplate": {
+            "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+            "contentVersion": "[variables('analyticRuleObject1').analyticRuleVersion1]",
+            "parameters": {},
+            "variables": {},
+            "resources": [
+              {
+                "type": "Microsoft.SecurityInsights/AlertRuleTemplates",
+                "name": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                "apiVersion": "2023-02-01-preview",
+                "kind": "Scheduled",
+                "location": "[parameters('workspace-location')]",
+                "properties": {
+                  "description": "Synch alerts coming in from SAP® enterprise threat detection into Sentinel (one way)",
+                  "displayName": "SAP ETD - Synch alerts",
+                  "enabled": false,
+                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nETDAlerts_CL\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId, Id\n| project-away TenantId, Type, Version, EventSourceId, Technical*\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(OriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)\n    by AlertId, Id\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
+                  "queryFrequency": "PT1H",
+                  "queryPeriod": "P2D",
+                  "severity": "Medium",
+                  "suppressionDuration": "PT1H",
+                  "suppressionEnabled": false,
+                  "triggerOperator": "GreaterThan",
+                  "triggerThreshold": 0,
+                  "status": "Available",
+                  "requiredDataConnectors": [
+                    {
+                      "dataTypes": [
+                        "ETDAlerts_CL"
+                      ],
+                      "connectorId": "SAPETDAlerts"
+                    }
+                  ],
+                  "entityMappings": [
+                    {
+                      "entityType": "CloudApplication",
+                      "fieldMappings": [
+                        {
+                          "identifier": "Name",
+                          "columnName": "SystemId"
+                        },
+                        {
+                          "identifier": "AppId",
+                          "columnName": "ClienId"
+                        },
+                        {
+                          "identifier": "InstanceName",
+                          "columnName": "Instance"
+                        }
+                      ]
+                    },
+                    {
+                      "entityType": "Host",
+                      "fieldMappings": [
+                        {
+                          "identifier": "FullName",
+                          "columnName": "Host"
+                        }
+                      ]
+                    },
+                    {
+                      "entityType": "IP",
+                      "fieldMappings": [
+                        {
+                          "identifier": "Address",
+                          "columnName": "IP"
+                        }
+                      ]
+                    }
+                  ],
+                  "eventGroupingSettings": {
+                    "aggregationKind": "AlertPerResult"
+                  },
+                  "customDetails": {
+                    "SAP_User": "User",
+                    "ETD_AlertID": "AlertId"
+                  },
+                  "alertDetailsOverride": {
+                    "alertDescriptionFormat": "Alert synched from SAP® enterprise threat detection into Sentinel (one way).\n{{PatternDescription}}\n",
+                    "alertDisplayNameFormat": "SAP ETD - {{PatternName}} "
+                  }
+                }
+              },
+              {
+                "type": "Microsoft.SecurityInsights/AlertRuleTemplates",
+                "name": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                "apiVersion": "2023-02-01-preview",
+                "kind": "Scheduled",
+                "location": "[parameters('workspace-location')]",
+                "properties": {
+                  "description": "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*",
+                  "displayName": "SAP ETD - Login from unexpected network",
+                  "enabled": false,
+                  "query": "let regex_ip = @\"user_ip:(\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3})\";\nlet regex_user = @\"user_name:(\\w+)\";\nlet regex_sid = @\"sid:(\\w{3})\";\nlet regex_client = @\"client:(\\d{3})\";\nlet regex_instance_name = @\"instance_name:(\\w+)\";\nlet regex_instance_host = @\"instance_host:([\\w-]+)\";\nlet SAPNetworks = _GetWatchlist('SAP - Networks');\nETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n| extend Id_ = TriggeringEvents.Id\n| extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)\n| extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)\n| extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)\n| extend extracted_client = extract(regex_client, 1, sapOriginalEvent)\n| extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)\n| extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)\n| evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)\n| where isempty(Network)\n| project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status\n| extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({\"IsPrivate\": true}), geo_info_from_ip_address(extracted_user_ip))",
+                  "queryFrequency": "PT1H",
+                  "queryPeriod": "PT1H",
+                  "severity": "Medium",
+                  "suppressionDuration": "PT1H",
+                  "suppressionEnabled": false,
+                  "triggerOperator": "GreaterThan",
+                  "triggerThreshold": 0,
+                  "status": "Available",
+                  "requiredDataConnectors": [
+                    {
+                      "dataTypes": [
+                        "ETDAlerts_CL"
+                      ],
+                      "connectorId": "SAPETDAlerts"
+                    }
+                  ],
+                  "entityMappings": [
+                    {
+                      "entityType": "CloudApplication",
+                      "fieldMappings": [
+                        {
+                          "identifier": "AppId",
+                          "columnName": "extracted_sid"
+                        },
+                        {
+                          "identifier": "InstanceName",
+                          "columnName": "extracted_instance_name"
+                        }
+                      ]
+                    },
+                    {
+                      "entityType": "Host",
+                      "fieldMappings": [
+                        {
+                          "identifier": "FullName",
+                          "columnName": "extracted_instance_host"
+                        }
+                      ]
+                    },
+                    {
+                      "entityType": "IP",
+                      "fieldMappings": [
+                        {
+                          "identifier": "Address",
+                          "columnName": "extracted_user_ip"
+                        }
+                      ]
+                    }
+                  ],
+                  "eventGroupingSettings": {
+                    "aggregationKind": "AlertPerResult"
+                  },
+                  "customDetails": {
+                    "SAP_User": "User",
+                    "ETD_AlertID": "AlertId"
+                  },
+                  "alertDetailsOverride": {
+                    "alertDescriptionFormat": "{{PatternDescription}}\n",
+                    "alertDisplayNameFormat": "SAP ETD - {{PatternName}} "
+                  }
+                }
+              },
+              {
+                "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+                "apiVersion": "2022-01-01-preview",
+                "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('AnalyticsRule-', last(split(variables('analyticRuleObject1').analyticRuleId1,'/'))))]",
+                "properties": {
+                  "description": "SAP ETD Analytics Rule 1",
+                  "parentId": "[variables('analyticRuleObject1').analyticRuleId1]",
+                  "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                  "kind": "AnalyticsRule",
+                  "version": "[variables('analyticRuleObject1').analyticRuleVersion1]",
+                  "source": {
+                    "kind": "Solution",
+                    "name": "SAP ETD",
+                    "sourceId": "[variables('_solutionId')]"
+                  },
+                  "author": {
+                    "name": "SAP"
+                  },
+                  "support": {
+                    "name": "SAP",
+                    "tier": "Partner",
+                    "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+                  }
+                }
+              }
+            ]
+          },
+          "packageKind": "Solution",
+          "packageVersion": "[variables('_solutionVersion')]",
+          "packageName": "[variables('_solutionName')]",
+          "packageId": "[variables('_solutionId')]",
+          "contentSchemaVersion": "3.0.0",
+          "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+          "contentKind": "AnalyticsRule",
+          "displayName": "SAP ETD - Synch alerts",
+          "contentProductId": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
+          "id": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
+          "version": "[variables('analyticRuleObject1').analyticRuleVersion1]"
+        }
+      },
+      {
+        "type": "Microsoft.OperationalInsights/workspaces/providers/contentTemplates",
+        "apiVersion": "2023-04-01-preview",
+        "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/', variables('dataConnectorTemplateNameConnectorDefinition1'), variables('dataConnectorCCPVersion'))]",
+        "location": "[parameters('workspace-location')]",
+        "dependsOn": [
+          "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
+        ],
+        "properties": {
+          "contentId": "[variables('_dataConnectorContentIdConnectorDefinition1')]",
+          "displayName": "SAP ETD",
+          "contentKind": "DataConnector",
+          "mainTemplate": {
+            "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+            "contentVersion": "[variables('dataConnectorCCPVersion')]",
+            "parameters": {},
+            "variables": {},
+            "resources": [
+              {
+                "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',variables('_dataConnectorContentIdConnectorDefinition1'))]",
+                "apiVersion": "2022-09-01-preview",
+                "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectorDefinitions",
+                "location": "[parameters('workspace-location')]",
+                "kind": "Customizable",
+                "properties": {
+                  "connectorUiConfig": {
+                    "title": "SAP ETD",
+                    "logo": "SapLogo.svg",
+                    "id": "SAPETDAlerts",
+                    "publisher": "Microsoft",
+                    "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+                    "graphQueriesTableName": "ETDAlerts_CL",
+                    "graphQueries": [
+                      {
+                        "metricName": "Total events received",
+                        "legend": "ETD Events",
+                        "baseQuery": "{{graphQueriesTableName}}"
+                      }
+                    ],
+                    "sampleQueries": [
+                      {
+                        "description": "Get Sample of ETD Events",
+                        "query": "{{graphQueriesTableName}}\n | take 10"
+                      }
+                    ],
+                    "dataTypes": [
+                      {
+                        "name": "{{graphQueriesTableName}}",
+                        "lastDataReceivedQuery": "{{graphQueriesTableName}}\n | where TimeGenerated > ago(12h) | where name_s == \"no data test\" | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
+                      }
+                    ],
+                    "connectivityCriteria": [
+                      {
+                        "type": "HasDataConnectors"
+                      }
+                    ],
+                    "availability": {
+                      "isPreview": true
+                    },
+                    "permissions": {
+                      "resourceProvider": [
+                        {
+                          "provider": "Microsoft.OperationalInsights/workspaces",
+                          "permissionsDisplayText": "Read and Write permissions are required.",
+                          "providerDisplayName": "Workspace",
+                          "scope": "Workspace",
+                          "requiredPermissions": {
+                            "write": true,
+                            "read": true,
+                            "delete": true
+                          }
+                        },
+                        {
+                          "provider": "Microsoft.OperationalInsights/workspaces/sharedKeys",
+                          "permissionsDisplayText": "Read permissions to shared keys for the workspace are required. [See the documentation to learn more about workspace keys](https://docs.microsoft.com/azure/azure-monitor/platform/agent-windows#obtain-workspace-id-and-key)",
+                          "providerDisplayName": "Keys",
+                          "scope": "Workspace",
+                          "requiredPermissions": {
+                            "action": true
+                          }
+                        }
+                      ],
+                      "customs": [
+                        {
+                          "name": "Client Id and Client Secret for ETD Retrieval API",
+                          "description": "Enable API access in ETD."
+                        }
+                      ]
+                    },
+                    "instructionSteps": [
+                      {
+                        "description": "**Step 1 - Configuration steps for the SAP ETD Audit Retrieval API**\n\nFollow the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-for-global-accounts-in-cloud-foundry-environment/). Take a note of the **url** (Audit Retrieval API URL), **uaa.url** (User Account and Authentication Server url) and the associated **uaa.clientid**.\n\n>**NOTE:** You can onboard one or more ETD subaccounts by following the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-usage-for-subaccounts-in-cloud-foundry-environment/). Add a connection for each subaccount."
+                      },
+                      {
+                        "description": "Connect using OAuth client credentials",
+                        "title": "Connect events from SAP ETD to Microsoft Sentinel",
+                        "instructions": [
+                          {
+                            "type": "ContextPane",
+                            "parameters": {
+                              "contextPaneType": "DataConnectorsContextPane",
+                              "label": "Add account",
+                              "isPrimary": true,
+                              "title": "ETD connection",
+                              "instructionSteps": [
+                                {
+                                  "title": "Account Details",
+                                  "instructions": [
+                                    {
+                                      "type": "Textbox",
+                                      "parameters": {
+                                        "label": "SAP ETD Client ID",
+                                        "placeholder": "Client ID",
+                                        "type": "text",
+                                        "name": "clientId"
+                                      }
+                                    },
+                                    {
+                                      "type": "Textbox",
+                                      "parameters": {
+                                        "label": "SAP ETD Client Secret",
+                                        "placeholder": "Client Secret",
+                                        "type": "password",
+                                        "name": "clientSecret"
+                                      }
+                                    },
+                                    {
+                                      "type": "Textbox",
+                                      "parameters": {
+                                        "label": "Authorization server URL (UAA server)",
+                                        "placeholder": "https://your-tenant.authentication.region.hana.ondemand.com/oauth/token",
+                                        "type": "text",
+                                        "name": "authServerUrl"
+                                      }
+                                    },
+                                    {
+                                      "type": "Textbox",
+                                      "parameters": {
+                                        "label": "ETD data retrieval API URL",
+                                        "placeholder": "https://your-etd-cloud-data-retrieval-service.cfapps.region.hana.ondemand.com",
+                                        "type": "text",
+                                        "name": "etdHost"
+                                      }
+                                    }
+                                  ]
+                                }
+                              ]
+                            }
+                          }
+                        ]
+                      },
+                      {
+                        "title": "ETD accounts",
+                        "description": "Each row represents a connected ETD account",
+                        "instructions": [
+                          {
+                            "type": "DataConnectorsGrid",
+                            "parameters": {
+                              "mapping": [
+                                {
+                                  "columnName": "Data retrieval endpoint",
+                                  "columnValue": "properties.request.apiEndpoint"
+                                }
+                              ],
+                              "menuItems": [
+                                "DeleteConnector"
+                              ]
+                            }
+                          }
+                        ]
+                      }
+                    ]
+                  }
+                }
+              },
+              {
+                "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('DataConnector-', variables('_dataConnectorContentIdConnectorDefinition1')))]",
+                "apiVersion": "2022-01-01-preview",
+                "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+                "properties": {
+                  "parentId": "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/dataConnectorDefinitions', variables('_dataConnectorContentIdConnectorDefinition1'))]",
+                  "contentId": "[variables('_dataConnectorContentIdConnectorDefinition1')]",
+                  "kind": "DataConnector",
+                  "version": "[variables('dataConnectorCCPVersion')]",
+                  "source": {
+                    "sourceId": "[variables('_solutionId')]",
+                    "name": "[variables('_solutionName')]",
+                    "kind": "Solution"
+                  },
+                  "author": {
+                    "name": "SAP"
+                  },
+                  "support": {
+                    "name": "SAP",
+                    "tier": "Partner",
+                    "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+                  },
+                  "dependencies": {
+                    "criteria": [
+                      {
+                        "version": "[variables('dataConnectorCCPVersion')]",
+                        "contentId": "[variables('_dataConnectorContentIdConnections1')]",
+                        "kind": "ResourcesDataConnector"
+                      }
+                    ]
+                  }
+                }
+              },
+              {
+                "name": "SAP-ETD-DCR",
+                "apiVersion": "2022-06-01",
+                "type": "Microsoft.Insights/dataCollectionRules",
+                "location": "[parameters('workspace-location')]",
+                "kind": "[variables('blanks')]",
+                "properties": {
+                  "streamDeclarations": {
+                    "Custom-ETDAlerts_CL": {
+                      "columns": [
+                        {
+                          "name": "Version",
+                          "type": "string"
+                        },
+                        {
+                          "name": "AlertId",
+                          "type": "int"
+                        },
+                        {
+                          "name": "PatternName",
+                          "type": "string"
+                        },
+                        {
+                          "name": "PatternDescription",
+                          "type": "string"
+                        },
+                        {
+                          "name": "Status",
+                          "type": "string"
+                        },
+                        {
+                          "name": "CreationTimestamp",
+                          "type": "datetime"
+                        },
+                        {
+                          "name": "MinTimestamp",
+                          "type": "datetime"
+                        },
+                        {
+                          "name": "MaxTimestamp",
+                          "type": "datetime"
+                        },
+                        {
+                          "name": "Score",
+                          "type": "int"
+                        },
+                        {
+                          "name": "Threshold",
+                          "type": "int"
+                        },
+                        {
+                          "name": "Measure",
+                          "type": "int"
+                        },
+                        {
+                          "name": "TriggeringEvents",
+                          "type": "dynamic"
+                        }
+                      ]
+                    }
+                  },
+                  "dataSources": "[variables('TemplateEmptyObject')]",
+                  "destinations": {
+                    "logAnalytics": [
+                      {
+                        "workspaceResourceId": "[variables('workspaceResourceId')]",
+                        "name": "clv2ws1"
+                      }
+                    ]
+                  },
+                  "dataFlows": [
+                    {
+                      "streams": [
+                        "Custom-ETDAlerts_CL"
+                      ],
+                      "destinations": [
+                        "clv2ws1"
+                      ],
+                      "transformKql": "source| extend TimeGenerated = now()",
+                      "outputStream": "Custom-ETDAlerts_CL"
+                    }
+                  ],
+                  "dataCollectionEndpointId": "[variables('dataCollectionEndpointId1')]"
+                }
+              },
+              {
+                "name": "ETDAlerts_CL",
+                "apiVersion": "2022-10-01",
+                "type": "Microsoft.OperationalInsights/workspaces/tables",
+                "location": "[parameters('workspace-location')]",
+                "kind": null,
+                "properties": {
+                  "schema": {
+                    "name": "ETDAlerts_CL",
+                    "columns": [
+                      {
+                        "name": "TimeGenerated",
+                        "type": "datetime"
+                      },
+                      {
+                        "name": "Version",
+                        "type": "string"
+                      },
+                      {
+                        "name": "AlertId",
+                        "type": "int"
+                      },
+                      {
+                        "name": "PatternName",
+                        "type": "string"
+                      },
+                      {
+                        "name": "PatternDescription",
+                        "type": "string"
+                      },
+                      {
+                        "name": "Status",
+                        "type": "string"
+                      },
+                      {
+                        "name": "CreationTimestamp",
+                        "type": "datetime"
+                      },
+                      {
+                        "name": "MinTimestamp",
+                        "type": "datetime"
+                      },
+                      {
+                        "name": "MaxTimestamp",
+                        "type": "datetime"
+                      },
+                      {
+                        "name": "Score",
+                        "type": "int"
+                      },
+                      {
+                        "name": "Threshold",
+                        "type": "int"
+                      },
+                      {
+                        "name": "Measure",
+                        "type": "int"
+                      },
+                      {
+                        "name": "TriggeringEvents",
+                        "type": "dynamic"
+                      }
+                    ]
+                  }
+                }
+              }
+            ]
+          },
+          "packageKind": "Solution",
+          "packageVersion": "[variables('_solutionVersion')]",
+          "packageName": "[variables('_solutionName')]",
+          "contentProductId": "[concat(take(variables('_solutionId'), 50),'-','dc','-', uniqueString(concat(variables('_solutionId'),'-','DataConnector','-',variables('_dataConnectorContentIdConnectorDefinition1'),'-', variables('dataConnectorCCPVersion'))))]",
+          "packageId": "[variables('_solutionId')]",
+          "contentSchemaVersion": "3.0.0",
+          "version": "[variables('dataConnectorCCPVersion')]"
+        }
+      },
+      {
+        "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',variables('_dataConnectorContentIdConnectorDefinition1'))]",
+        "apiVersion": "2022-09-01-preview",
+        "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectorDefinitions",
+        "location": "[parameters('workspace-location')]",
+        "kind": "Customizable",
+        "properties": {
+          "connectorUiConfig": {
+            "title": "SAP ETD",
+            "logo": "SapLogo.svg",
+            "id": "SAPETDAlerts",
+            "publisher": "Microsoft",
+            "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+            "graphQueriesTableName": "ETDAlerts_CL",
+            "graphQueries": [
+              {
+                "metricName": "Total events received",
+                "legend": "ETD Events",
+                "baseQuery": "{{graphQueriesTableName}}"
+              }
+            ],
+            "sampleQueries": [
+              {
+                "description": "Get Sample of ETD Events",
+                "query": "{{graphQueriesTableName}}\n | take 10"
+              }
+            ],
+            "dataTypes": [
+              {
+                "name": "{{graphQueriesTableName}}",
+                "lastDataReceivedQuery": "{{graphQueriesTableName}}\n | where TimeGenerated > ago(12h) | where name_s == \"no data test\" | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
+              }
+            ],
+            "connectivityCriteria": [
+              {
+                "type": "HasDataConnectors"
+              }
+            ],
+            "availability": {
+              "isPreview": true
+            },
+            "permissions": {
+              "resourceProvider": [
+                {
+                  "provider": "Microsoft.OperationalInsights/workspaces",
+                  "permissionsDisplayText": "Read and Write permissions are required.",
+                  "providerDisplayName": "Workspace",
+                  "scope": "Workspace",
+                  "requiredPermissions": {
+                    "write": true,
+                    "read": true,
+                    "delete": true
+                  }
+                },
+                {
+                  "provider": "Microsoft.OperationalInsights/workspaces/sharedKeys",
+                  "permissionsDisplayText": "Read permissions to shared keys for the workspace are required. [See the documentation to learn more about workspace keys](https://docs.microsoft.com/azure/azure-monitor/platform/agent-windows#obtain-workspace-id-and-key)",
+                  "providerDisplayName": "Keys",
+                  "scope": "Workspace",
+                  "requiredPermissions": {
+                    "action": true
+                  }
+                }
+              ],
+              "customs": [
+                {
+                  "name": "Client Id and Client Secret for ETD Retrieval API",
+                  "description": "Enable API access in ETD."
+                }
+              ]
+            },
+            "instructionSteps": [
+              {
+                "description": "**Step 1 - Configuration steps for the SAP ETD Audit Retrieval API**\n\nFollow the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-for-global-accounts-in-cloud-foundry-environment/). Take a note of the **url** (Audit Retrieval API URL), **uaa.url** (User Account and Authentication Server url) and the associated **uaa.clientid**.\n\n>**NOTE:** You can onboard one or more ETD subaccounts by following the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-usage-for-subaccounts-in-cloud-foundry-environment/). Add a connection for each subaccount."
+              },
+              {
+                "description": "Connect using OAuth client credentials",
+                "title": "Connect events from SAP ETD to Microsoft Sentinel",
+                "instructions": [
+                  {
+                    "type": "ContextPane",
+                    "parameters": {
+                      "contextPaneType": "DataConnectorsContextPane",
+                      "label": "Add account",
+                      "isPrimary": true,
+                      "title": "ETD connection",
+                      "instructionSteps": [
+                        {
+                          "title": "Account Details",
+                          "instructions": [
+                            {
+                              "type": "Textbox",
+                              "parameters": {
+                                "label": "SAP ETD Client ID",
+                                "placeholder": "Client ID",
+                                "type": "text",
+                                "name": "clientId"
+                              }
+                            },
+                            {
+                              "type": "Textbox",
+                              "parameters": {
+                                "label": "SAP ETD Client Secret",
+                                "placeholder": "Client Secret",
+                                "type": "password",
+                                "name": "clientSecret"
+                              }
+                            },
+                            {
+                              "type": "Textbox",
+                              "parameters": {
+                                "label": "Authorization server URL (UAA server)",
+                                "placeholder": "https://your-tenant.authentication.region.hana.ondemand.com/oauth/token",
+                                "type": "text",
+                                "name": "authServerUrl"
+                              }
+                            },
+                            {
+                              "type": "Textbox",
+                              "parameters": {
+                                "label": "ETD data retrieval API URL",
+                                "placeholder": "https://your-etd-cloud-data-retrieval-service.cfapps.region.hana.ondemand.com",
+                                "type": "text",
+                                "name": "etdHost"
+                              }
+                            }
+                          ]
+                        }
+                      ]
+                    }
+                  }
+                ]
+              },
+              {
+                "title": "ETD accounts",
+                "description": "Each row represents a connected ETD account",
+                "instructions": [
+                  {
+                    "type": "DataConnectorsGrid",
+                    "parameters": {
+                      "mapping": [
+                        {
+                          "columnName": "Data retrieval endpoint",
+                          "columnValue": "properties.request.apiEndpoint"
+                        }
+                      ],
+                      "menuItems": [
+                        "DeleteConnector"
+                      ]
+                    }
+                  }
+                ]
+              }
+            ]
+          }
+        }
+      },
+      {
+        "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('DataConnector-', variables('_dataConnectorContentIdConnectorDefinition1')))]",
+        "apiVersion": "2022-01-01-preview",
+        "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+        "properties": {
+          "parentId": "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/dataConnectorDefinitions', variables('_dataConnectorContentIdConnectorDefinition1'))]",
+          "contentId": "[variables('_dataConnectorContentIdConnectorDefinition1')]",
+          "kind": "DataConnector",
+          "version": "[variables('dataConnectorCCPVersion')]",
+          "source": {
+            "sourceId": "[variables('_solutionId')]",
+            "name": "[variables('_solutionName')]",
+            "kind": "Solution"
+          },
+          "author": {
+            "name": "SAP"
+          },
+          "support": {
+            "name": "SAP",
+            "tier": "Partner",
+            "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+          },
+          "dependencies": {
+            "criteria": [
+              {
+                "version": "[variables('dataConnectorCCPVersion')]",
+                "contentId": "[variables('_dataConnectorContentIdConnections1')]",
+                "kind": "ResourcesDataConnector"
+              }
+            ]
+          }
+        }
+      },
+      {
+        "type": "Microsoft.OperationalInsights/workspaces/providers/contentTemplates",
+        "apiVersion": "2023-04-01-preview",
+        "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/', variables('dataConnectorTemplateNameConnections1'), variables('dataConnectorCCPVersion'))]",
+        "location": "[parameters('workspace-location')]",
+        "dependsOn": [
+          "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
+        ],
+        "properties": {
+          "contentId": "[variables('_dataConnectorContentIdConnections1')]",
+          "displayName": "SAP ETD",
+          "contentKind": "ResourcesDataConnector",
+          "mainTemplate": {
+            "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+            "contentVersion": "[variables('dataConnectorCCPVersion')]",
+            "parameters": {
+              "connectorDefinitionName": {
+                "defaultValue": "SAP ETD",
+                "type": "string",
+                "minLength": 1
+              },
+              "workspace": {
+                "defaultValue": "[parameters('workspace')]",
+                "type": "string"
+              },
+              "dcrConfig": {
+                "defaultValue": {
+                  "dataCollectionEndpoint": "data collection Endpoint",
+                  "dataCollectionRuleImmutableId": "data collection rule immutableId"
+                },
+                "type": "object"
+              },
+              "clientId": {
+                "defaultValue": "clientId",
+                "type": "string",
+                "minLength": 1
+              },
+              "clientSecret": {
+                "defaultValue": "clientSecret",
+                "type": "securestring",
+                "minLength": 1
+              },
+              "authServerUrl": {
+                "defaultValue": "authServerUrl",
+                "type": "string",
+                "minLength": 1
+              },
+              "etdHost": {
+                "defaultValue": "etdHost",
+                "type": "string",
+                "minLength": 1
+              },
+              "innerWorkspace": {
+                "defaultValue": "[parameters('workspace')]",
+                "type": "string"
+              }
+            },
+            "variables": {
+              "_dataConnectorContentIdConnections1": "[variables('_dataConnectorContentIdConnections1')]",
+              "connectorName": "[[concat('ETD_', guid(parameters('etdHost')))]"
+            },
+            "resources": [
+              {
+                "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('DataConnector-', variables('_dataConnectorContentIdConnections1')))]",
+                "apiVersion": "2022-01-01-preview",
+                "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+                "properties": {
+                  "parentId": "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/dataConnectors', variables('_dataConnectorContentIdConnections1'))]",
+                  "contentId": "[variables('_dataConnectorContentIdConnections1')]",
+                  "kind": "ResourcesDataConnector",
+                  "version": "[variables('dataConnectorCCPVersion')]",
+                  "source": {
+                    "sourceId": "[variables('_solutionId')]",
+                    "name": "[variables('_solutionName')]",
+                    "kind": "Solution"
+                  },
+                  "author": {
+                    "name": "SAP"
+                  },
+                  "support": {
+                    "name": "SAP",
+                    "tier": "Partner",
+                    "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+                  }
+                }
+              },
+              {
+                "name": "[[concat(parameters('innerWorkspace'),'/Microsoft.SecurityInsights/',variables('connectorName'))]",
+                "apiVersion": "2023-02-01-preview",
+                "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectors",
+                "location": "[parameters('workspace-location')]",
+                "kind": "RestApiPoller",
+                "properties": {
+                  "connectorDefinitionName": "SAPETDAlerts",
+                  "dcrConfig": {
+                    "dataCollectionEndpoint": "[[parameters('dcrConfig').dataCollectionEndpoint]",
+                    "dataCollectionRuleImmutableId": "[[parameters('dcrConfig').dataCollectionRuleImmutableId]",
+                    "streamName": "Custom-ETDAlerts_CL"
+                  },
+                  "dataType": "ETDAlerts_CL",
+                  "addOnAttributes": {
+                    "SubaccountName": "[[parameters('etdHost')]"
+                  },
+                  "auth": {
+                    "type": "OAuth2",
+                    "ClientSecret": "[[parameters('ClientSecret')]",
+                    "ClientId": "[[parameters('ClientId')]",
+                    "GrantType": "client_credentials",
+                    "TokenEndpoint": "[[concat(replace(parameters('authServerUrl'), '/oauth/token', ''), '/oauth/token?grant_type=client_credentials')]",
+                    "TokenEndpointHeaders": {
+                      "Content-Type": "application/x-www-form-urlencoded"
+                    }
+                  },
+                  "request": {
+                    "apiEndpoint": "[[concat(parameters('etdHost'), '/alerts/v1/Alerts')]",
+                    "queryWindowInMin": 10,
+                    "httpMethod": "Get",
+                    "retryCount": 3,
+                    "timeoutInSeconds": 60,
+                    "queryTimeFormat": "yyyy-MM-ddTHH:mm:ssZ",
+                    "queryParameters": {
+                      "$expand": "TriggeringEvents",
+                      "$filter": "CreationTimestamp gt {_QueryWindowStartTime} and CreationTimestamp le {_QueryWindowEndTime}"
+                    },
+                    "headers": {
+                      "Accept": "application/json",
+                      "User-Agent": "Scuba"
+                    }
+                  },
+                  "response": {
+                    "eventsJsonPaths": [
+                      "$.value"
+                    ]
+                  },
+                  "paging": {
+                    "pagingType": "LinkHeader",
+                    "linkHeaderTokenJsonPath": "$.['@odata.nextLink']"
+                  }
+                }
+              }
+            ]
+          },
+          "packageKind": "Solution",
+          "packageVersion": "[variables('_solutionVersion')]",
+          "packageName": "[variables('_solutionName')]",
+          "contentProductId": "[concat(take(variables('_solutionId'), 50),'-','rdc','-', uniqueString(concat(variables('_solutionId'),'-','ResourcesDataConnector','-',variables('_dataConnectorContentIdConnections1'),'-', variables('dataConnectorCCPVersion'))))]",
+          "packageId": "[variables('_solutionId')]",
+          "contentSchemaVersion": "3.0.0",
+          "version": "[variables('dataConnectorCCPVersion')]"
+        }
+      },
+      {
+        "type": "Microsoft.OperationalInsights/workspaces/providers/contentPackages",
+        "apiVersion": "2023-04-01-preview",
+        "location": "[parameters('workspace-location')]",
+        "properties": {
+          "version": "3.0.0",
+          "kind": "Solution",
+          "contentSchemaVersion": "3.0.0",
+          "displayName": "SAP ETD",
+          "publisherDisplayName": "SAP",
+          "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.</p>\n<p><strong>Data Connectors:</strong> 1, <strong>Analytic Rules:</strong> 1</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
+          "contentKind": "Solution",
+          "contentProductId": "[variables('_solutioncontentProductId')]",
+          "id": "[variables('_solutioncontentProductId')]",
+          "icon": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">",
+          "contentId": "[variables('_solutionId')]",
+          "parentId": "[variables('_solutionId')]",
+          "source": {
+            "kind": "Solution",
+            "name": "SAP ETD",
+            "sourceId": "[variables('_solutionId')]"
+          },
+          "author": {
+            "name": "SAP"
+          },
+          "support": {
+            "name": "SAP",
+            "tier": "Partner",
+            "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+          },
+          "dependencies": {
+            "operator": "AND",
+            "criteria": [
+              {
+                "kind": "AnalyticsRule",
+                "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                "version": "[variables('analyticRuleObject1').analyticRuleVersion1]"
+              },
+              {
+                "kind": "DataConnector",
+                "contentId": "[variables('_dataConnectorContentIdConnections1')]",
+                "version": "[variables('dataConnectorCCPVersion')]"
+              }
+            ]
+          },
+          "firstPublishDate": "2024-12-31",
+          "lastPublishDate": "2024-12-31",
+          "providers": [
+            "SAP"
+          ],
+          "categories": {
+            "domains": [
+              "Security - Threat Protection",
+              "Identity",
+              "Application Security",
+              "Cyber Security Alerts"
+            ]
+          }
+        },
+        "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/', variables('_solutionId'))]"
+      }
+    ],
+    "outputs": {}
+  }
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Package/testParameters.json b/Solutions/SAP ETD Cloud/Package/testParameters.json
new file mode 100644
index 00000000000..0e79d6a7c29
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Package/testParameters.json	
@@ -0,0 +1,38 @@
+{
+  "location": {
+    "type": "string",
+    "minLength": 1,
+    "defaultValue": "[resourceGroup().location]",
+    "metadata": {
+      "description": "Not used, but needed to pass arm-ttk test `Location-Should-Not-Be-Hardcoded`.  We instead use the `workspace-location` which is derived from the LA workspace"
+    }
+  },
+  "workspace-location": {
+    "type": "string",
+    "defaultValue": "",
+    "metadata": {
+      "description": "[concat('Region to deploy solution resources -- separate from location selection',parameters('location'))]"
+    }
+  },
+  "workspace": {
+    "defaultValue": "",
+    "type": "string",
+    "metadata": {
+      "description": "Workspace name for Log Analytics where Microsoft Sentinel is setup"
+    }
+  },
+  "resourceGroupName": {
+    "type": "string",
+    "defaultValue": "[resourceGroup().name]",
+    "metadata": {
+      "description": "resource group name where Microsoft Sentinel is setup"
+    }
+  },
+  "subscription": {
+    "type": "string",
+    "defaultValue": "[last(split(subscription().id, '/'))]",
+    "metadata": {
+      "description": "subscription id where Microsoft Sentinel is setup"
+    }
+  }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/ReleaseNotes.md b/Solutions/SAP ETD Cloud/ReleaseNotes.md
new file mode 100644
index 00000000000..dca7ff9886a
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/ReleaseNotes.md	
@@ -0,0 +1,3 @@
+| **Version** | **Date Modified (DD-MM-YYYY)** | **Change History**                          |
+|-------------|--------------------------------|---------------------------------------------|
+| 1.0.0       |  31-12-2024                    | Initial release |
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/SolutionMetadata.json b/Solutions/SAP ETD Cloud/SolutionMetadata.json
new file mode 100644
index 00000000000..4ff1c7a0c2d
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/SolutionMetadata.json	
@@ -0,0 +1,16 @@
+{
+	"publisherId": "sapetd",
+	"offerId": "sapetd-alerts",
+	"firstPublishDate": "2024-12-31",
+	"lastPublishDate": "2024-12-31",
+	"providers": ["SAP"],
+	"categories": {
+		"domains" : ["Security - Threat Protection","Identity", "Application Security", "Cyber Security Alerts"],
+		"verticals": []
+	},
+	"support": {
+	  "name": "SAP",
+	  "tier": "Partner",
+	  "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+	}
+}
\ No newline at end of file

From 382bc1f8fbf3443ba61b6848fbdb81734485d867 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Tue, 28 Jan 2025 12:43:22 +0100
Subject: [PATCH 02/17] fix validations

---
 ...P ETD - Login from unexpected network.yaml |  63 ---------------
 .../SAP ETD - Synch alerts.yaml               |  74 ------------------
 Solutions/SAP ETD Cloud/Package/1.0.0.zip     | Bin 9716 -> 0 bytes
 Solutions/SAP ETD Cloud/Package/3.0.0.zip     | Bin 0 -> 9702 bytes
 .../SAP ETD Cloud/Package/mainTemplate.json   |   7 +-
 5 files changed, 3 insertions(+), 141 deletions(-)
 delete mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
 delete mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
 delete mode 100644 Solutions/SAP ETD Cloud/Package/1.0.0.zip
 create mode 100644 Solutions/SAP ETD Cloud/Package/3.0.0.zip

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
deleted file mode 100644
index b317a2dae5c..00000000000
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
+++ /dev/null
@@ -1,63 +0,0 @@
-id: 7a830484-e349-4527-85f6-7850c468c238
-kind: Scheduled
-name: "SAP ETD - Login from unexpected network"
-description: "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*"
-severity: Medium
-status: Available
-requiredDataConnectors:
-  - connectorId: SAPETDAlerts
-    dataTypes:
-      - ETDAlerts_CL
-queryFrequency: 1h
-queryPeriod: 2d
-triggerOperator: gt
-triggerThreshold: 0
-tactics: []
-relevantTechniques: []
-query: |
-  let regex_ip = @"user_ip:(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})";
-  let regex_user = @"user_name:(\w+)";
-  let regex_sid = @"sid:(\w{3})";
-  let regex_client = @"client:(\d{3})";
-  let regex_instance_name = @"instance_name:(\w+)";
-  let regex_instance_host = @"instance_host:([\w-]+)";
-  let SAPNetworks = _GetWatchlist('SAP - Networks');
-  ETDAlerts_CL
-  | mv-expand TriggeringEvents
-  | extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)
-  | extend Id_ = TriggeringEvents.Id
-  | extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)
-  | extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)
-  | extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)
-  | extend extracted_client = extract(regex_client, 1, sapOriginalEvent)
-  | extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)
-  | extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)
-  | evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)
-  | where isempty(Network)
-  | project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status
-  | extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({"IsPrivate": true}), geo_info_from_ip_address(extracted_user_ip))
-eventGroupingSettings:
-  aggregationKind: AlertPerResult
-entityMappings:
-  - entityType: CloudApplication
-    fieldMappings:
-      - identifier: AppId
-        columnName: extracted_sid
-      - identifier: InstanceName
-        columnName: extracted_instance_name
-  - entityType: Host
-    fieldMappings:
-      - identifier: FullName
-        columnName: extracted_instance_host
-  - entityType: IP
-    fieldMappings:
-      - identifier: Address
-        columnName: extracted_user_ip
-alertDetailsOverride:
-  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
-  alertDescriptionFormat: |
-    {{PatternDescription}}
-customDetails:
-  SAP_User: extracted_sap_user
-  ETD_AlertID: AlertId
-version: 1.0.0
diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
deleted file mode 100644
index db7963e388c..00000000000
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ /dev/null
@@ -1,74 +0,0 @@
-id: 7a830484-e349-4527-85f6-7850c468c238
-kind: Scheduled
-name: SAP ETD - Synch alerts
-description: Synch alerts coming in from SAP® enterprise threat detection into Sentinel
-  (one way)
-severity: Medium
-status: Available
-requiredDataConnectors:
-  - connectorId: SAPETDAlerts
-    dataTypes:
-      - ETDAlerts_CL
-queryFrequency: 1h
-queryPeriod: 2d
-triggerOperator: gt
-triggerThreshold: 0
-tactics: []
-relevantTechniques: []
-query: |
-  let minThreshold= 1;
-  let minScore= 50;
-  let lookBack= 70d;
-  ETDAlerts_CL
-  // | where CreationTimestamp > ago(lookBack)
-  | where PatternName <> "Logon from external with SAP standard users"
-  | summarize arg_max(TimeGenerated, *) by AlertId, Id
-  | project-away TenantId, Type, Version, EventSourceId, Technical*
-  | where Threshold >= minThreshold and Score >= minScore
-  | order by Timestamp
-  | extend NewEvent= split(OriginalEvent, "\n")
-  | mv-expand NewEvent to typeof(string)
-  | parse NewEvent with Key: string ":" Value: string
-  | extend
-      Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),
-      Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)
-  | extend KV= bag_pack(Key, Value)
-  | summarize
-      KeyValues= make_bag(KV),
-      take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)
-      by AlertId, Id
-  | extend
-      SystemId= KeyValues.sid,
-      ClienId= KeyValues.client,
-      Host= KeyValues.instance_host,
-      Instance= KeyValues.instance_name,
-      User= KeyValues.user_name,
-      IP= KeyValues.user_ip
-eventGroupingSettings:
-  aggregationKind: AlertPerResult
-entityMappings:
-  - entityType: CloudApplication
-    fieldMappings:
-      - identifier: Name
-        columnName: SystemId
-      - identifier: AppId
-        columnName: ClienId
-      - identifier: InstanceName
-        columnName: Instance
-  - entityType: Host
-    fieldMappings:
-      - identifier: FullName
-        columnName: Host
-  - entityType: IP
-    fieldMappings:
-      - identifier: Address
-        columnName: IP
-alertDetailsOverride:
-  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
-  alertDescriptionFormat: |
-    Alert synched from SAP® enterprise threat detection into Sentinel (one way).
-    {{PatternDescription}}
-customDetails:
-  SAP_User: User
-  ETD_AlertID: AlertId
-version: 1.0.0
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Package/1.0.0.zip b/Solutions/SAP ETD Cloud/Package/1.0.0.zip
deleted file mode 100644
index c4a30d64440f038096601d9a4847a8f555ac9bdf..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 9716
zcma)?V{j&1v#y`m$;6)6HYc|2OgOP^b7I@JjVHEk+cx(5o~pCYw||_f-Cea%)z$0g
z)wS+hK^hDk4FLU5$~y6A0sbQ}0fYb}hd%~Re^kvy{+O8Cm^+!<+R$4#+S)j~!2v+P
z|E>K$i>e9&0LmyL#Z)sT#kBr!is_`rxy?E|+84k6wSXC}6;ypDI2Jp&G#m$2JLoA6
z>F)?4L|CnSI(oFS_{7adxLVUyunVFmO3(N#VO?6y`V6b{TK*8ppV{ZG^b4WW{3HYK
zb3shfrLH2KD{BjQQDU!hu?muyv<7pK58lO^KgtU^SqeUP2s!bJ)9JXhqvTi%l0RQQ
z5+~aZl4-CzM}iJ(;&)674luK?jR#f40?ZR1146a1*;;y6ZmaDn!%}2$^@9cw3<m9`
z*kn^7h;v{3v}>`cxsD?qA+7B1(}5-20h3(lA+L+0kvKooxtXlQCW6vSnqxok<uL|M
zZrrro#phLPci5*)(hP7&wH|)F4Qa-IBQh8yNRx~0&?-1M6=RG=(hncYlOOwQ(ii{K
zyd4?pdC91mcdd=Y)*EQn;!htd+gN`W)O2ZV5ubu62tl4al0mHqi^5K$AzJu54v|*Z
zHWz7UPKyredb2?pmq#QH?*93DZhO$@UTZH=O|LP9E1GuhV{U4*@6umsQrUP_uYW}Q
zac1{@df=o|>#P$<ij#{7o|HNO?<9LdS1Ma=Q>Z1`7d3j;cZ#qx9VtUpsj|d*mgy#-
zR7?lanb&rLY$H(?CO_BQAK#n<x&VttT%?H(byH2Qj{u^*6YvKP0l@Z(LF-)3b(1py
zt>XYI0l&!x3uu9~rBw3oG`#M2M{XETp%`FJ$67#SPp#vVL@SJ$6Cfu+F`YyCOY2aF
z+{6k9-%x?g6Co$65mK0}Wt`s#(6cp2n8N#UL@z{2jsCEEg<^aQF_}V1wR@Oe$_3JI
z1K)$nOP!@po}xn&Uep85MK3Ri>5yLtUM+<ibmA}n^fVOzS9@I8Ar2<lc0ag+MXU+@
zzUSSkn0b9SL+wF#k&1|s5E#pz0_)bnp#BoB!g=$d)tzCbCjX*E<tMD4%Zy*|Se48>
zCOxT|6|exeD&13XpXaWqI;BX~M(?~XN}VkosM-^$CbgZKD5N27PUU@2dx+N&s2w;c
zQ<kASppfi#LU|03-d}{NS&ryv9}j{xFX_m|Qyw@u0#Wn%DLSFLaP1ycOPls$JU9}d
z*+-XVnbf*Qx&W%51_tA&(Vm~TsoPI!JBpA4qo(#sSDpgmU96hi{NP&l`hXvL5W6B$
zIdv8}1{}<Zzip3EnJMK!gVBY(gv6a5s-aOn(^_3mWb-tHIM=UCupc9utyIf*m!@Lc
zH48qL>dS<?2uc00yz%47<7R4vx!dA;&c6Y%m-EXfA`I4C*g?>x+xvsmsnxnw`5rJD
z9QBSs@dO2;#d-4#wfuX2(Kb(Foj!H|wxjO(;<PYa=H!&!1x1jrr$A3$?#BQLP<=e)
zoqWb9{my_%7LVYH;0oy(h<`=!Ah26~^45{x+HMMvR{<^J<y@rx6&$^oi{Uf`9`9N}
zgkFnEgM1h`R}_JiXB=^YfF?r7)EC{pC-lSLUR`N{P*FI@oscwgamJ?VR1OcLD<4$o
z3N&@5F$b(Zr$ijMEaSIDs6pH&58DpH<s)L34vJiCyNGSKFo-SUvy<RZgX#-Lc;YyY
zG7J?W-2Vpg*Mp$AZMtM@cHvwQ44m0@oT97jSpHXu<nyU6l7^n`4qDwLTf`b${#Bi`
zWH~CjKnHyVl+*D;!5~<Lg$CQY4Xd@&0pzUAOqgt|^V&sW&`bwAaP^cO&ZETyN_c#0
zRSmeBPJo*016s9H>?~U3zHHTmVjRjW)uVo|#k7DOYNisQ;<0Gj=J!#^jG}bfF2}XQ
z<uMYXEuc1RRxg+17kSJnZ;jpL9nUYwoT;E+>tKX6ZaR;Ul`B^R^&&b%g14s->gAz<
zbi!E=^?M%9_3=*w`WAzdu)^ojjj}jwuoM1*{d)Q-EZHpG)F1cemSU`7h@;K7ar7Y`
zH%pcF{q?~~|3zU#6-EN$V}numgxgJe(;Cc0zs3$zl>`~rt!SQ@yvHnbv`H<v8vW7+
zzvTK~IVyg_gf6iCmSZbNUCLzVsEeCV9<x=u!Ze~qtG;?9GNw@)rg~*Kv)JS`(z#Ik
z6^{jNSC9oB`5c^S@~M-Sw(WTDdWW~bgfjL(?!hvwBl+b#X9jB)corkoyO&2&i9QZq
zZa#IKe3nXD@BMD&&N5#G4+S6okx!`S=Z`;MUpBg>cp6XnL~Wf(20C7nX0x{A9f-~y
zs#g=h&30SSsE%eZF0OTA%ySdLBzeX>Lg9@Dq{#1m*OC0QeyN{VkFF6P5mJk>?+RTb
zf42~|daZ+7n(Q~jT-ASVr_Scm6lpqM=>ow+nx1Q2*^bv%zP9mv^I{*qd!aA-HDF`5
z??N&Rq;D&l4x%(yCp(G|qBNH+HPq<e5aJ&zz|FY}lVWI(m0#N4;S{8ypq06+jNTvt
z09OnEK;ggf3hwzo@rwKpUabwxZB+hP+gbes+5azCVg7;Y{{`#iuS=y3iTH1Zy{)`_
zSNir{ErgZqm_w`U`ks|cAeO$#-qfW&Y}v_Desbd*faNFgmF5-5715RAl_Y%w-@+Sp
z*}|s&5Ev>GWEnNhzrjMo@_3r_9o{2<U9pl~k9}#Ku*E9b=jLf7%!@r)Do<fG^kFRG
zD@(#&ADHHaY0JB|@z&7vI<U5}W~XrivAl8>G$|BAZuRiYdGo!1J4STTBfoPgPy2VX
zXE?4|EaOFQ$#4keYzDmUh4g2ya60)sVc*d(PiQ$66i0ur;TQSM9JpV+2%_v%V3>es
zy>I<8s;<ofB~cV*B)A#c&@E^NIcVJl5wBdeaES1L<iT6Q>q}VmInd;bG_CKw>H{t`
zYkoo6C;#`@dv}ZmUSZtiZxKNp#3eC{N+eM?w)vDBLmmg=aNTR`*jQGRso2aSm|JYe
zRN;8PAl7J@C=<1K9RS&0(8rw?qA|XF;DRIViN$A>CWHCG3W(GDACZyi$X1_B#xp{d
zcp2>1L+UX4z1X!0rP42<>f-8OWHvH*7;Pzx2kvMSZuiSPq~|jkMm_~TU1>F1=(Sv3
z<HovSZrA<@20Mb^VX~aV;39VP;pnJki+{ua#HA7e3B`A<(C2PejM%@H2&P`mXVkCX
zEiDOTs1%6>_GvR(XJY~U753psX7^Ed+^MnnIUdX5mczAEw1x*!mg0hVnG^?DE@|g1
zNGW_Kk~qyWl|2`>29bm6t@ZXl4hPwz0z}B6r6#;r(}qqpeIi9EPG>o>2l9^lz8!xU
zw9{YQenFZRiymc$is_j4z9tVGlSS!x9M$DN@Tzu*)4R#TY#TI5UV*!1rhH2%t{(L4
zzRbsxO-XzhDaMErUReVEE?u)sKz_bv_+-2MqHg=3d|c^h0QO^SQPb&k2a7mWKq}+$
zZL9pWfkL$Xp!>YKJxaLF*0{J$;MbP#_Iap!++051*4XxWek}ex$hf``j{(y3j0MIs
zGH>zQL4I0IiVaW5k#Mx}-59wt%kD+tlfpeI58G@&6*Kkb>KRt>qQI`$k67u<RdrrW
zNO#IaJ}!rRMnUqv_cw20L{)w<K5qIJ%3Ngl@A8h}7TTC27W7D3Hwjr#!*uBf;_YW1
zahbk6lIJfHJee;X1Aq8$*7eBs&A1%vvh@CKg{CxVKmmK=+7G8<&mtDbZc#}!O{N>`
zh!y?t%KzO=zv}MiRiK&C_fu%J0r!Q^Dw}X^^A|0R(<{D~RmGFUlW|N|M|Vc)FGyxE
zks&$v985pTA(7&RUh_lc@w)NMWIYkbO6kgFW`h%Cb@Fu2WrHc~Qtd1nf+Ak=+5UvL
z>F(<w|MQe*RbLX{mz}F=l2qT}L$TdVhL&ndv`%R(h!pzLe0#YQV;S8TBkbDf{%PJb
zy#WUTkV9+slbqe(2j4W=lor-crUnjl(P&%9);WUT^Rji$<OE|v<{)Wko^a!&e;8l@
zQPz^1+HHq%EX;L@RM2T}@QxleCcjH?yUY`%SN8_mijs}T|6%bfdOMfqgW3J8kwLna
z!2rFki>ld$^e?g+wgoe&&nCtFIt^Y|2X@(OZ@LmqN4Q;KNgDXH>w)VJ-o=-U=L?bv
z>=L$=+dz-Q+_Y$fJN%XQ-4nG5sY^KST{|aQ<ysHEgJUR5=n*m-McYJW2D2(9M^X%~
z?x)^8G>`2vZt=2EIOJn^jE@YRwoxaWFFja3Li8$xCeyPw3;glcjc^K5-10Nz)1fFS
z{!ayeod^4kL_JKWm$CIVgi0U2B!UGSGcdZQNS09JZW^{V*I+a}t1M%;!Z>)%61e4K
z!&fY|6@S6ZHMI!a*H=UH7O|zmPEiNkKmcaI4n;MC4qC1E*RwCQLZGO@fkUX=fSC|p
z&p1YMZVtHPy6umbTF;Y5Eqoi!Mz~_CF8WpHqRq0?aW5U=!ac4>L$z(_sp=CPK~GvD
z#w64pj%>*6`$((L^_3L)m`g&#>5=7(yEsg6OkXhnhe)rE)1C&I9PUl;Ur!wDBeruJ
zn}e(Ujq)4VC;Uzr@y9`O0sf%1>`$um!s&p;Rv77QK8pRVbA1$v`urc!euqK1g46)U
z?L6e?bkW<^P`f=RcCe|>BxD>}In#%IK&W@GSK|0dowgo{>2i>f2f+6y=L#GaV0A6O
z7XAP{?C3s)qP8kTg!wA=La#3#U%Cv*HtpA=B3|`0MQmI&udf;*8HfrDMV?o`?{Ksr
zI26rZ;w)6o9mz0}?J7FKBR29?xN97by+8EF?hk0zpYQuWOLi{i3<-qO&x5Mj65)Ga
z1x~U$@vV?|Mk^6Yj%ZxEWJPfO+J0RjU*RcEA3;ZXA7FjmVcSnnL-lNzx*`DjaB>Q8
z-vx=Y%b0fTl!1t%+f8`@@Gfru-EUC&u;AVyF0HP&Q*5q+1m%@GOlXNHRs9GnoiF;3
zB7p8ST06q;&%#=vN2J2_$K1X);kzNa4^jT3FKWZ*kXfv$(mcbnt~PM&BW!PpXw>w=
zTe~S<VI_@YHh;Aw>w8NFFMO~rMEz-#1l+-Dl9I;rwh4yr##=?=Z6N#}={L&f>_W@x
zDcbK5cBnf|YaU(>;|>A?j-&ORe})o%&dN?_|6?|kNVt+~63Fj2_7tU13T=iA9D@20
zgqL3X7c=>JMw8s!p4$;5*`wA|nPo<V-LSukfQuqUml@Wb*z-DDVsC>`S#nyG^nzAX
zcYm+p`~<2+MNyYAPDl@Hi<#YtU<FtDvU4IKoKy)T4#TP6TZC1rf&=oGf}=!vx1kxi
zc`UXm{LCKhE(8{Jho9ELMU309TM=(^9L_Q4;wQVWnL5Bc188D9B5r7C3MH=f$AE=Z
z7{O@iU{U@$#}s$D_mQXqM*;mt5JW)qJ-RwkW5FFF`wB`!8<Hk0`sLn%uEF>&WDr-W
z>P_Q_WSR?9E7j<7noqeAYP44OvR$o-momMGr0;X)v-g>MR@ty(7k?rTXQyZTB`0Dw
z*=FjMU6RN-F{7g9E}sx#ACokSB-~_>rxSDdO3-+p`rN{PA1>kz2}a59&%I>^qiMN)
z($vd3aKyG^!QEI+Q3MF_{cj72h|u}6nU*K!3D!BWK$MmVQn71+?J#}oj1i)AQ?0#c
zLDm9EcJ}bu4ds?EINY>?y6;nERkE(OS#y1C6Gs-O=+zCZNk7BD3|uAo(zE`t0%|4#
z-k*bNIfMK5xd%${$^2M{bvwdm2@6mis1o3nrw!otSWyLa4Df&I``hd@prwD(%~64|
zOm+(-&>g*rLZ0r#DiGZq)zRxiqQI^_3}7;`j|}&6g%XQLyxQHl8iHlAh|LT`<0A32
z@!9@5ny~PvqSgwC^Att(JZrPhCp1|ni!fC(kjb;_y31Qq6ec(Hxor+}NVgSP7%dZi
zs*g(Ttq)_|*?X+c{z;g9N3UAe#k`CJZS;g}#dH_>;k=O$vihXY>%wP^K(HM-TyUhf
zJoM`n7bW(G5F&;RYmm!h&0&as$zPWnINRGYSeev{{InNceKl*%T1nB+z5)+CSPa`T
zOun_BouM{Mp*rFk1cNd&yAKf3K5Fo6CzxqfK(*W0!(Z$aeVKvx@wgxMQx(YbwL9>B
zaq$AbNs>FF#%u!N$NU{(@o6saZNNV$@<%jE98U8>z1S5hnMk$!VWlja1ag!1{D{%K
zRv-{fqluxNtWt&lse%^a7MR#g#I6v@44^RvDUH8nRcIp-Lwbz&pxWwa-91cDeyA+o
zB^=J_KRZK2cSJORA~iqADgJ_gO(E(^knora(o=ptHcn~EoKH-|t7HRHO*7Qc*)jOj
z6vExU-2G!<w9^RUS}W^a)@{RK{5AlBT1lCkG%ni43zqp4<%q3R&eB>U)3Rrz2`Xo(
zEAU035igKcbZ@ig9R?0Ce7}Q6#^J=3RI;86D|7szH}<)>Q|NKytE$EK0{lAz<o#B6
zB~TWW+BB6<5YyTsc^<tUxh>=}xI$*~W#}#)6MWuDf2-F~)+=Th<;0_x24{2tvHzBj
zfTMI2uOeOO!1{=s4QkT~mCKWZnp%oA6{@VF4-=zzql&eXF315PYwfS{OiiAW<cI;V
z1g{N3q~0H+s|n6OIUEX_q11+vS*~oREh}=DH+n9Yq%Xv;Ay=^eqB9A0ic_bCQsfB5
zv(VkiuR{?DC(_^aLUkAVIY)Vmd(eFRhWT1MM0GDDQ@v{+DW^Y->jr)S{I$x@&CAWX
z#sACQy%Ff>(B9%(5A<}nxuRQvx%S!M+1%#o0b*cA3_=CpH%XLcKX`Uq7$YxAp^9rp
zX?-bde_Kb<bjL0iUapQ=4*qsH{&_#6=*_OueQ7}!6!2EAD?p3#y<8DxqX+%$z9i=k
zdsQW%>yMS$Uonc^3ADc%$A5VZyODe4257CjX6vX(`g?^n>XFX<rjg+;;!S#%=?XGS
z=7eBazGfBB8?VUW`ROa_>9L#0*-v9$EB>`%5<^Qw0!KNGTnP-(>n&=YGjeU~y8J4?
ze@suMPP2Rz$1JwHlEYCM7?9;9>B3@|a_7O>bAF-h&NN$ZS52v|Hc!oVx8X(SHfxq!
zJL00bK!~Ex-1&?834RSMvhk-8XGZy9pM;0H3>7z0Qy=JvBJHE9`QyU{hX)f>K18H^
z1xqVBbubxU1o^(SHGDT~cQaPpdz>)Y{BITo$t4;&GC~P|A#DH|ui!@F360x=tOrNi
zFixhC1_+^pHQR+`tU`<(g|ZB>2@CD?>;dJuyHy`}3-RcHvz1XO3r+*Ug7s&Kd=px0
z+id$X>lEAOp%6ncVajT}2=(ea!_8D?zvvfJ<}<(6G4Io;Ew4$Am36h%mzX-ItfRWP
zpHCUiYTyt|_KbLZ%9?t%vLJch0fX_M`pKn&Q>`U{Jx|nVgQ@YxJy_j(oz7&d_#HMY
zbf|ua2vxWV9fumdJlJ|=l@&<ggFS=bz(qi&|LdISvQU-*gSk%ohBkV$$_8C~cB}GY
z$L;2e!q4Wt^w#x90i@`vwDD^-T)a`Ps6&OHL*pBuL5^5MS_0!_f;KpF=w6`d{D^iz
zb;@pNACZ=F4hS$1F3PTrYXx~h_rDccrljZ^o&K4ZE*1oLoz0s0>X*@{6q$ucy!b$!
z;WM}=jIcL~o7Zqt{?M~x8l*(I!B(7i8ZJva$YtvZz#;38Li8NQd139RL}?jQ-hHKp
zuW8Hamzbr8aVrA`jactS;T@k(G-JuRen7wW3up?S^x;lMc<0{sPZHkxT4MNt;)&pz
z-2m8cP@Mb*+CiJxTK|5dWg7J4vn{*o4hLlE_hO}=#KKNWU)Tst^XxfUNR#PfCogna
z{Egiy?omp~JtN#kS2Tta;vEI{m_-Ow2yO{^A3-+>MGg}4ghJ5;(Nc*Mt3kdaTdZS&
zp1(mmIzhEe@y;<xz2e|g(CQ@hwRA_%j9}D-G3FbCBZu3^T8W!H3zY4Xi{ez*#C+C$
zd+)gSqTAAVNcp%jQlNMOV+^hx`XO9)y!h2V&u2`)erlMS!!N;Lk-(7OLh7gLYTsLj
zyZJS7)e#3rKr}Z%FjR$OX71)R<NL*-XxAE8M_T%)lwFG~W85=rQr;-~Sye`jz?>DK
z6{I%Q9zH&@-YqSU=9+XL3>Pe03R?-CO0f4==+~1#9(1-OfMW5-8L;*Q&XP6yEm_Wm
z8DcTvuh1`lgVQ3b9&?|clN6rZKR&ix%RRM#eEEV?A*CaJGyoFH-2I$M2k_%r<)#;`
z;x>-G=w{O2H^$?J2>D<04-~9)WAUNbYwN95gE$JFSUD6wv*!sS@SB4d_+jKcgtm4a
zP_PSN=YocH6lzwf$8->3lN*1j+CZ1^;pr|aIY#L_I^>F)G)qio&P{r&5+n$pwcydA
zGw3=R9pa<qs_M%q0<Rg_IohZE_=x9%CDa&CLa4jo$mg5VJd*W(=@fC%q(?3aDop!o
zQE3iHjpCr!&HYuwW)p6VR75=)MHlnFrhPFBLBC#&s&K$(2~psYIt6H9>V3Xw^uQLV
z1S@r7{b2JxIF`dt`XVNkG3vIuEfGYgVPz3Ha&4Ov0&4eKFaRXtKq_DZ6=zUdwa#>O
zoVnim$JBYIg87h`?0r=agWHrK&af!;d3f%wF?cE?mE%woah&iAktw+~j7>z~$~P$Y
z$l}D6&*l|(c&s4b@RpN7ty<&2F(-BsNAhYL7kcc2173{|elaS@4oCXeM<kS1&elX)
z*231z*x2W0@<m>pu2~u9%rizdc{#Oof~_<c-eCI5v<(%e4S`;Pmq3UaeTSrI)ka`r
zLi|xm6O7XGS-tlgk_Ufs9$>T&T}Ms}1{c#syvo8w5_SF(J!sAj(6tUr3ro-|BG!fX
z-=_HsPA;8?W3dRTrdICd<M?Zj%YX@wD6e9y0_UR9rP!83s3%bl31#U>ZG7$8-uHob
z<zVZQXY!By=Ki8+Rt@J&N3HVMA0y1_lFWYBJhP{D*eZ^&9m=2x-=|h)UD^p|xJ9mF
z?=->&_%~5cfaa1K>V)~v7P8&OkXl@^%od2|45**WKS(2@s*`Y$>@TH<nwI5N2I85w
zZGJ$sk|jqHY9N!)SYfQ^R#QT5!)x0Ypg0YNg-(GWxjI6EdTQjFXnA&s51CGL*gauo
zbETI*bVfc}Ly;V%s3$h*<&z^(u0&2frCuu9OR(K`LI*a&64}c#kq9m7jOvzYRUYBa
z%u#qeSYslIDL|K@NwNf`tDYX#jsD@-B0y2S=e$O;$^Sk4*;}H7weo{4mY>!>WBx8h
zj9xGQ<@at9O|n<c&0bRLb+~aVCTknP%Lwt(GkAu>C$%y?${!D#jt4(EVTi1KPH6(F
z6EL=%>e+Px#E`A`s*-L@nR??s(I(wZjw*-JWmfZfnPYXOl$h$hs>RZLk96N_2z5Bs
zDr6}&?aOTLOQ~_uH$c-|IeXNKSWAdveApWk<b3BF6tMh<bh0Xt8Zwff#K(@!to7^+
z!W^Y|l&M77wgZl?ec@up`>1>iy5bd2%{%%vzF0~-L^7+YzRBFCqVZ)IC9cS&Lo6c4
zV=EuyuM~pSJrCBOGptlnaxN^0FPrEJW>sE{j*3%#g0%96aUw%~Ozf<yaRUQ0q)i0L
z_EkaGK;@24M-Dfqde18hmb5h<*N~XJEJyX1#x)Mt+Wx4Ebe^96p6oU_3#VG6$g0#N
zPrC>tpJ`D;jPE6iQNE|s6*%9Eh8_PJpWBA<BAvsC+&2gOr1xH)(xmy%bmOhABDL`@
z>av-##6Ig31&v}fY3<RVWG!-QG88RolGH>IM#^A)4bWXzoj3iuc&Mr(#53AW2x(lb
z6jqJKM8Q`9>glE?W5G@16iUTfEAxQnSJq@gGY3T{YOWiIBpfr6QgccFVw}87GVrxp
zGaB?6CE{GA%+exKKLaX&Ed1h_(zh+$p>MB>@BYBC4a_t-)hA@x$0gN=GmaNR?IN9}
z<=-!13m>|uDCIlb2oi1OYuU)&@`!G(rta)(wM;3X46L_v2%X^)>HVBQubV`;uSEDa
zv(nyV^`u(zTlZd~Yk?KIbua(@f=j<sB6?B1tBe7MyzX^&{T7pI7Z<>|Zs8%C>h!Wr
zD60XE#}u7D&7oVR-2FHRcvW^tw<>P^n)~b#Ji*eLB8RL;$>vp;c*9^ZsFu9<iLKm$
zxm~oW)CMdK)}v>8ZzwTl=sqf@TCuL!d}t@qb!4+oS`1CP3L$u7l1=(;|Mx*EQTATN
zOgU?w^07^mNn5b|eoQG7vkb{Bb<8TWuhXHMo-5(r_h@T#a`V)>1jkj1>9@0m{k-fk
z0e#X-a<{TUEO)0>aS^+!TQAyfuu@=#a)5L%OFNpr^_guMkbSX*YOsZ_=~+$LLmJgg
zZr567vx?_HJ-*x%m#SS?*-@S3{kwFVGoI%5#=7AB%evr=u3?5FiWRqF<v8NIRZ%l~
z0<7sMw1L#JYxpa(_;>v2J_11#6;#$TTUy(f<&k_mRpYt^$NEv5X~@aqwR{$|O?Z4w
z?{Hl~F%lr@cGl~qkzKTm!Vowct5P%KQ!uFlIsmlh&M4xglDOz#?t})Go*k{J^e(kI
zFbhHO(#!@aq@k`@ZPp*T4yZ%am|~(m+N^S=Q<|^B#?iH(P1MpowULxlf5&70Eq}x(
zIu2Ng@cF8|D}2d)ZE!^YK$x0TH7~hmA%?3_Z`UFKvLm+lkveAu?2)T0r{2<`e(LDW
zXm9-?GJjG)zg*JA&ceg8&{Wd_t7;oi%79ScKFxzpe{-h{aKR*aW^aeR9XI3y`bR*S
zmK3J<aT$J*%?&Rd6?D9zoK~fLfS$%)1YHqX>^6POoq`pj7fkLH<XWpmm=&-|ZDB&k
z_MX*5oxPt73RQF&a;ub8_=qTW3CE2!GK&i1Bcn$z{;tgx$3M;jCiv02C6h-zLdP`p
zw6}GuR%kD()|#OeA_SHr4D?_9G^c9SZcLO)J=|u;hwgB6ti=$z*L)z(_sOSZxTsYQ
zwB3J@V~orn8B^*OjojYDJkaSi7Sc1|Cx`+$lK|e`FrW@xph><~{#Bn(ge~ndUNG;-
zPHGP?8WHH9Nth+YC8(;Xpn-qL)HFX}+D61Hh6A1{RZ48NvNI}v(W|-o7;i)jpmI6j
zrfB0DzO&ATnW}tF1YRM1aL~i<SIO!c@tSQjD&TX*bj^gyJ>E#Yd8BMl*(MCX1^NsH
zuyWn_w}EZ<4!(-<a1Nu*$99LZ<z}KS-xzhd8*xpIj;E|Qth(TRo8HSHO<tV>|M?xG
zj>fp3xZP4eu1*;NG&rn6GE0t>%o7|f@W}~u^e%G{lLF^@jRp~Wz&hKaj~gRQdR};%
zC;JK~?oNcQQ|Uv3w0TmSdSfJT!7rqqgz*9-X9}Go7!Q1*E)dO`t>H;eyxH0hd_vwJ
zb*XiNorr}voXo-@rCd584^>7o#XeP8cjKjGp*?-sJhs0r{X%y~pfZsCAK9Q1!UMFt
zZp0aAf6ysv=58TgY8VP^CVm=7!_oSRmRB!e0Eu+>#_D#ZuIkf@(F?q951HDl$Lk-S
zsjJ3!j&5BU60l=-y>R$^VaL38<g<YYD9xWv!e63@zr>6tFnLXpP5ksRrg$liBeRUQ
z5JPqpr^oA^4iZ6RUc4^AZoc1ZzRAVC3}6vPl%<LRZ>yXQ7Zf(kveT`)z<x*Q*KfKc
zn|cro==IcDEDSs0xMc0`?>jTpdCzDpaV%5h7?Y{iXB|GGkJ)*Iw@$xB7<u39S<6&u
z1n!4`Xp>tp+EDedVN4&p!w!3RSbX^2Z{j_9Jdk@Prm{FxaPy-f5h5N^gQUU+YBF)`
z^v-|)5kj#3`!JP6-jfKc0ItnCH*jAugM&Uoiu}9YpNyTY4e_ezZcM=z>_`}LvC^I&
zHYubU708Nc=r|!F#SVYVVU@E9hawnm3|_GzN!sm0engLaP(2!$PSfyY>PE~VaZYgQ
zN$pXBht52sR0ztbkU?RYAC&`{$`Ht1kP~S1(Uy<Fj+LtSxK`1G?|Vku0*Qy$wT1I>
z%IdR&mg%Nj()#C_pn$b%c%U0M?U@|fMJ%TA+YcXVfHbBo)D`EQ25UystD}k!lQ<P#
zyYuJ_hyJtOefq^!jQpE2o{U(|ddGwClSK)MFf<h<7%2wY!pxpM3LUYJ%Yz>gxsjed
zzvP%9dbWM=eS-K);HUF0u8)V1J!L8EcDZ{R6W9l;UwNtCv@I)ou{>&VS%*T++K<fI
z{Vdrtg}Sm@7ST^|tV@!4E4U*2%CtrBlXUA!C<EZvPEJ_AInO&(uiY0ZLmy-B<%`rB
zRGUmDHco~J`rDHH`u;c>a!EUCUu;C}9VnRDc@n$8CaqB{Es>ntm$lO|P#dkW&lgwl
zs;^cNNC_e7%LkNZFJ=LRyDSjyvfBp;la=@dRw&vtm$pD$Z^)L}YFv)!Ve@mBSl7Gw
zz|e_t)wr)SN^@BBY`7AYFyAN?6<AaL<ZzX}R%Cob{VV0-V)Qm!;R67jGyh7tAfRYq
z|IaJ+pE55d0PDY<Q_cSW9{;z_DF^__zs{-uZ2qrO{GSga|BvQ+P=No1Zv0Q%e|2L8
VX^4M>XaE58pKSbRrzZRN_Fvsyn*sm;

diff --git a/Solutions/SAP ETD Cloud/Package/3.0.0.zip b/Solutions/SAP ETD Cloud/Package/3.0.0.zip
new file mode 100644
index 0000000000000000000000000000000000000000..542b86365f810cc3d076d32768c2d30f3428dcb6
GIT binary patch
literal 9702
zcma)?V{j%+x2|J*V%xTD+jwG3Y}?5bPi%XVOl&6;+qP})_dRuLpKt#-ReP<j)!kLA
zR{y-a>bjNXz#-5<VE#!3S3X^k{|GD)Vh~ejb7NO?4Qp|83u}98S8E4*MjICgdpA#b
z5KxGJd;d?-P)7uTHjPQMZ0%3CY=};?oYX$IU*|;s5&~QcTjAM4H)KO#b3(|$bJ4Ve
zo#K)k#*iSv=@v3DqE{rPY&OEzS+0U#kUUZQB;|-1(Caj0*`C)4h074;o_jDZL`(~j
z4ZhEXvdEQth<C26E#LzsUlkLSWw7Xt=b#?^N_9{wi@Di~K6i+@@k=uqc=UjZ>_w@c
zFCQtBZ3n4zIGv-Rhrg3{EQ=1Xa<9#X)Fp$hQyzmOba6OZ`c`ghov0(z<naKZgNVjM
zPO=;d>5!!PFM)b>IJ7*+F^^ETPWPETWxT<YJQ(4xi+^Kr2{U<FY$Yc`Gs~J2J_wXB
z2TyK1b-kqKHR^Uarz|pzamjTbP~L`hlD?6cjFaUkC3onRon1>Y$6^^rj+H2ngLD{6
z33YBqhkIYLe$RW<#o`zZHtPyyj#X@|zl-R&H?~MkK^BFhP9DkssEP#QWYCc;M2|ye
z)VIyWI$G0XfO*_(P$w3UNI`ggzMeZA^n2AgN!K!JPvJ>qocmi_+V8s$R9jRxUNr!Y
z=s(UJzfTWb)$82!L&$OSksyAh4<fiKoG_Ft)Y=#8%Jc*Op7oz1?o7wZlT@oOai3*-
z3agefKz0_iouJxFS41k!H4h{;=YcK2p_7*AU_js0QUVY`^>%{I;SoVNUNPz2DtT`5
z24VD_;iM5ZIp9EApd6@GgE~#F2fR@KjHgizvSwm0AaSPG3(BAu$Il5<lA&47p+(a>
z*P}MEgG6np!xe~AlKd7`o~&b@-v~BxFixJrM>%2?C8x!B*u6qCyM>%gqo&zC%q-^t
z9k55}{lQP01E5UPr;94-h2UXS62WpVEQY9+#S1+NQhItCPKwqW7jsU8O?B80t74OE
zg1GN}cP(XI-_6o|Fj%A^VJ7ZL;7o(_>|oM*iBjjj`Oxjovei_2(WMC#1LU(3G`Q5H
z@{h?)YUBhjz^}^n7Tp(ksc1~8P_!|+txM46%7tk3#%juLr>BT&OIg$S9n>A-cZBGL
z49Qny84N0?dY(`pgUIbK!v0>4>1ZDhg|jZ}$j4V3JUIf@^e2><&{(+k3az8hcrhCq
z4c6&r$oToIb&Y%h43Gg18>ro0Sg>g@K<)4sF%MQ#^Od184b-nxBenU#qvG{}AmSil
zMZ9|IEOxACC@<-@JzjmLoC_V+0PYeBZ+iGQo!Xi1>Us)?j|t>CpgP%UjAXW2v(QV9
zhGo|(>{zxx8~!3Z{p06NAYTD5OC#*v7SD6x4XBf1U?B-{n9jluq5;F6IdZ3N>sIx9
z@ZT`tJ0jH+G^j53%`^0};ryaQf%H0K!XR8n{qx0Xag_YYDW^M{h+uD#k&+_HAX$&r
zc=$WzjA`bbF^d8|(G}4Z@^cTt714w6ZtcliM`3HbC5VzbSP4J(BCSAJ++sea>o7!;
zM-d4|-48m{!;ra>7~}%8m=i>FablMKxb{6!lprT9)dgY|u~08!^4P^0`<hcle9W#w
zFwrZp^qIyy@P@oHsh(x|z%62J(l#Zyc2FLFamP$B)KZ5<9LI$r9C81hWar;M0>Ft+
zT*lExpu@!m-XNpBiAvk1%eH10&PBi>SUtw6x+;#91j=NdPYsZ@jU0B+>nAy4);J2U
z>fK~2e_#lAFjhgk9zPTffmhjRbFAC5+qoV<&C1V2Dzv(-T@;7Tba3{po^rx_w^%@n
zjc=`L_N-<S{mAzRtJx`alPK|8wrxT)i(r-Q)w<VZS-^>~QjbyhUbJir{3vEcQ$1~0
z<k{iz9u3zM)*P{FP|ORAJ?2)j!)fwM5)xs}RtD5Ln_`b!&LigJEB=Olkr*b!-&2n8
z_0~o{;ckF7oQL;#H2;IK#iS~x{CRYvCIuJfO0eLxo_PvKG0QMz?$z8<iai2(wD~rU
zG0f-rQ@wqEeP}XhQOrc0nTYh*_^(&;?Ixq;Z>+_@#tuvMWO<LRIKKFT#~cjwNnQBg
zfbu_qsSN^o>Vaa!?r;M?$5xKI)F{q>EN(t|&(`dU(Mgo71{jgaTLQH$jVf?waVY8J
z@}c*u9*f$ppo+W;xwtcw(kFj9wBx@U9p3gNS8#^#4pm?uDJ>VcG1;*pu$gMyy*!dj
z_jB>{3TojNvQ^Xj?RTqnRs<+}EBgzLenLM#f0%!L*&CGOYd;l|v~~V6*7udMnspfO
zKyvHQxSHtMY<G|Vb~J<Y@T`+!om+_fQerM37TfrP9Q(cRF<N*wAWL}l=n?Y~BfFUJ
zuG}>my@jOPXBXDe<g^*-p(U`LKATThqT_O9&;t?P^jzn`alE$jwT&N8knr%`2Xir?
z4Hv(C7oKG-cU#qT0MuEX>?lD5>MZ}%)?|D`OnR(>u;wlP6;FSx_R{tauPg@*qsCif
z`UV98;(-YQqWs_TYHP~>KjanlA9=MiwzgL{w{x`pM`ZuM!iwLMZdv?)h4oV4QguT*
z>6>Y9tDw+>v3*w;aV0nY(Du5acO|<A8(^_FbqRp0I9V!8ZF~b^BP6}jxdOc+xl*~3
zVf-Vw@J3s)un8Cj|G@%PK}+{<u+gzSp5}c=^(tLgt>iY~T-qgXvCH&(`k0FG<4l$-
zQP~cEn284{ka0GIWcXq^@ULyW{b_m~T-#W4)INb+UbzaL6pg2}eR$@+`Ch;qBf02R
z+PPGskKXJZNo<zPdNEou8AdysfvA5WC+ri;q?{-2KN{hSsHB1B8t60mqP&@d2uu=3
zQkV*f6!vKdXjuMXV81|30;G<GutFcc1<RrYtG^)OSF9Ba7aNp0cuRhLiL5>EvG^j-
z=zp*IfRD(TUy$=JG#q>Hj@QO7PMkCp7r{kZlC-Htmhj}5PrEVUa~6v-xVB43V7Hh`
z$S#4s#c@d&O9~8SkAnqTXeQ}{Q0#?%-032j5h#T$xX_>2d;)cttPfT|UEj^cN2g<3
z{j-_Rh}Dziab6E;BN_J+)+SWTzeH<GYXvCm<?%7w(wGmt&?h|am-)!gXR=KFi~PGX
ze(Pe?@pO%w8AN(s2O%2oh<ryXaF0NUJ2FOL{HR!rjxtY7C+Q)U+O@@)yIC>i{8}QK
zdbOU>x_<xplSrOMg;aQ-KC5*$0Ys?EDGJ%@9(c!_o<NZ2y&Uy(q;87d<N)|nN(4Wf
z>Hyn4<D3mSP0&IHw^_cr_rk$Ac1WwW!3pJXh!YqrP6;DB;kTMGe5&IgD?xQS%Z)Qw
zaNPgxf@0jxcyap$Wmzh5lpP_dZ`t>nI(SS0)b~EBFMQzF=#XOcRD#_$Zj!lz@XSv8
zmR4Ck=-qvpPoS8R{xDUEmmt3S2@<_@%{Bq``I_aQ>n=ds_Cfu)(($Kf0CS6$LBBgp
z+_efy4PS6uozNZ{$>D?H^Xm2}`8rqo;x<`GPpRAgq2_UO`FLA<+yD8o^z$I=`a&wc
zhpu-lB#D`IOUM!G({@sFWI~aQt4;96)Pq%F4@f``|D-lzzX4s!(wA>!QpJx3x8gKv
zt3OxMc`+f^DIfc|9R3M};(s4#-ogY{e=$F91{BL*WCiW=kKq;DTO$?q%GfoD+R(yw
z0YdQivyXTzUmht77m1#%7mj;Sf;Q`W75iu0j}6%RqFZ68E&iZ^Kk@8G(QxLFO5wDq
zr(32njCCYPeE1d`HZ!hz1^O20Wc3q@{{4gZB50dSytXMoPv`ndple(8B>iL-pVQHu
zRW1O<3NAjZ=#_^RNIfiGy3l8Rs5V|do}FqW?ousRz07KSf~rNC>9cG+g;TDVLq}A?
zFEu-m{5IWv9U63=_N);=7VxrjHBFWtFmfolo6XcxOO4(shYgv=SYGI)cw#1R5O0c8
z7dJ4?e`Yl3Oayvp$9a;sYk2TYmrHG9_hf18%n*mZg=&{4@;$Fm??y>9CTb0uf$jr8
zPHxTw3j(y0+0<)0Ok`uNPoaUyctddU{%v7chSz1CBDcCX*jAEiHvW$mzhboW=sZ~6
z&zc%%>KYF+8n|m%UC0Sg{N`A&g8pn$*{|2;_i*M^xb|Zx({X{{6_cSu$haQ7{@`DH
z$$GvZo4_gKNV^U3KFrUEL%btcY2Q83oRGbQ=iPO5rB|!-7CbnH{s}WmVXxwlqQ+!Z
zqv}GA$<zJRw}<Y%UBN3=5dn{SjDY!(rQi0~)&9!}PLLR*2C>QV?9GN?ymcdriX5-<
z4E1yvC@b`-9Hjr?w2@+j<@z$VzJ^%sFZhdS!QKj-p(&Ov!mOK)W6dKB9p5&`%(FNV
zL8lCU`Pk$YTXQ8yBzsLW#^LqV#JWXtskl?Z87~9`D|m;hmPsGI&hP6v07f}P!uY^B
zLUGVa6u);IGc`XC!cB9B_{NxM_PmLg9u*cVR^8j6;YRjdeLn5AHB)-p<!q?B8#UWx
zmLvE{TNI#573jr}$bXEp`qom<lt;KOGMJnAo9mE_35M|ts_+!&)qOt5GQ+~H{oVV*
z!8T#Lc()_Q6$C81m2D>Ugr0mFHU|P65@2^xRT{w#`sQSs%I~K*+_l_Co&X`~gb#WT
zn;4=F0_YYayAq1ob3)!7Jhg@5|DYpd&&-}W839Fl4}PUCnDuDsmYk}E9eDux;&-gW
zssm$fl`zH`g+-Y>W>Nx#AV!((lC1WGQt+kT5pA*hoD~7|^OT6m2)w?kg=N9Y(G*2r
z!@uJQLSW*w2Wg6s1rH<Q#kLyg1kcz=@iDGRJ@&v*Uj|4}toWZs1Qh#LONIo)*_UB+
zY^lkD?}KK9z4%t>dvkQ~6eqPVyt5)XL0o(`$Tk!Tb0<-8-$z+K4%zl{^N<7QRlxB;
zLOBGbxSm49`PEE&S<3tgqPu^Jfx>vZfem~^=Ayud09_irALrSeC8^5lUYSr5aI1PT
zS6e>}5ad90w`pAQI^SfB!=i~t+s;M8Tq5cM-~(pk+j^o`x{TSw=WWW<y&V|k!o4Jk
zlJ-L>t@*RrrW4SYycF^^%-26M@r_1=e}k|5Sv`=fKOd#J^k%$|VY2g08GU97;r`nr
zKF$7U=gu33)i4?4tGSM(gtB@iwE}$QY~{PZMn<A@Fxc?|LhSdSzDM@;bWfHn?EYOE
zFCC7ccLw(l#TQ(gXOG1xr*%}m+fU}P=bh(}7vrurK?m`%P9fky<Ua7e$dWc%F;0e!
z2}Po@*Eb~Iu0Ju8byH8wVT}ti%))i$b|G2FkvsE_On{=CTLGs3N#j!Z`3v<{&Bx4H
z+6roq(&}Vl{V+Z@w{|l^*VZdQ&zJ_GEtsgNdtPC4{|(jKQ;=%e!3sMVMn4h>tUpS9
z-o1<1&0REMU)60^>0-k?cV5tW{{$Z;-60S>aNl=G1Lm^4GXzm{$o5JhRaByb+pBEF
zxfRqH$wotf!CAF*6VzVz&aE`>Y$dcP^_l~}8fQBNUS)1u;MgzE+tBjNN&Oo65DDoz
z*Pbsf#8QT<luw^xwjD-ZU9+_XCDL&sNqkO}ZI>`do|JR9;pP|nTkB0Y_($YWg;vkY
z<M_&-d2Uz>ANnA%T5Dx)azz!fzS)-^+_}A7SK5b~E(A7U<81yQ16$NA-wYS2_By3=
z<WWZIiyz9QRT5Cag#CHp^BZnra(3nWp`tQ-YvaVV9$}<Sgm=WrKGj0FzHbt-f=cJn
z_)z6nHL_uXN!9coB#$y0EhS;*as7_;S@HrjJi0W5{MjD}Cv0F*J(Ije!@#R^7EBhQ
z-8>C=$Yi(hKEqL_B-H6nf-=e5(Jd1I1r5&oaS+RiYjmWKCxTQe=GF1e!vs8=O>*WM
zMh}IrP0&H$Xu>8)g;qDX%}3&g&sm#OA+g0eMU0bbfkJ`f$X&sbiWa4b|7~-mZ>EFH
z!c>LWQv*XrUqdAG;of7dAQ5ry9k)hB7b_J?r1=wSHS1mMhucOn<=PW~-(AoSk!U-1
zr0B?Kd060-0xbbW6baLwJ=Fd2_hC4oKHB{T-r=?aP9D3qFyqAlplPR5rzjE8U*wGs
z*X&S%CAdb|8DYN^p)aLPG$cQ>`v58DuZh5Mf|XIzqj~%5(2t9%zb+&>IqS=5st0wx
zZU-|kF-h2vA+-ZIh7^i07UTj)KzDhM1o=T#II3Odd|D9U%c)$=LasLeC;PKWIRDpP
zASt@<3M7(c94U;eQ@YqcT`=P9q7%C*I91}=!D?op<w>{f%58Fz$d5_hG+RThyNAhY
z5A~(H#3OkFXJ<$lE=b1E<kkmyrC$iIX(V0A(r+`N5o%s%W@$~??<pzzH5}j?87A8L
zJI3Zs;k@n3-6(^9Kg=M7^m51)U$&gbZ-XIez17+&6XWcC;aES>jyTE{f7(fB|Lh%Y
zg3cT63VBg(#1CPY*xT%VhlK|jx!*yj;Bw{pRkofFC+~q+mqJ$EXYjZKTh-`$6N*s~
z;FVi<wN)CN(mpLn1#Ik;ic8r}gqL;c-yk#jGVE0S6>`-l^Jvaf(JgP3<P@o&iVrvd
z+xyDH#8N(r)0KJgU?IjOLvVRT&gsuX%B~@qj?>mN008xGR2^4SC56Cc9V7IfXBcvl
z?Flg~;F@CKnUAOGs)I`}568gg$pNTFOLZM=zl&Vet)FX^I8G^>$TY3JbtlkINq?&w
z7TP26EVTDZm{LTdiS@R>Qr?B~7pv@XjoM8=GTjx#sU3x-I}VuQ<@CmJ-N38_{PPue
z^>lUY4Di0YvkEvqaCP`L3wS=*+0?81vGv*N(ca?`7{I`Y8G{UW{4-Hm;Plydag?<3
z7iDt;?%$7s?(cP6Enkvlne{)vmZQ54rUZ_5i{B6`eAgFcVIUthIs&!H(dxADZo5&g
z?&Wju&^Ppg+QC@3BeasGJOfPk)A(-gRrYe6JwY0qulaY&lQ3UV{CcDxx-`>WWkYDM
zGrVDE>7C#VYqzaux>L1;JYv71pC0<Hox`=}0P!DflY}~=l9<Z5WZD6UJ;8EzB_mhP
zKI@+v$LAa@8m!A_@r?4j8#(Odkx^NmlHM$a+4t`3gXcFYzC5$dZdHs12J_4U_ZyzH
zt~0hdjgu~#D|omD+<h2SZ?Ibda+_dUac1Pid$c^1waBE2M&{7R<f$K(tYj~j?CwV-
z)Mu1_(#6q0k)uc*+f@;CmiXu_>@A!vM6Zt)1j~%l6))B~MPsyC$2YMtQtkd9g9=gI
z!BU&W9?3q{eLUeBprp&11Gx~ek1!srL*yo$14#r5aSgd6l=6;rN%Hz5obKF3Ebk(l
zO95}{azR;mH9iXa`tt^i4<>NV84NPTNnPJy*AqPY2Sfv2-$iayrg<O3MbCeij>e80
zT*KzsJ=`Ep(kc@Ltg?4t{m8v4{0@0A%y?zLL^Vq{Z3QxG%@I*r=F|CoB!>lrP&x?Y
zR$_g~^W;JtVUA=|=B$^TO%GW)>n7L6Fok7_p3%f77)No^nG9SR7I2=DhD*k~G>qkj
zHVe<A_%yokwt>ip#&oq&9R|n`J1d!OANEasiP`hoNQcIq6AZ%K5ysV!jrwQ@r6dM@
zRQa#_AX3<TVN!k5tw-d`3CaL2H>oNCTv_gG437Qk4^g@26{LPe0(8R&i*qs`gI#<I
zGWPysGUbuFiUI!AK0BMLE+?HMQ5RJA)yT5C_9;5|F7o4pSI9;b&{Ta8eZs#HEdHzI
z65*uR@fqbKhY;@3rBUSqkjng$WO)<JG4Z*O)=A(&2|@@d7@>@vvz;I?xI!BUXx}Xs
zpwzu0jX_Yz0B|M|Xz6M?WxbH97o|QND0*ENzhyW26<EyJf+(blna;s0sE1B6#j<8~
zuvBB2&8kuuSbI2nH`q#~I|Eb+cjCe15BS(-m`2<Kh6T$wWx7Fa`UV%z8PU-sXL1ws
zI--JRAW2<qJhPOC<M{*`K~c)@S*QMf4I1C`a~Pm4Y77jStRzYzHuPV2Gk4?^UVGKz
z-M6<DqW5j+TrB<D=EAZA59mK+_0R9vPmEmp0O+Y_)5RVnJI<XTx71-kP9RGXfY$*e
ze6@*VJ2etoJL?CXYO6MYPw!?f)3Xof%X%FYo2DKTZ)vy{(=+2u(bbOSdkzRj1UWjq
z7MY!ID9aMf1FvUjq(tW6mxEw)B<IiX-NiXbnG$El)(J<+XCgf1!$%W%`vXT3oFCgj
z6yB<f5=b46Iv;fD{HfH7rs7unr&~}oTF}TS;Qh)h0B`48D&a2wv{wk8xh4}@TS|0;
zL}vd%eiHMq-_$Z#P1|%AzBR&KGLtOQ&=TaT69AlUT~or7%|^-P$Ko~5XZ?z?p7dw(
zPBGO10V7o+OC_;_=LF<qW=-M5VLm`+UClho@od>5m_2y%ZxCk2Dk+DHEZ4J!pFC2<
zwsWI;r|Tr}mxpqoW)O?SXZOI$#tAR@Tck7=sZL)$UgZO0y8N=mnU4RX<FBJ?D^^Wt
z5rJ>(5;Igfil6F(vUIxU3kb8Uk_!1$TG)?We|Cy+G&?Q1YRB9ruthJaOTeuRd>{8s
zRp??>F=TH|gclwX^Z4A<-(nJ&ff;{>@}M-TXC_cGwhv|DKkXr_x<H5}psLvsBt_(Q
zY${xw77tI5>5MM9vEKLx2R}7_;UCFjl$+)UUS5p$=v~yYDoQ9S+swEnNamja+A>fX
z%AJcM(_{!0DwL#xuIq44T=eze>UJg3^qE7{NF(~^RKZ6u;Ev)GpL>Nl2-u*;7!?Z}
zBzstE`^Gv&JBEUs-<TW9e*Q`HQygGkx|`j+LjtTPO&EQ!9O5Qh;KH~5$i~D5e&QM0
z^f6lKqo>H2Lvh%=noon{3ZbqnqYexb*h`sVqG7x7w0hX{qc6T<C9ZqJxi^tmkShBB
zigsmz@c&JXmQEjUQ?3E8t@C>KI{6rR96IC}8d^)+W>Yu6meIWl1FFU=Ag!IH$MCaf
z<a72OknGcP&7LOU7O#cn*1acu-LFWKmSoU6?2NP>R=Daw*SJL-T!g~-wYop%TF*RA
zuYR2VWF9=hdV+NcYNn&7z+C3Fks3OW+i#EUw1v51Pw1&HmO#(hu4&Id*u;dhY$&9H
zDmUiaA%eb>s?8b<kch3W)3FU{FBJA=vmFA;&R~!c@<Q`(Oya;?7zbrqUtSX8<Oyu|
zu9|utS<x=u&n>kO#HJe=s+{>pW%B0(*m&1Xo27<G76<Q15$0$^2RVjfVKiJQJW6cp
zGaZEG@-Amv4EV7{NQza-CsAxPOVUOt(>6T=q}3<)JB3=Kya}G6^JJp{Vhh4wb%S<_
z<3_k`zV&-PVOq7ecYggb%Lm<5NydgV2mU)`<2u_vY{wp}<lCfEPTMZ$z<CidT;ulX
z{fhIE7ksBA9l&|8y{}tx-wc`mCc$DYy1Q++jTIQq7b~#k7|9q2wnw*U7Db;~e|2H$
zGpIL7QtQ|?`J6S<F<_m7FUVG{v76v+;!4Vpo{eD3-=7hEREpB;Xns~=Gk?Xt^eyJ^
zR#ssZ%cN6|WGi-EGB%#5{t<gVt@0+TKKh~a$a5r@No$8g>DD~9RN7WEw?`x=p1O94
z%iw?J6{AZ{%TYIZ4M?dl1tg^(0MK7LcxuPgZ?!LKOGEt3DyJADB7+RfT-%u<!U_aj
zxyVl~pf?c}FQ2A2cV_=ywN*`;*<5en2!^{)8SKv6Y;W`-aW(wB0zn4%IbtlI?Tce+
zHqpH5V-S21z>3oOc+Vq$2PrpY`T(5?hVFjDm|;wF{`EWbY}`%#3i>)<Q}Ov{lGk&p
zF2i$Wv1pkpT#JFIafT|r9mNk_n~cU^(pC&WfGS#FK6<b*Z0NSrX~>W)VPh(9`5#v-
zdOLvr9AH)z>JYqwe|aeh(k<DbP`t091a|FcUOPDduf%M{K`)lNO+GNclmar-CbT&X
z#cH6iMqOAgDp1y`Ff|Dzyaa@uMV(IWv!^NL8&d5P_#>}_f<LSH0k8P3rR-+e`i7%d
zv!%L*<_)>xwTYcm@ox`9oUK9^7YkGs<J-}~n|HUK6YVD}&BG#2bEHo4gd8~JJ_*Iw
zKWkh%imQWDPv`7CT5Sv1pwS5VJ)yRaIIp6aGPcDMw#o0-<um3zqW*XUk}#w?&sSR9
zat!A-#dwje(P}pKs#<ZB^W&?%EVadqsOd0d>l}l1`o@q~!na`IW=OTaryN61C;Hh^
z{?gDl&0X&Bs}R$_ZQ)`%H>v9-GpiKPQsX{<9_~81IH;jXq}h(=e=@?Z;XOn%N2kI$
zsaBxirdYIaY%ydDSusT?=VVwcm~Tw`#|iF!?6v(se(F2J$AinGtR=^0gJ#Hcv0_Mp
zD<_~;eNXRAF-+v_rXeGBO??+qEfh-@(Owaj5pw!OHL$6or{rr*eY+HWyLn+tPvMk7
zA)hC#g~hGqD#1vm^2)CG#9d+10C@3T<i9UnJ2=n+yn1f|p0!MfZnMwXR-5E8eeFw{
z^ROZ>WD-p!RX-BGyJULHl*V)UE|lWC8ZMh1z5UJ*k|~|BuiCWDI?lx@)ans(BW<OS
z?S>*6iOUoOQ6HAN-<@AWFUgJkloV6#B7FyPs==asH=o+3-W3zqUyt38eiT+_{Zxb0
zJ0ANBgK<+W{zKGU5%9-tJaZe>2%|ICKzX6V{Mf3n*qlzh`J|F<pn2suuDtR?&Vssf
z$s;ry-h}Dx_0L%HUdYk(l*SDgH<wmP&eU`yeW&56jo-%__X%9`f*V|PmcD}VaEttd
zi=T*tS6W!{s+dNjo`<=sGoajD#|g3V2u;ooQ{S&Fg4F8lxBzC&z;|Q)gm#cA=Jf-L
zkuW<a$p-E?@-<DGNG~h?>P)V<#qbWkSghekdqjEI@||26a)M?oXGnZ-vkpTcaEaQ>
zh*%h^s)w`kx(Ext<|+DAxuo_DRpJpzf_8ok9nno(om<nVFPP9R+v7_StbIo(lYNPd
ze+umU=uNZ6UPG&|P$hvAp^_5?xx=TpWXFD1mDV^lVBMAYVrsHa7iQ9OHYV~ds<5+e
zKoPMUIM3I|98F3m_ln8lA7hl@0+|f!7xwAP4pmO}IX2KEkMc*2{O}L0p@JH1{!@}l
z*`>GU8D%OdIHH)6WU{SqV{L6M^Nfo{N#ckvpJO`XN2Odnsn`BmulQ?+_U3D%6BC-!
z!Kj_Sy<Ozxyf|5|$|D<cyU@*cD|KuOryKA#-)}(JZHNC!l!$k6fbR6%z@M*2f$$vp
z4F`VipcncG$rl>y81HfiUrk=@jc_T@Syg`^{_zNS$W6s$WIt`O?(~s2$tJ+wQT83}
zhfu+-JHa;MW0ccjND4kNW{x*XPLih>kgoR54SES>v>lo7AqyRk!3TnTbHtlF&zK3i
zf4#y9pUgU5gxqA@j*Vu230Q&>BDF)QqgzFGf}s>iUSjA^_$H|1EB@Qal92zrc#`yv
zbB5<y;fOI81+zI*K!HoWdW)N)M&g3|s5KiZN6SHS@ws^7_x&4`Fr19YRuW=q8DE|f
z&gQm{sH;x6QQSPpo3GI{3e-*QDT0Ba?gOKuT~+TR+%<}BB%H2o+#*vm_Gu_><fNT(
zd~Um{kufA|WV=h=f<OG;`sIU$`Z-9*>x)x*<!K)A6^rKq8^~gGlP!@B8mz;8pPkL-
z9_Ph}9V{ilG(MN82F1L4Uyt1Teckhwg?}4H!%nP3lL2;Oxj)g6*ZP-TVBh@{X`1BV
zyG6bIFO)X1t*NA`b}yoYuKnltc#(qqHIE6takd11CeQws%WLS3loHp;J(wmH|EHJa
zZ(~M|lNos4%ptsbd_xjKqnEy4*TXE-uFMeMF_A(}5ECPV#gd9B#Tj@%!Y&d*HIk+(
zQ}E5L?%?3if)Eg<$y8PD@|hZ7k6cIgP(N_O65&I#Bgde9dT;ioWHmK*hR`cl`L(%4
z7%y)-43YpflHw}rR@i76V>Fet@?OE%Ox?W^hnCo}C&M_R+@$wq3lTX2zb_o!8Dxca
zn2&vFqKZ)PMYrXup;%OY;RA{@s=kJcIn!4p<ZA;}^z)Fj<=Uc;&D0Pk!KsdsqVXLZ
z5Tk60$Gp)DTllvvkd#L7Kl*i@U>pa|owsa%O=ZjY&)@5Tnhm=u0+xfOoBOicvVPxX
zNvPiT*6`VnAy!4icc@$HMfR6n*^2IsP9;(mYLStUs4B})P<PcOID^IHIpW;5B#Y4p
zvtEHdbN@vL33zvVLH){R<&S9S$-|Sn;K=C>I|rFpTtn$Nx-UL)sHuT6J?XQb!6qs^
z%`7?vt6g=3dvxE@)XM+an4^1FeZ&k`W{>Ko?mm=T2*YYsR5bswUwy6Fb*xc@za%y#
z^h<YAb1{>}r3fzo;aC$4E^RjIkbcsx-i0eVS*)P%GHQiJ-6l_4FTQ%D<gB@~Jl1+$
zKCAXl-@L`28de}s0JhLu(*q3Qv65rd=L{`GTlN#gIPb(+*9Ur|FHL{Bb1kET+FN08
zLWiscAEzSbAeovPZH#s*+xcU0@*DhLcq_w?*<?rn0+KiLFT4c>LkItV?x_C+yI3ID
z|Lv7(4*K`_zx7H%f`I<(mHN-&|FYr#d>HkA3^#%X`CpLYf5!exik0Oc|3S|nAYlJw
M<3Bq-#lN@z0_QN8WB>pF

literal 0
HcmV?d00001

diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 3de6ea7ff84..8ea42111347 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -90,7 +90,7 @@
                 "kind": "Scheduled",
                 "location": "[parameters('workspace-location')]",
                 "properties": {
-                  "description": "Synch alerts coming in from SAP® enterprise threat detection into Sentinel (one way)",
+                  "description": "Synch alerts coming in from SAP® enterprise threat detection into Microsoft Sentinel (one way)",
                   "displayName": "SAP ETD - Synch alerts",
                   "enabled": false,
                   "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nETDAlerts_CL\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId, Id\n| project-away TenantId, Type, Version, EventSourceId, Technical*\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(OriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)\n    by AlertId, Id\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
@@ -155,7 +155,7 @@
                     "ETD_AlertID": "AlertId"
                   },
                   "alertDetailsOverride": {
-                    "alertDescriptionFormat": "Alert synched from SAP® enterprise threat detection into Sentinel (one way).\n{{PatternDescription}}\n",
+                    "alertDescriptionFormat": "Alert synched from SAP® enterprise threat detection into Microsoft Sentinel (one way).\n{{PatternDescription}}\n",
                     "alertDisplayNameFormat": "SAP ETD - {{PatternName}} "
                   }
                 }
@@ -1038,8 +1038,7 @@
             "domains": [
               "Security - Threat Protection",
               "Identity",
-              "Application Security",
-              "Cyber Security Alerts"
+              "Application"
             ]
           }
         },

From 98a2cfce4bd40042e1c8f4c27b55ee2b3a32534b Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Tue, 28 Jan 2025 14:24:43 +0100
Subject: [PATCH 03/17] brand name fix

---
 Solutions/SAP ETD Cloud/Package/createUiDefinition.json | 4 ++--
 Solutions/SAP ETD Cloud/Package/mainTemplate.json       | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Package/createUiDefinition.json b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json
index 6305e079ed3..f54516d6d86 100644
--- a/Solutions/SAP ETD Cloud/Package/createUiDefinition.json	
+++ b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json	
@@ -6,7 +6,7 @@
     "config": {
       "isWizard": false,
       "basics": {
-        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.\n\n**Data Connectors:** 1, **Analytic Rules:** 1\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
+        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Microsoft Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.\n\n**Data Connectors:** 1, **Analytic Rules:** 1\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
         "subscription": {
           "resourceProviders": [
             "Microsoft.OperationsManagement/solutions",
@@ -110,7 +110,7 @@
                 "name": "analytic1-text",
                 "type": "Microsoft.Common.TextBlock",
                 "options": {
-                  "text": "Synch alerts coming in from SAP® enterprise threat detection into Sentinel (one way)"
+                  "text": "Synch alerts coming in from SAP enterprise threat detection into Microsoft Sentinel (one way)"
                 }
               }
             ]
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 8ea42111347..b6ff3697642 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -167,7 +167,7 @@
                 "kind": "Scheduled",
                 "location": "[parameters('workspace-location')]",
                 "properties": {
-                  "description": "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*",
+                  "description": "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Microsoft Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*",
                   "displayName": "SAP ETD - Login from unexpected network",
                   "enabled": false,
                   "query": "let regex_ip = @\"user_ip:(\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3})\";\nlet regex_user = @\"user_name:(\\w+)\";\nlet regex_sid = @\"sid:(\\w{3})\";\nlet regex_client = @\"client:(\\d{3})\";\nlet regex_instance_name = @\"instance_name:(\\w+)\";\nlet regex_instance_host = @\"instance_host:([\\w-]+)\";\nlet SAPNetworks = _GetWatchlist('SAP - Networks');\nETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n| extend Id_ = TriggeringEvents.Id\n| extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)\n| extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)\n| extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)\n| extend extracted_client = extract(regex_client, 1, sapOriginalEvent)\n| extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)\n| extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)\n| evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)\n| where isempty(Network)\n| project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status\n| extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({\"IsPrivate\": true}), geo_info_from_ip_address(extracted_user_ip))",
@@ -303,7 +303,7 @@
                     "logo": "SapLogo.svg",
                     "id": "SAPETDAlerts",
                     "publisher": "Microsoft",
-                    "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+                    "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
                     "graphQueriesTableName": "ETDAlerts_CL",
                     "graphQueries": [
                       {
@@ -655,7 +655,7 @@
             "logo": "SapLogo.svg",
             "id": "SAPETDAlerts",
             "publisher": "Microsoft",
-            "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+            "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
             "graphQueriesTableName": "ETDAlerts_CL",
             "graphQueries": [
               {
@@ -994,7 +994,7 @@
           "contentSchemaVersion": "3.0.0",
           "displayName": "SAP ETD",
           "publisherDisplayName": "SAP",
-          "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.</p>\n<p><strong>Data Connectors:</strong> 1, <strong>Analytic Rules:</strong> 1</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
+          "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Microsoft Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.</p>\n<p><strong>Data Connectors:</strong> 1, <strong>Analytic Rules:</strong> 1</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
           "contentKind": "Solution",
           "contentProductId": "[variables('_solutioncontentProductId')]",
           "id": "[variables('_solutioncontentProductId')]",

From de3005f13003e3a3033d3429f500b5a8bcb2e3d5 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Tue, 28 Jan 2025 14:45:56 +0100
Subject: [PATCH 04/17] logo adjust

---
 Logos/SAPETD_cloud.svg                        |   1 +
 Solutions/SAP ETD Cloud/Package/3.0.0.zip     | Bin 9702 -> 9692 bytes
 .../Package/createUiDefinition.json           |   2 +-
 .../SAP ETD Cloud/Package/mainTemplate.json   |   2 +-
 4 files changed, 3 insertions(+), 2 deletions(-)
 create mode 100644 Logos/SAPETD_cloud.svg

diff --git a/Logos/SAPETD_cloud.svg b/Logos/SAPETD_cloud.svg
new file mode 100644
index 00000000000..6409c6f7382
--- /dev/null
+++ b/Logos/SAPETD_cloud.svg
@@ -0,0 +1 @@
+<svg width="280" height="280" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" xml:space="preserve" overflow="hidden"><defs><clipPath id="clip0"><rect x="2409" y="897" width="280" height="280"/></clipPath><image width="500" height="500" xlink:href="data:image/png;base64,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" preserveAspectRatio="none" id="img1"></image><clipPath id="clip2"><rect x="0" y="0" width="853441" height="853441"/></clipPath></defs><g clip-path="url(#clip0)" transform="translate(-2409 -897)"><g transform="matrix(0.000328083 0 0 0.000328083 2409 897)"><g clip-path="url(#clip2)" transform="matrix(1 0 0 1 0.291504 0.0659187)"><use width="100%" height="100%" xlink:href="#img1" transform="scale(1706.88 1706.88)"></use></g></g></g></svg>
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Package/3.0.0.zip b/Solutions/SAP ETD Cloud/Package/3.0.0.zip
index 542b86365f810cc3d076d32768c2d30f3428dcb6..8682f3cbfe687678fd591422e62bc67c7cf51208 100644
GIT binary patch
delta 8685
zcmYkCRZtv&vTbn<?rwv-GX!^ccZURbXMz(PhM<GHy95vJf#B}$G7t!I&#8L%)orP+
zUDf^FA8Q{eZzyAED8nP*!=U^p3%x~BFhoFR+nM&(|LLaK4Et$=bC-1i{C9DSYqtXD
z28uBcT#FTKHumn46EuKhvLAbt5Q@Y1whoOFIW3=gj{ZE`q&CJ?8t+D%ahImr!FOT?
zf4{ozpBhwRAD{aFX+?9Z#`q$bIjK}7$rT4ND#TEuXKPr(-HB=Qq1b9cPUk}0utDUQ
z+Oiq(b#jccxYD2iZ>3`uuE7$N8D5u_9Kc^$<=e>P&xYJMIOP))!uEx!Ml-5hKHZMw
zXnXX!q$GxWQ4M=S^s#^iY8<Vg2ICGAC2spTD3S~JTY3*8%fK{nH~VFAJl=uuOqkn6
zPA59Hv@H3RLYc5Y*H5IjyLgPn0K|o7->jk?iJJgTh9)!vJ}As~8Sv7QW(_M2PE<Hb
zC`}VM%~aG}r8%0JW+#Ui!U^J3;xGE1g@dCfGn-_cs-Vr4nXx@RRHcRTfq`znnCI~E
zbF~rW!oD+4(I0yZ55d`aaS$Lfw9r7-DFW;0f7bxzE&Sh}|53S}zOD#GfX<b(@7szV
zRQp;4+P%8`<ur}f{B*fIeL}oDlFAa%+7ca;W#Fsf4d@xTWlixslD-Z?bCX$NRnBWT
zAR9DjPz9m^CEM2GneWKSTDB-fGue)!1AJ+*f0NrN(p%o}4Qe%LDl||_LkTz^n&Dc|
zXIZ+xo=DMHc=tvs|6qwq1u--t@<3>Lq<s^pcM{qJZIA=0e#f1d_K3ksD;Cw}bx5|}
z(xhanY0+fGP|rlbS{WW#(OD^c!_BJ0Z^EtY7eUwLR~=O04yWuLRps$a&g?Rf)L}W<
z-=v?gLQmzaEs6NynCvMrc*O@t5X=g(U`ba|v{Vkq^oYnS;&7vl1WD9seL-J>r+R!G
z3A+g#l<Jrgnr^?0Jm*zPlep)?v|-?#-_0S!G$CO5#r18wV7fGH=W3E5m6ilkq%ZwL
zIA;-EqLy!mh9@}-?KCn~needmxKj-lI`BxEavD_eyIM)O3b0)2(xvd1wa{5~w)lsR
zuP{CFlBSUo70?Md3cA`^vfu{axe#%uGZP9=00*=Jy$5ojdxcj#9MXSIIoN&=S$W;}
z`@j*(F6gdM8Q54F^4wa=T1sMY!F$r<>6dnxP_ubb(_ky>^R)yz5FfH<+3~7PR`tn3
zc?vjxO#MlJ=ioQ*w$3CU5FjXS5-z@Ty)C!tzG5ZdJHwE(04+E96erm4xBp=FuAK^2
z$`Ne}^XAeU7qZQCkW<|1rl-&6a*RAy8i2U3Q#jw%{|dhvI+LkY&3u~qnGuQA4}^_F
z8pSWu3>WnI8S_K*HeffP^~{rnkl{)YvO<NhG!WV+-f^2<_f9a`dJ3n==Ir}u)|<(f
z@?CUmNR4(v9_06MKK?z-;Na=&>dgv5fSQ&7TUp%x;M?Ha?tA;-TR0`l27xI^A74M|
z)6RF5hBV}IrLyvsF46_a6jS@brh@|TYA99ydB^K;4<4Z{W=ldc0+(*xSU=u#N8n29
zh7|BMW>!5SLI91des1%-bg^KB^_VFPUh1Q##N++L3Fs*sb(Rc4S@}v@Qt;cpy+t`I
ze&Ij4JQ{gjh~)vYSXyB2UovXRe3EP-F(J0EYn&Pj|G1`u#h{60W>{p@sXvXy9?J5>
zp%8}6ax77s;O0>6IOj5lg*qJXq*`UI+zOaARYTE+&*fC?lx<Z}y3Lnz^K$Yo*waGa
zPa;Ulr$K5;pL!hcb8=mp3w#}YxcDA&zd&<ppSdN^t{Vw9TI<I6uCr_PtX2(4=y$69
zYl*L0q+4{+S$fWzO<=?)KS|M=EHfjE$S1A3C5@eBqg6kkT8OmYFQgZ)N53kjuA(9$
zvkFGd1u1RLqMknlq?y~WHAzDjY4RzTiaRN`;6e4Lk<l+rt7ue2l{8f$zJDv}Y$LrW
z7TnjfPtoXWjUkhFPOhrliRd$3&<wUj-@j)SUhVb7g2;O6v6{bv9DrELGdb~8KES}9
z3Z#-v(c)~I&U>E?|M=SLngWL<qaXt7T-lbi%jXg}2%=RvSD@<G`EFkp+2Epp6*JCG
zeo)ZY(h9zR*NzcaH8|%Nth(?&R&7dAA1(fcygAf${i?`2!BBg_v%6o*;TV0__kX>%
zsTyxk;~t29p7(axP&URIR3Xa}0ewbIy-AlHCDO9=iuzI7eib+D{02V{zWb+mCGOXK
zTz~iEdoFd@-$aD5duA5leoJ2{+sA$_ya2k?`^o#^bKXn9f3=2raNrbYQj-&@E7ph_
zNwSw0{A?d})~rN%0o9Ll-qtQi(*2}&5HgGA!8%o&kR!Lzb@nn+6Sc`aoqd1(BFk0N
z6W4PN)Lwh|I3kWmEd9Wev!oi;4noKf++Z_~HLs<2otkpFVt00!>NXo}@|bf?u3<H2
zOfQo*dS3Am8_tjJgV9h%M!_?3*MTCzz$6jE{73)qzs&FkJ0c5$)c?=FycE6E+E7US
z;N06PEb`^(+%>{j$>W@P<Uo&~evX5+W4PMDEK81cVgIUFjm5Q3zn6DNxkI@}d6;*=
zb1q$5pQ^NpVJE_cW1U>p^xxoV=F!f7f6hmFedvw7WX_q}5;#=_1LE5S1%|+L@h@Hj
zcAzPBxrcT>E4t5_<G!~e#nZLdwbP7CM@vzIQk)$lK8#L;0eqIleZ!$2<y#t<mdGJ+
zt{^+j3na0`7XG!Nk0wIibd6|+m|@0S6v{t*Sx7hn;#)u+RbU4RCgHtcXa)mJ8o<NB
zgHi@z4g3b~$vg2VmP7p_V+oKb=1L@50rBC)*kbLvdr<I@)2h)f=TD8wdzpUl-!qQm
zZ@C_t3td3U%<g!hT3b)SLwnQ-PLH%`f7}`bw5)@f2CB1qBZ$^h$doPuT*D(uxILo|
z*i>VFXAY95A^=L<RUG)5QxD*na2OAkmp!P@{YXpltR?l&>!$(~=|(XN*6Zn{Kp~bx
z(ESKa<ib>&iLrWpNiUq}1-o=9sJ;ik_a(Et^<KkRPXx{HVvCWSzAYNV=q>VlGU)kq
z&|=lM=~GjNbE%;~EGHCrtQUEw0U!f)n5SY*rb4Zr3R~RJr)NYUntgS0)F@^1ZTq|1
zjCy!)z_z*ZKMSSrxUi)5t3wG<AcViN3CckdIj(8TzalRFE_A7xe2((A!=ZCE`HZ%=
zBSJIUFlmzS-|@h${HMXz3egUPZq3#^@FO9diL>nsK7dD3!|G~shEMJHoi&@VV$#Ss
zHKr)hdww{|ytif2lb{eUJI}EQ-<~k~Oglh~^UJ{>-Xwz3<H|Krk6(dGe?gelsveB}
z``xedu@el)n4|eoZ0>S<RB-`paPH>t8Z9CDmI5cgw;%3X&Nasm<ts<Ga^Eo8ZuGwF
z-mwFUjQKP7Zl25T+&;Vc?Yo}(CJE*TJq=kU<p;TnKEKShFZr71gRF!9Z7%0Lf?a!?
zsYKuFU|6w~2FCn8`bi#|`9Wk9yq^;`4qp0`HpltC3;HCpt*BFUxl?71AcTi}uf0=X
zvKXalc2{h_YvSd+<>6j3Cwmkmy}7_z4>0CydKp~s{mA2KbVZ7~XL3#MECt5HF}5zE
zRaOEX!Z1AIJ+qG?yURH-dZ3kZ&HN831fNm3&#2PtxxUi~tb4QtnV@N<Pb<gqjAbic
zvE;TJT9$c+ZA{lvgtzzK16Dh2j$!W-?3~d8QRsiW?EGu+4|DK+YN(k#^mS;gU87qC
zi~3x>xD-7SkA1=>`Ft2`22(_gm!*YV{zIL8l*7{~1ZTRDqtR?KqEOx>%i+p28fahO
z;$0V%c1JFYrG6&<uNQ=eRA;`W|CaE&8{Q?JWbsasK^E!RyU|&sal>JWZ_-&1I|3{O
zb9;*>+V%@$ir-g&a3+Hh(%M%GKv97yAN77k6|JlJk>jmGT7L2^!ANiFg2PK$K}_hS
zh&Eam>}=q)9smqq8@;#dVY>Xx*pOBkwappt)M-z)f3C|z8Ay}EHV*GN-6)m)^I7b%
z{>hQeT=BGgQskGfkvLsmtGb1aoY1uHC5>W=hh@2hQLEdH@m0Q_r&fsFG<yUVeJz(w
zFJ9mMz0SVtR&x@UJ!Hvb1ncZaxSg=Tn6JfoRIxEPYb)nT#Nb?`%CEEM<b0|c8tRM=
z*&a=`o`P1TX;6y6!QVCHIPH_*@-y;MN)8zaufdJ0$05V~&u0+x-)}lC0t<PS=hfb9
z`yPyW$xanj@+D+~EN>6eh#qsJ?%E-yv%9RWj)Dy@&pII*U4<Ae3p_LAsn2x_4%-A;
zZVle4yD4%!Hn|)o`EiHV2A0T3?q7}Bdk>G}N;gRj!Js?BapzBPCMaR~9ldUv{g2Pv
zA2bpegpnze6v8;gsO~VF#s*;_xC@4%;r-FUGWE-64Ke@|F0E7V@d4ILZB_H5{jap5
zzblEFU*z0kWtUObtWiT1b778d`EDTgHs{+Ty+Hv^$T)#=y<2HX-P9d_S!2rV57t$Y
z^K7#hPeE7bjeU)h?=%?OrX}#$J43ml3^MjK{%R)xVkQ_zYjb|l64cowvgU(RPoAqD
zOomVZSL{AYrg{u{2^`El1*!XoA%0RI3Zt4m@6PTvapBy7mz+4J+X~T?JZeI37nI+_
zM^&f{`Q|t@yyqK1@-KF@NeQ)Y4q_mGI5H;%00<px{GFa{wK47ECVf?#3UU7>2#(}*
z?A{(x3s>TY8}5YQtM3J|jN1^c8cFaCvv?5sUApP5W<Jhtg&)yRJffI>D$G!c{YLRC
zceEJ}_DAlLpK2#I(j+(#tO%ru^<Q?dS5s?lUwf^V*JWB@GuQVicU^FyPKmQC@`<~g
z`5>I9*B}^3BIybYb<HiXvylq0mqiMn2!x(%JeZQ9Nz7K`5x;ZZL>Le|L5dfv^Yc@9
zg@KXNpwMp%28eBABZt>k257S{YK7}Ni@(uWbr2+HOtDxXpCjIk|Hg$(z3C2JVH9&i
z^rVLu0zD0Rrg&eH$r<?+_je)wQ6&vCAV;`bmi43MgTKN^0Tlgt(+q;Krt)fEmOZn~
zgTCw+%k+Xsh7{lF1Ij90o9CIklbtaSn%8{%!p3~Wf4NMx|Juv~f!qxI&*6SM0*Hy!
z#AQCcL!CKFG1c451o*{lQpj%T4sPc1$}FcObVI{asq&}X=d<c8Ne3(mieXliLB$ti
zU;1g5t+!=f1~79}3;<pV?)!Ie&xx{(+EvA|7isRF9@Z8L2D8u$uS~R-r6c&bQbt^c
zAU)k*jH=^f^4I9V(o($Gf|AnqTO1&p2d_)91*^$_>uAcBV+60n&|H@@%H^cl!F%A(
z5a~f|nH?!FY;3iX?6z~n%4WPU5P3#bT!_^%$35gRg-rhVTYnHdISlzRYn_yX{2_%?
z1B;!fYZE@p+VJ@2;q*Za6i<!nvo9%No=Z$O?bLeSH=R)i^46gGU5n|zWhODH?^nR<
z=!JV>?WE!W5R<Q)-;>w6JGqE*C->$q%l9Q&i=w81o=AxZ>vTXWVK(X$=)?xM5j7*S
zzGQARQjmN{o=vUiWw_paBrkVFk!#%=mE1!$e1OJ1mJ}^<<YO_J5UX6f(Dl+b^Gitr
z61_{7V*FNUFV3$uffQ-J-z`H_VGeR&CnwzEpXFB{`W7yUBk$$vx`z)(a^-QhLNgeD
zfQg>XeDJXtE-nh9<5gI!prk6B;F~af<6uJ0vCvcv?%P?BBt&_w{1P#P0ts3Rt$g~J
zK?m}LU`rk_#Z1P!%*um9jv5KE(<36OEB7)Vj{<UZ1lpWn5(qXtS!1@Eu{WkmQVeqj
zhz~THiU#-Lk?laZ!$Ra&!dAwi{^#8Gdg$?5bGTERtl2BtzZ394h>dppHgjq$W6b!8
zhGHkeU#DfJ__heSHSVXs2MBwQnY96V4G3}MOuM%h|H0en^p>-1>K|dk!A^^X1<U27
z^u-7MF<7UJADt<$-QCZ*^;>v7U+Z9elZC^T8v8ZC9z9$4-nxP9q(6rlvdb=}8;Xjj
z$A{O4K2^nz?o)LF((uzslKzFp0UeNE4}Y4Sen~z@IWJy86NdC!jC01eBE8YBLzh|1
zn!AaPWitKTqC6NSAopHFd~8A}7A1h>jQB&B;wDy_aE~2`)Tq+GZb#UU?@T;Pl_miv
zH2E0#j-SSt8p8e<v12=w3KgIrQu%}qW)-8r<x(7B^DHrg;8N6ZJcVpWSa8aBC=Fq%
zY(y}0t{`*LJtbzb?L01i&j<KDwO@qBZjT!}JEeyq(krlvq|fD*;?nQ73fF+tExz4z
z9kI`=w(Q3W^z`M9(-OL6#DqkC28OkTiC3+h2<|*dhQIdpj#Kf>IyOAIEka}W)6|qo
ziplcBRQe)7{uovBMr63hq+A}CzslXOsm1WwN2yg)`~+`82H^T{MTBI>F-+ACfr1rq
z^QI_lhq#VzCZd0bSlFq8tYlBj^VDm)wkxSiubQ6}>DaGRln;Fm;{QOno?<flh(2@<
z3j*ErgAK2$IOnTv$k{SVQHg=!9gG#jBx%4hJzNx!*{6gNgFzDpnR1B=czegOd%%(&
zkrf?LH@;n4>D=#cxEs(V(HQ09x}4GIEUC-APgDMnXw?N@0)O6N^P?KbWb<EKO?@y?
z=&tpgYpd=lUdHHV=Mj3!b&j$AD6Ghl#%$$qn=?Qy8p3XH>HRK3gY_ltFNVju=UZIR
z?0%X*h^B1ohDn~WVIM;T?r}Tsf{KEYg8Vu^uUlko8wlK77hl~L1^PV^UPSncU*=w2
zQ|y?>#SQO;4?G(Ibktu&&H0;RzLtJ(su|$}Ra}3xjWC;!1^jt*I&8J#{OOtGZ&4|x
z&$8{)iYp}<yvRXK_#O3Paio_s;-5%)xd`GDNUxwy;?vCTq7DAmHq-MV=4(*5U%3+{
zOzq`ob<rw-g4ob5CvJ2-0Yffs(L`XGnG~NgBrN0Hm$bM3aPc=qZC{aSkJ|ub_mFRe
zZo7SzPI+t$Zo(7coby26t*7>3#ni>MtM4?ZhoMaA$mnf6k{QwkMk3&L$NR0oIl}4%
z+DeS_;}(nMWL#@=SuCw~BrUVgBU6vW%&rBu`OlyQN*ALucI?TBXYuIHgzrqG#3RU<
z(2ov5B>{KU7dw!lRCC=#gudL7nQV(Rnv@9vq`dvfm8NheD@p=i9`aA!WOtcvBzrun
zjrTSsxl@3m-G|XM*@jHUm{Qy@#O+Ry;x&W3VR+6bRz#V)+9**}+%udjmsrIirzl&I
zY!f@tB-P9vV?bU<rt^iHob_XIXZy!PWjdUoppkse$aGnk-N`UMfX_HpfqwD>aVyWW
zV@xsX{yp#<GAj0roOHryoWq*aH)pFhzp-dpU|uEnSl}LJ4^25Jef)8(lgtcad9F6h
zifx8Ebf)u5Y^Yh^U67DGy-HjJvN`fzr38gw4A5kXYbrGwPA2@A-0K%`WHp9ij^0ql
z7U-gOx9IhnYt<-URVK}-d)A9&CuonaV|3AnVg?I}rH$5ga9#Om&W6J~9o-o(A!T@|
z`2y2M?|7bIcgdp~#b!NBlXE~(UTFE>FuuW)TjCQ?BKGZMgH5ERLN^zjYabn$cDwZ#
zQkqjgv2R*`M)~Zm;YX2On{?qF>6sQki;|xtK`~f{d2fK!URnEiWt&w!ExTe%mp5=G
zT)zTMg@BKVX5|qKJYe1YRj5YZY>Np=V!OrdisUlzR+vedizo>sZizt&K|F&~VgZCD
zikJve?_3&>*uwX6_eInWNbcbZuiM#(1!%}~NZDfFFuD;as2l4fLNV(0#1ZX@ha9H)
z&6gW37!A0h7}QFn?s2=wX73Y)a@Vv_4Wj71>$9!sJ2V>>yeovqd}T#eL$THGIJvfI
zXTK)5Yvco^YO#x(#%4gflIS$b6Dcv-zd|C`1fqsJ#RkYXf4%W0`NwPZ%8jC;>zCft
z*3<Dd$+FQ-F_S3ESdjzPQ&tl+&N>uRqR!8)K^Gs`er9gN>#=#M+Z0ooLtEF@D_t8A
zp%g;fNxJHvTUNgzFBy`Cd&7+=gfaKRW;!e{1sT&)TKKBfDC~l)LJ6FIDLd{V+W#$g
zMz$y!B6Kn!qchpDJ^MV@I{d0Eh!%uTP3B1F5f;EaJa)vE<{vDY&<*wGsmS7dK0Sf1
zVdrQFr%vB!WnRR<0<SMiU`Et!Brt9)yinN-pxJyy#B!R*ZIe)OSmmMRpEEBnD9kTG
z!Ecvc;5X-QA5<X83HVC*54L_CM@laWRQG5=!aOg(G2jVkj^1)4_T*8*J*M8v1jIKc
zvKbA<sHrg_IG?T%omSQ9JAN3oigu=fs)vE|l6^ZMGIG^ne7kc*3yy8EJjdZ-^v>!(
zfCH80j>&>y)8nCpS*x`Co=SpGM!_nWmD?UII<MZ-33xy9HNNT5@W{UP4z6sR2*ba`
zWP%Au0I(NeVG=sE++gUwbs=lKK7rD$mBhkBO8#eWotL;|u7uT=;d~_Bn%ODrtnEW3
z^fwp8>K+(sS)>}VPjZsVD2|n$?u&;fSghukLPRejD?@LpKWM<!BxGo)**NSK9>p;k
zYT#KCYEJc(r+x{33SOj%I*p<xxjvq{UtfEqx`snNUbvdd9h*~v)dsni?&db{FfG<o
zcfeGn%piP97kL{(Tw-rvhp&qW{^B!H%6b5rPb-ZbtyRd6STAnkka{NEOt!4A6}spK
zhKl#k6pu0X(Zg;L5p^tsUmNDvvU)dBV6}xs6%2BW*&X{v-{$Tcz=7@8d>NwNN%};f
z-o51O0X61~4AYJ)56tbzy){?Xu`TNKVr-%JRZY4nFHP=AHl5>>N85pEo)e<WLK{P4
zRfBSWgp7!J(kU0>z%9Z(7s@ab>0~ygPCXY9nGQ~pT{Ce_9NmeaE=l~IbOW9+3)%RZ
z21BRt&LRgeF&Q1GYWdz{xt$_C)7(t+J><KvXn_T<@Va%I{4mYp&^;~nAC`zA{^58O
zT~B)7(yxu#t`f@mcXREgBE*t3C8_k&*kAQZGe#LQj{QIiI@2fJ;vL^7D4vk>l~ygJ
z7bM;rhMd)A%}IX-!R`k}>er>+1rNk6pY}4QTAHmLgzV7iDw}NMIZgbiQTeHWfARB@
z7C{(;z$<Z|Ev2LYYawV)&J`X=9C6*A_hQC1{s)a{(Z_qcccRd2zC@Kb*Idz5tTVP<
zuQ>MX%X>JH3A;|89Fw85ZV(uYoCNjywMvT3P!G8p%uP<h-Xr}4tO=m2Iche9t{y38
zvpAD5c(+X~mHn*!vqz;Y)4O&_${up&A7{kGq6qdSw+Cg!8NTKe0RAymSaZH=&W0iP
zzSz!kWO)4Gj6Os6)wx2xF8HeU<e2LJlwQUDRMjC>UWC?es$!W{#O6GVXH=ElLZIxx
zo@${*{;Pl~%#u5Tvj}CtY8cBXj&fnO8=Vly#o^N6pc#HQr<3RCcpKI^&Y@Xju}X{R
zeE)?_ZWeS<bD|TpgU%v6E2lBP2dC;Sy&i|!VmYVBS5RsoQEH*7><%+n1e5Jh^@9Mm
zqxIke5&WK@UC>o3mIHVq13=pu@0U;S`1|$RYih?|uoPcf`2^Hv`q&elR0jmP(W_@(
zjsX7xdX3$+-gw3z7D?J-48i0o@QC{~!1w<YXi_0juuH<&5cf3}yq$2T*CGou4c@@O
z)7DE{*y7IG6#3p0co#5Q0zJ}59!_2O%uwELkKsMTdjT=;u(^BIQasMp{^(@PYCoW9
zwT;?3C*b)FH4`=rDg@jPrw;a25EvUaJ=v?=nFVF|D4)F-5r+H(T>j33^!&}vVX$ro
z)%whzM-5Fc${6TT>2;EYypHmH2^b##!>TDT4K7mkRx1Xa*bO@&D*k3w_Ax8bDzMaQ
zcIUaDc<ww<nfb^H^c8HcXwUW9U|#iGR2)(D%>#9m>>0oKL`ve`HUTr%N_G*!kwi+k
zE^3$@k#i@hp{<JjrSEGc+hsP}ZGdf%vFa7OY5_2-o%?(HRkFF_pDSm;xsU1}(}atU
z;*ckWx}m|R#H)W#iD&IoQro~kPBm8fobTcCwm=@N)oiMn)EX$|KhNv{#j+&9pp!E4
z5VK{QqnG+DamBJ(m+DQY9Q#6&BK<ybZ`uxevtA^s(Zp;qG@TLod+vobo6<by7&v)p
ztsdHc2?E-v*dJS`PU&|K)Q#5@H?*%4RXL8@h{neg<0u3-ui!8$KG0$F1b8p}NPSNC
zMo>slzchE|cMRLC+3DBdS2*Aa8hF7QEjGtQ)pDd=<-s#p*VR8GvSd{{xW(Al*2}}9
z!q(88zvakE*_qHJxIEg!;q17Oe9biIX8nX^h%@f_6^VlqlKaOI?KtLnS&_;(C+X_!
zyrkXi6}?2d39mD{LN{{xPPsfORWDv394oTTki95jiOJubS^}xMPoV0$m<YZ0G4@oW
zwC)8*mI6zbWuBA(gFseCNH6d-jM5w8`>qDpxnr2kr^g^N19yJ(qF3vpt3L^jrDlUo
z1-DaE!ilScm#KNES84tC*ZO6iy9_p;Q`|Xm)omu7O<bH~F6U+F@-(67U}hR&SXi(P
z4FKPBEYLi+%ZwI&Y66jb3_z2w27-VgG}^G<;2RohSWYkwEgsj9M2k#9Xu#(d>qb~_
z?Z;?#o`zR~%1$lg*C?;=tfNt^KPT<7_2M6gGe%E3IVP9EI<$X4R_u{q_f(OR?eQ!9
z{AbBm5t_TKZ&BXk2gV|I)nqUtL@k2d1L;}W9nje{TE|AOeH6o>WH^SJt(FQlTICh>
zT!)ob-Jjs8((~=OipcCyc4MaUwWuEdcCQVtwlX1y4npo_=@X^gP=YxdrG{h{y}qT`
z)xD6-uUl9VasPw^rMm}<xp6$R<l$*F3SbpNx>!6+dieoWDJ)P$Klb~e9H0nA&P}!B
zFl#?i{Uk|?uCS-ib9CN48a3~uCtMe1P#evW(^gRBHX9^X-gWbrwu^yi)JCcBx)hU`
zw>=)NyicMCP7f)nVM>?>i{$BWR2s1XcBC?Tx9@Jsp#dexb_1T$BbE8v$K&}8-7C=6
zkHZ!uE||FED4c@63}2SpLgPDqtUUK&WXw1+TfA8yDJHYbFTadvGQW#|cG+E9C$W6;
zx%I%1-wI!IllG$GB34w^-)2@#zWjOAaJx1@y++QkCK>`_X@%5Qd0QXp3BIe$)FKdb
z6w^%_X0L<nj$QB>qos=1@fvk14#XPUC=HX8y<PoNNaowJd`u62PPn{j;0C}1;>tj4
zt`LY{bR7$x7D|yC({SNv#pez?9x*!xIe*sqxAOWLK4iyaHLJM*wX}#<88tNkY0zBY
z;os_<59I$+q#yDALxvPEFw?XDrAV-F`0)5JIRDRhVf6nI6PTY~g8RQ7jQ?Hv??#5V
xh|&K&$AKY+`QK;@HA02~2O-l@Ai}`@7e;9)BmRd~!N9=%CtLnAaq0i7{s%o*uulL0

delta 8665
zcmYkCWlSAf(}i*O;_k&M?(Q7i-MzT`!Tn%|;toZMQ`{YjYjJmXx9{G(pUv9IWG8F?
zoUENZvj#W-psE0%VXz?({*j`)KoY7T&^$KHx}`7Ox;`e&dP3*aag`hUL&W4#)P~3&
zzCIfUpBn~%%tPM>bxcTY6ib1Iq*utyf?b}RvfhAPYrPD8M)5%Bmz*PE$fR4JWq(>L
z5+O&Ld+Nn9A2}sLHSjtc#s(<!lI&PonI{HGKPx4w$l)=W&cfXVl;~poD(2+?7QJtg
z^AeY2GV|$!lsJo0-=E%6CR+DW83{T@!uD&Dx2%iy@NzFL1~sHZY*X$-BJ~KkntPY7
zt6k`#(iDhH!Uj-H2VLa36w_fT^PhtBYY7<m4rA}(>|Jg%yG!{)Cirk7o)`Ya5t3%|
zv)N0Jhh>&FCBBg;;|?5MdF%NAW#%+%x40**GE51n_3kiUhIErZ(O6Bv09xrSCKXrr
z65P=^mf=HX+QVR7mJ(9k>ye?Jr>vSeui7{Q<AEkUk<8KZwbfTKUC)MQnMv592+WBC
zg)bFRAc71=iusr^*o?Z?**IrgCLAcQt2Mf$0ty)zpZDier@cO(S{GShHH*$9kyOTM
zpslszu4jLxRb|6Py~zR7+llk%@t(Uzt%pG<HDNv)%#ZW|6nDiV<}$@<$6`IXKG2_&
zzGKv_sW=6SN{zp~C)wVjY9-9D9R;mNn2xgLQOdJT{mD&vQ1eLGls|QG;IFD_O;92A
zw?ZtDQ6adVahW`R@m=Ks2M`Qgkz`TUxsV{5;hgByf;-GE`+YEfkEMMbV9&&#N8?Vf
z6PCj+PM8&?rNXkF#fo8at;1~Ogos|#Kq`==rKk~CnW+6Xw-#dTWD1@n#yDURr)I#p
z+rGfExQ3lbqod#6&n)AE>~}=z`69@WV?vu|z!?3r2ZoPDSq#q=SXc~GEl(776s-L4
zFq9mlKPKUtgqZ5I8(zU7-3W8r^Xgv0zPg>Ib!WIhPw|bsJCQpL$-A9Z`zcz3_v%fr
zE6ZL>`ALsHNWvtaouuBaDphb4Frk?fGLO6r=qb7_@KM#ARHbQU@mQ5&$OVLI_QYw)
zZ>Fb+>&V#B2kg}X_les>^+N|0%CigyR8qZ<=nf$Oy9<ali?Qu(V_`_PrS18|>H|jy
zkXnJHQsbKQmp);&Oc_rWgCiljeaso(f3&Pn&qJAHKqCg}v=tVt8}`#V{Xxw`)Y5up
z{*?w9P@<XIbmvw6d`A+wm$)QZIe8K{+C7+;eBG9yF<r(3#6~nkI)@{g8meJbKhaxW
zP2uu0gFQ8=1iOq<%v5R>`T*$Jwr#=><@>Uc&mz*_zF!3i6!5b(Al_{7Jr-U;x+nz|
zQjmx1&TpX_GVfTTcj&cjRKAA%2?xERetm$4)Z@K+gkLn8TW~6nU1doeKx(ghJUcFq
zRyaE5_QVnc3ilKlD=T3PP<3mMMZD5Zn`hpbvMCaiU65U%KX#K`kll%HS0BB!7q+xn
zLnv!N{S@R~U=RwAU&zOGAA(8tDx$!t{lbX3A3FOp7QMhC_6QYQlANtCzHLVwBiKb-
zZJu0JBFu-JI&NXwvFccf7`L+!O8f#UeYznJx<0QIDAT>D5VS$AL)of~)CS2HDCwLD
zg<0aXK;S$-NFW)w1$M3Z0)!?%avQ@MhL4cwe}RqhB`ay2D&3fwKNW+9VfPyQ+F5?6
zEL1A@cx;HSW9+nrT{poMyTVm?QRgA|>kE!(J4*$;`{7;DAasSD4%ez9r-S<*+>F9>
zlwykqaOJExY`UGhd-<3f*|*sWUSe!xS*v?Flk7`=AXL>>iHForpGEsdEQ?5X`5x_C
zJ+^s*NE?k<4c`Up)}Xgyb}Y5yHYL6-KHrfDeNnApn|h_ZptwU`We0-BfMgLd_G}fC
zT32)YG3z<hoP4Dk_$R3$D&ifLNPk})^dsJSAiU8Wve&)kZ=4NQH3^mXgDZ6zq;PkV
zd6(79V<egx=1EJRrsfj-Vc3K9moc0n0q^e`ZM&<36Tu4-W*XnfC=X5l_<*n1S*&aD
z7J?eutu??3UK{ZO2?h5#IM@?<$TcQqzk^cih4M6lB*;CH`oE7Z9dxSGoPJqYfAF2D
z0&Yt%O8s008dE7)gLJHo%L!))Xc+<d@VgcFMXeWbMZSeRycx>r6W^WMh+mEOue-tJ
z+@bt~<@g86iv=F64jd>P=9)K8_tdg|Jc9hf+JuE1l}rJ<UFsd>Kowt=K#`Gm_{YaL
z%a0F7!!lx>heC?hjvuB5{&F@mPGjw8K#z9Ki}CLDHYX`idlNJt-zp{Esg>9d<!=S#
z5^KNF<34x2MhZ{*<w-B@y<*>D<rflPRXRsvHqi8X9m1O%UDl(#w1qa)XYv_;>bhMR
zcEdz8KGu419j+{WY!U+t67N2H5zhK`kP<d;BC<>Y*A<O>Al>DO_MfOA-No-Z-?Ug>
zP?PT~U~Kt|e<Uy+sz0^9BC7!45!Css%wOOjAiQuPApS2j?ajef@H{}`?sV(o{|?P_
zp>wr0+2l{wosEJ*FP64#J=CS#gnj$V`ktliZhRA~oyl_(r1GP`g{ciM5FDhG7rGaa
z7Zew&7ji7Wh38)w%IDWjhM>Q&!Id*G{#zW39QVh0pV2+amlaF7^#tb*;0;c>K5svB
z2|<F1GUc!Kz@aw_NuVMXcYSDvKc17|%G%5C#^-^RwH0TbBiO~Ii?9jt1X}yMN8YQ?
zd7@E@vmWKGb7iKO^`7CRCh4pv<G*G@SSQmkbx+i!y%L$UbL4#o!vc}N=;3+#d(A#*
zuV!I_k|og;Cqtt|{px}Bi(d>K=jkXwba5~?*hAM)z${v*x-$wvrD}-?i2=F27x42_
zRP|}M)dzJ(-)q$ya%9fjJRq>pX!Nx!L5H|FX~IZSj1cXwv|S~-lsDI0+Lf7rt3<Tn
zr9)yOr`2R)_D{rX0=IOD<e)IlctntuR<Z#E%}&_cjUJi>iE`+?8`F{9J4lz+c5eyN
z{nb(uI5HL25}5t%gj^$8f#7+cA&O-uab;Ys>_fb|q*{o^QGpn@HSOD;5B9kC?V<qn
z>2#KPU{PRaMvWd$EnnxDg<+KUWiYDgme^;MBJVJaq%%u2&X@9qm}twSbc$|rnQeQV
z*{daU?vKA@lh3x(+Ly22zmqA@t5S;YGG(>Q023iZDqNz`ZEis~{OO4#dA^I$--l}_
znauV;-(|#zv%l`)duE(+pr;92$q_awRQ8-XnZ^xjx752}><@B-LL_Ms<i`V+Glq_J
z1LLH=9?$R+3=|ypeY#<owy~UDf52InNF8KHN*h@BKBo>G(tr$n59$i<1U1`bSiF@H
zft#j{au+b(*=e7$s>^#l+fQ?eG?TJ#=Bf!&<QLx|V*XxojKjS@X9ebZ3Nf_4(cLe#
z|L*R`-C$rg=n9u~uYgl07T(k#b%aNAdSiaSxIO@1=IWeXgGKa}y8`d3?$;L&H+41x
zAMZ=v_p&a}WD>d=dqzW(zp-zKIK#c$11F@1$CapfT7|F7z1S6ZKqS=259-5?Yw#s(
zz4^vw6@pkuOD-e!2D4QiXXAhlg}D30h<6a2;A?-=1}>=b<J<i@uvp<ND|lOQl&ILz
z7Okj9&Y@A<jsdaLB$RkJ`+(2->7KT5f$YI{{;(S(c)hMisc+iz(2%1yrUiixX!RQl
z`hjmZnw~p{Qih;eBi%Zcd9*!I>dn8<sEK9SC&<4@H>;0S{LgQqCt>?s@|ATVCPw#X
z5<UBh2iXUUgq-%StTG`uc4)~VC7(RJAi5#RlKEcSef6=rvFuc1Nw-Qs<s!T35vDe6
zrr)CJBte;e4kOu5L7AC;@XJ&e@G>m;H0@CnNCkY_x|pI$2M+H`Z)dYMSJPp40Ptbc
zSjq}rl#VPE3=_-=YUBH-1W$|yT*)B!9k`G3wvF~a8FT6E93HGqU76#tH!vOY#6IT~
z>pW=5M#XI*GqC-T$EYn?5g|Yha_jo7`$-(^bt&`+880YqzBN`xr9_=T+Z4d^&OqzW
zREx2Hg7z7wjZgQ^=61&1G*i!XfW^>L)8-5yL{q~xZv+3{sJdIHBk1MIt#}#0T&nAa
zye%Qeh>~$RaQP;<@Rap<Mm0`Q%9VB<>bswx5s!L9vedSHq%|&oj?BO9?9QZK>npr>
z2>%^ngvL?TDMg*trb-RyMvcqY_0YS6?YmjdFH;_gjCqKH`<7+U`p4bz!x%}J9H$Dk
z(fZ`Yj%2K5E&3}p(XSKC;~|i|$h%6g!JW%miZP!1)9C67YGt7C53+ej8))XnIF3k*
zE=H~uuW)Q)`y31J;v^K^Qsl)$vuAv*rC_n_6|GpO=Vvq9X6e7c;tnZSqEHCDkgc!P
ztOnS%0UwV*1eH)J(>>Qnr2!jp;+`?w)ciac53McoD^s$W(?)(KOhmjm4PV3hEBRNA
zxwPk&OxY>7lflX^%xtq6u8;>EaTB$#K|X@0f`<glFU@tVd8Dgi1Gz~xJo{9v2rM6P
zg~tTXo^!$08CD*^wpZUXC;P<B;_dcWcL=EL7LMt#BPQx8#2grCSQCe{ijqi9$QKv$
zRKWnHq0Yr#>O>f67h=d;#H3IS2$L=estb|W9T)WNfn$3(!8b-K&dlt|qhUz2*N|tr
zf*G&oF6qf?#Nj)L4?*Wzyjm#s7AaGL5k!oMLsn&zP}FFk#WuxqcNmR8>J8ZjyWdHX
zi9wz+ITeY|N2RDdR2i0%_;bW(JV_`*yv_i95xVexWP-#-J)`gm2PHAiC8gI66y{Su
z1%{2_!?2K2@AA(<;Rwz}#2kA%s*u~@X;B}6C8nMnT_U9k?K9u3C~gQhzcs2g#lqYP
zOv2X@wzqvC$4+h@deEFIG!aA?m#_@aL#U*nx_J*<X&^~V*LMj>1YZxR{!iFk4CGLd
zTZ8ZY9EYp)*V5W&R*Xc#iXPnMmN!Eb0Hod~y*p9Ii=1hA4EadwsaUvMWGxUGIFr!Y
z9kbMF${8_dSC;PU!~%%$ktR#t4WqRc%;uO%#QqEPQOwu0Tz$(VHXatOfnNH(yeD0E
zIzoT$%W@mb>foO;^2i#>`=?uSiu2yVlRq4<ej?akYZXlyWBEd63G~d}B5-?&j>hO@
zxa9+a+3h=ijq2_0n)o@t{pask$xtMdD|BEOvGB?qXB<HpgR{!bE||}ee~wE*g16EP
z8^Z6O`6J;&<=yi=%aS!-G6f^XhN00r8W@pp)*V^MduSx(u*U}*Wf8jbx>3yM08V_P
z65(iPmq6*i(|8oW|G>Of_p@-7wSn8AwK*DJ-A{<itzM7Rv-bh&o6@7ShL9C?%_*+$
zzF_)#3x8d7vcV5QFo;5f>WkKx^Xw$|@Dv9o?y7mrD4(ra=FSPb?j8|iq&o#c2krU~
zY9gGMb%dg74ccEQrix3o^ZJx7xwb%>qS<K*F}tdjtV24=-*}Ydoh*eFrCxFoR}yTd
zAgj)93LOUI`5IZDxM*CW@1vnz<~j<*hg!?=ln5Bm%(NjWXlS)GV?;TRCri$Xb8G`i
za}+4Kx9hKdaK5x$ML@qr4VG(nKi!Wl{hs4RwDMyLmZ-K>;iXnmmFS&$>L#4s*>-2R
ztLjAI05#0y4={5?&j?KOQ0lDGx<(yjq&@{;OxPrY6wNpv=ifh(#wTW$KJUtZWpAt<
zx!0i#w~Fx(yEvv=iPrT_pq78ty*CB!tNy4&H%c_CnA(BmQ^8`OCCxmn+mby2&%+~Q
z%fcv}{DyJC2Nl(^Dp=L`Kf7ijWRW_|(L;w$bcyaVA7o0y9d9M7P`n&mvzlOFA^F}9
z;JNUO4EORyQp&_WJKuPjL1%MFPhTSFV+gbgI|&_(+XbsK=!LZUNqzA<X>|b>l3T6P
z#JZ>zC>A&m-xT~+)uuHIyl#r}&vcTTpDdSnsAtaTt&jS)zjI$LOh%r2!>d`|$^I21
z%JKoTlKm#`&0`HryYgTn=qc=gO12p{Ty$W(I3#pTgO!LOj)v>V8RmIkvmaqn7vp(_
z>~vj@q<~*tnDJz2qUE4lt0V=C>?`smMrv{@#}i&5?TB>z8)+b;LpG=|y?qA@2-HI1
zI>O7S>ejmcu^+(mwXZf549@y+ne4`#tKGs4N=g<rVoq%bjiQC2j0U?QkuaX$qQSm>
zEgaD)bv-VK^ygNoWTV#aN0R^ED4PFcCx{Z;e+d@NI-U~2-6dV(9~TfovQ2z^JB6S^
zGCM@w0<tXmnp33}AdP;X>`T8f*s{G3R==w&*(M*(>pwX`!*N41g{QXN%PaXnc}}C~
z1k1imhefLUoLHnaX1}JS7*ugVYi5|~7;KqZHb(HbEp}lH{CTs0717V3QhM5O9lH*J
zW$;yRqfLr;^haWU#{wR3l_`C9kj?(yGtvm3H`E#Wq|!hf$|<$8-t&rx3^9DWg-yfb
z&iA8qH6KaA3$-?ds<PMcehaap!T%}@rvT`aTYIrl5|Yw3CHxiC&><6_vYCV|@7A|Q
zW%gmzq4p#6qF3(TlCQi=!8q9^${>~4WDjcRBM%o(<se>9?g{9{MovhD;`WT5)0c;q
zT}3e!ucL2h0y4N#b6!rB7J-&`j?{mgX3haSlHyn)HO3-;JDg&y3@JI^ABCQyHo-Lh
zTiec2Q{=8;`&g~abxhkxrDf}@H;#QwS)*Z8=!nKQ-_|2#P7{SC(bM)!dlM#Dth&Q9
z;xKj3dQ%XuegF(lckVYQ%IS&cxk6Y1{_{n5_jY&g0Q%nC*Z>dr+?_rxfRB4y>-x1{
zHr`vj+Pb}hfXpnovFJ#L-;-2?jvxIOMks&%plzxr{PR}O^|?x@?N6~NxBC0XVoc}W
zq|m{3@e4}1|LTG~0_?qJdyoz_R;@PCbr;6PtwQb%_8L$>xDASpH&Poc;|(<5O%u4f
zRo%&P^@eC@x)j_lOU8Z12<Vo*>(okjmk(vQ%<x5=VRAt-s@}An?n>1b@rwJ1dARGd
zb&b%THA#4Dogmc}m&R4erP2YSc835Qehy!_`mMfe9-eZsX|gY#B(NxKujO!-MMY<M
zOZ&1JWdm<LIR{R!RQ>s8nmj643=QYL3Ei%FGq_LN=QK>XX)O^E8uIqye0@RO00P#b
zwBs$P$#)p|XsgjFlZ-9l52;h%ez8+MopX8~P|%&w2FMo2fW!`>bnTbLu-Ot~vhX(u
zHc)-uno+DXN|t=sXO&E`W}IInMk#grz6>ZvcL76W){DKsewDp^5t@*ci(37;Fo^dE
zUhIR^X59VBB#QC%xx=&y&Wy<l2E*K*yhUuUV(Wi_FB*X0ETSqu#a)9rLzX);B-adP
zx#Hx`PpHdrK7&27exJ`Gk4f{qx1plPKYtHK51ib?=QzDQV2;v$B?;MNZy^Ry`;-Ul
z^8s-z_~k#uwMy3Qg)*xxQ8Ak5(gppbhlE5h+DQOQaemZ!fKX?I1NoF$+rO^n`|RAc
z6Dy;*qVi;qSd!x`BLwNJhVIPs1P{qWKgT*XO#y@Jg{RR1nw><OAoP7x#_H&HL-f0?
zrOehh$Hv~I>^U8@ebbI{W>MZq(@NL|10dF3358+r*Zk*Q2pN2VaGBnzmILa=L=_Vr
z519%fLV4ax9IoBUH*vt@5?Y@U3ARzB)hU&q;WjZ16=&ZemCA5!dB0$4uY+Ahr;F}^
zxErSDa#U$;+a#lBC-vdpGi(C}WU2v#0qLJew!q~wsR+u;gp9J`eHhP}lISuaSfGla
zG*#aCx7dVSSleXi;6xFW6r3=Yj+qV!1VWKD6s*r?D@eK?v4&tcbQ5S+F?iWZMiu?g
ziYMh>0yri;w}3?trX@t&xPoZ3^68F&3%I)uDy7mU4X9L8x%G+?1Vl$9CJ)44Xg7wK
zQl8`k;5X#BCWHpUJ?44qcooJ09UxP^oA<Q%NU|%nnPn|mK@*6gwmRXPjF<E2I2B1z
zO3jQ*U!Nwu|LG|L$R0Bmfl6K)BMBe=kEewvdJ4azTJiSF%M#h^CVVcQ!F5w%>7Ez-
zZ>qY-SNsPS9s?8j$w%{rZZrq(tzeJTA(NaSwqz52Cy0pUMy}1&D0rQ$FF;1M79A4-
z{j1qb?_Por+f_(>`Z`#mze6p!-We}S?hb69vmhuk*pZ=?sO)?rdA1lnWPKxJWh$qD
z92C0)K%k&+C-(qtO1uR}2NJD-ndqdS0DaK)7XoQ$L3~4TWSdS}5M2c3T=2Q;yK)bf
zsz>$jE@AN)VPj+9>xBi72)OkrlX#PV+#`bgttt~<M@D>&LT>j?VFLG0z~mxSRqIqI
zu`S9Cm{lHa@GtDLiwQL2s+N>Dhn=$9mxW8d_qruhec5;LR`J(85|*z?Y`@4Ay~kni
zGph>6_w!BUR@E(|olh36LO4Sv{siM@EK_p1$@4sF1}LDFZ@M;Ubl|#AfPQ$X1Zf4c
zNxgUVFRdN%L%&4Hf>8;mAqT+h1XRR^{`b4)s*G`JIP%wKqVso2c>*39FR_W=KpDTm
zE(Ca@oG8*_fGxXnH<yL|BXmaNb6&g`!GVEy%^$=E@;GJY`9bGrBi;IEwd_h#N-B2K
z9*NTVM<%Tqn9OCaMNw&T;1L3HoP?yu9#Jk54!BVkrNVmYZuaWl(GKuC0RiMV7>|%%
zc!0!F#sU`$--EBk%TW+};TbP!)fdULk-~~nDey;(I~z=34INfGQ-WQYCbEw1^Ud?b
zebiytpmSJQHA5>nkPr`O0`_aZ<V+LtNYKXf=-Lsz>{FsoOEzp7az)z=FI;wFY}g<V
zDZ*g+Sl%6VulqK}q;Z)3U>P#beuQ@pX`!pH_^s4uEj4V8u+I_SWdnD~k<{BjB9V!^
zP0LYmpplhe(MUuU6EN!EE{468s>2>)A{AFzt7{+HRw(MvVLu4QCL#keEZoliZ6=9J
zH#Sl|35?DZ%s1iSUo~%%8KhVkxTQpyWe6MK8jM5GbffY5X;+u&BnrqopJ_G}#22F|
zR->N4u+#dPHcXqg?hTaHnAq(QX^HkFd4$iCk2aB*7yYOma8MdECT#Vu+wlw6uC~7k
z=!;$4>-w5(YBaqUxJ3mV)7|`HKYCxG&?=j9+<HC>&5w%X9>2>JP@IoG?>{N+1kH!<
zd)b`(V)X4#G9uoBr^jaNXo1mOu_8x~v7DiBTTHW7QOt?$M<<>EvqqydovuTp-$?@_
zGu|=uynMw9ry0>Yp|l+3$uPdc?Frf2FL5Sat@mH}-#+4=dKdDAw|`aO70ad54reQM
zp0hL@sr{CCJg)Gisyz6jd(U?O$YgLJp!H}P{aeynHM>IwkW5`UCu9yh@rl)=W8eZi
z5nBWCqIKV1^Qd1T%FJ2cAg4p%yIydnS<+m8)P$Xkd1zd~U*>BmJ$_I2c}&$~e*9G|
zUaE%FY$$G;p~mDu^F_}tqv40F4Kv6@4XZaFJH!+*Y}4g9bWonOA(g-Ew>ut_gNebc
z$&4D@K6JU@;@@Og53pgOWN-aX#Fc|NosfLsAE}x0y&gObyL?c72@PzfU072ZhE0EA
zm4+xFI!NB7Ff|z>;wJ<rn+7A`y}L2x6IT5l^d+yIMlh@Rj;Q#ix%6t$_KK@VtGTj@
z{sq1Kxsj7w=}$LvyuD&44;x$s%ge$1i*J{{3&T4*{oMjVQ<N@v8~_cwOF{GT&jF6f
zM)S0D>+7Dp#;9+A>NOi+KgZQqQRh^(Qbsq}!q){oI{ij{hc)gGAQA`F<^)QLn-7sZ
zCRxt1HCrr3pVi6_a=v`Dm8LdZkTvdyZk*z<PhA=DOZgYfUk$4Db(i7j>&84<E1Vno
zr+EVQKMHXJTj$TFa+5osGP6odnt@fGbEgsR6AJ^HT4Y*nM1e=coSMFa^s|hr+!N{r
ziXKWu^M_W0_ORuXi~tv-V&QyKhTkqox1-N(dkT}E8Gc?oUZu@Bc5C#5-V5b}iaa^M
z7L6VK7o~8qldJlS)D?|wSoJVGc~nOwL>AboBekH$^6sA>D;k?6*qcrB8$f-<V`jyC
zzVK!?kLHU+W4T`!4#h{FiW7#Qv(KWyUD@h^{$|j{YcuGid0c#xbJo7nERXeLSK5+~
z9eqBNY%;m>p7hl%(^sw}fyaNogxK9^(c<8xCPPH7WZJP}-9GCum!MF)Tf~F1g+{&$
zj%+wSQy4;HNal8XZUy^iE`8Lyw1iqG<tvC=9TDTR>DWH?rkK3$a`cMwt?*aYcXe3(
z!_hwoI9HWmUouYM^Y2mcPUykZq~;Y5FOT-moXM#urVgWHyMVV9-XkRNya!TDmVu(_
zP_x3FTY#98Pg;2KvV>-XzL%xDt4W!qt_y0z0T#dk*C3!YlG5hnumEAj(0^_9h+%*=
z_W2Etg)}=S*$(M2>N!o8Og}5(;sj9KY;=QMEK&cZEwT(XeDMZQik_$y#~qpw0_G<t
zWw=L^VwfAnM)i=?;MMZ$4I%Z&_WDqQYTMGy<ort|I0<!n@S;`asHxox4k2fP1c7VF
zNujzGz*FSx<aLxjyDL4C&+R(v&q*$<Sju}N4hD`6QRj1#RJp469AF9xen?WV0R=TS
z$FQGqPP-8$^!TVH(Fip~o)Rz}oI;@v=?p%iAg8T?B#odVvzLbXyGX1+i)44*OV(K{
z+8}8e>?_b<9u4WC{t(H`3}&Guft&>^P|gBxkdUx~QBbC+)KqWsS?duG+=q8C-w48!
zkVCVhM&bQ>u68EnwKTT|v41TK>hOxOoL{#aCYw}AOR8$v;A3Ts(*I&m@Cm_Z?dpl#
zx5ke<8X^$qrMxYjkIWIOIdk@8mKWLjcIZzZU4%g_z6q#=V^jS>Y*L(2@iA1)oxTK=
zQm776HONEH2DHW;TBxH;Kz}_%iy?M$LXEa79`(gCY8KqILQ@_le(Te7L2&Lrb=|Q4
zF_|qFICrZLX))xkWU?4M)zq8anpJa?C8c)VQzhUyidqqw(5_*vAJtcSVK2TjGMV(X
zP@9T^LQO@EhOV<V(G@B-&za!587u*03Sqy1eB}Lu4FP=hc*6Y1W*3aC@6IEVIpfOd
z2|tCHQ(D1jKe#PEa;mC=Ge7EeoW>_BJkBgShN@n6M!NUh(9+KT-jJhrQ+e<WsnikE
zL&I}0w-ABdrl@G{ZMX7LtMgE^i1@F>q{t7w39W@pHn$=oAj+W@6jItu^ga`C!lBNM
zCk8B0(0d-eM6Y3&r=y=xIsEgasiQ2;c2yy(`o_SrIgk!fC`bsg&{xX~3g!M6*NEQ<
zR;Z5rJA`T8k*l5`{913C!D7csMmwFa;=s5rRWmU`dF&pTjt*;-VKUqGZDHaQ`d?xs
zCy3i<L;?YkH~lX$f`r0`{_?+@7JC1SlfaBLqOAWeUHr%LABVlUpx*y~jtPMe@julR
gYz)q%p(Fg4IjI0(|3Oj^5K#Z9;h#=S^Y87y0QS+nWB>pF

diff --git a/Solutions/SAP ETD Cloud/Package/createUiDefinition.json b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json
index f54516d6d86..04939d82a00 100644
--- a/Solutions/SAP ETD Cloud/Package/createUiDefinition.json	
+++ b/Solutions/SAP ETD Cloud/Package/createUiDefinition.json	
@@ -6,7 +6,7 @@
     "config": {
       "isWizard": false,
       "basics": {
-        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Microsoft Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.\n\n**Data Connectors:** 1, **Analytic Rules:** 1\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
+        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPETD_cloud.svg\" width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Microsoft Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.\n\n**Data Connectors:** 1, **Analytic Rules:** 1\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
         "subscription": {
           "resourceProviders": [
             "Microsoft.OperationsManagement/solutions",
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index b6ff3697642..fd2ce88f585 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -998,7 +998,7 @@
           "contentKind": "Solution",
           "contentProductId": "[variables('_solutioncontentProductId')]",
           "id": "[variables('_solutioncontentProductId')]",
-          "icon": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">",
+          "icon": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPETD_cloud.svg\" width=\"75px\" height=\"75px\">",
           "contentId": "[variables('_solutionId')]",
           "parentId": "[variables('_solutionId')]",
           "source": {

From 5d46fabfd9b9b15cc34af735396da4a46e1b12ab Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Tue, 28 Jan 2025 14:55:14 +0100
Subject: [PATCH 05/17] logo fix

---
 Logos/SAPETD_cloud.svg | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/Logos/SAPETD_cloud.svg b/Logos/SAPETD_cloud.svg
index 6409c6f7382..9908905ba24 100644
--- a/Logos/SAPETD_cloud.svg
+++ b/Logos/SAPETD_cloud.svg
@@ -1 +1,8 @@
-<svg width="280" height="280" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" xml:space="preserve" overflow="hidden"><defs><clipPath id="clip0"><rect x="2409" y="897" width="280" height="280"/></clipPath><image width="500" height="500" xlink:href="data:image/png;base64,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" preserveAspectRatio="none" id="img1"></image><clipPath id="clip2"><rect x="0" y="0" width="853441" height="853441"/></clipPath></defs><g clip-path="url(#clip0)" transform="translate(-2409 -897)"><g transform="matrix(0.000328083 0 0 0.000328083 2409 897)"><g clip-path="url(#clip2)" transform="matrix(1 0 0 1 0.291504 0.0659187)"><use width="100%" height="100%" xlink:href="#img1" transform="scale(1706.88 1706.88)"></use></g></g></g></svg>
\ No newline at end of file
+<?xml version="1.0" encoding="UTF-8"?>
+<svg version="1.1" xmlns="http://www.w3.org/2000/svg" width="280" height="280">
+<path d="M0 0 C1.73379158 0.59053917 1.73379158 0.59053917 3.50260925 1.19300842 C6.5925978 2.24780579 9.67960073 3.31078905 12.76525879 4.37817383 C15.30963585 5.25671603 17.85632819 6.12843161 20.40307808 7.00006676 C37.6040034 12.88764148 54.79180789 18.8213672 71.85546875 25.09765625 C72.65082031 25.38640625 73.44617188 25.67515625 74.265625 25.97265625 C79.73795482 27.98014232 79.73795482 27.98014232 80.85546875 29.09765625 C80.95719369 30.42752467 80.99063903 31.76270788 80.99591064 33.09645081 C81.00162079 33.95818909 81.00733093 34.81992737 81.01321411 35.70777893 C81.0148909 37.13742226 81.0148909 37.13742226 81.01660156 38.59594727 C81.02156647 39.59451752 81.02653137 40.59308777 81.03164673 41.62191772 C81.04632887 44.94847289 81.05308513 48.27498016 81.05859375 51.6015625 C81.0643462 53.91592917 81.07010392 56.23029583 81.0758667 58.54466248 C81.08639789 63.41478701 81.09222471 68.28489496 81.09570312 73.1550293 C81.10115129 79.35827268 81.12509078 85.56129247 81.15367508 91.76446629 C81.17243164 96.55613306 81.17751424 101.3477478 81.179039 106.13944817 C81.18204363 108.4233006 81.189997 110.7071526 81.20322418 112.9909687 C81.36410974 142.94134062 74.87656934 165.04488551 53.85546875 187.09765625 C37.46253904 203.41982511 15.32672588 215.88546367 -4.88769531 226.84619141 C-6.46083071 227.71852936 -8.0138937 228.62763909 -9.54980469 229.56396484 C-10.33129883 230.0327002 -11.11279297 230.50143555 -11.91796875 230.984375 C-12.61067871 231.41322998 -13.30338867 231.84208496 -14.01708984 232.28393555 C-16.82398422 233.35753882 -18.29379592 232.97349122 -21.14453125 232.09765625 C-23.43017578 231.07299805 -23.43017578 231.07299805 -25.77734375 229.796875 C-26.65616211 229.32064697 -27.53498047 228.84441895 -28.44042969 228.35375977 C-29.3740332 227.83612061 -30.30763672 227.31848145 -31.26953125 226.78515625 C-32.24438477 226.24753662 -33.21923828 225.70991699 -34.22363281 225.15600586 C-55.34043528 213.38882371 -75.97452959 200.24333779 -93.14453125 183.09765625 C-93.88960937 182.36417969 -94.6346875 181.63070312 -95.40234375 180.875 C-109.46889344 166.11891356 -116.33018925 147.5226452 -116.25805664 127.31884766 C-116.25820267 126.24507874 -116.25834869 125.17130981 -116.25849915 124.06500244 C-116.25780414 120.52638712 -116.25003101 116.98782485 -116.2421875 113.44921875 C-116.24032186 110.99156727 -116.23889864 108.53391541 -116.23789978 106.07626343 C-116.23408613 99.61544768 -116.22426566 93.1546545 -116.2131958 86.69384766 C-116.20295693 80.09798488 -116.19839685 73.50211844 -116.19335938 66.90625 C-116.18264237 53.97004247 -116.16577265 41.03385056 -116.14453125 28.09765625 C-93.21425796 20.07674008 -70.28356423 12.06323117 -47.26953125 4.28515625 C-44.25707204 3.26619338 -41.24482207 2.24662792 -38.23312378 1.22541809 C-36.4138567 0.60858458 -34.59416842 -0.00700879 -32.7739563 -0.62104797 C-31.97214935 -0.89281357 -31.17034241 -1.16457916 -30.34423828 -1.44458008 C-29.59885803 -1.69438629 -28.85347778 -1.9441925 -28.08551025 -2.2015686 C-26.01087686 -2.90756994 -26.01087686 -2.90756994 -23.62841797 -4.1628418 C-15.84141616 -6.48118546 -7.30124709 -2.53756788 0 0 Z M-27.24609375 25.7734375 C-28.07362152 26.05809372 -28.90114929 26.34274994 -29.75375366 26.6360321 C-32.4271919 27.5564224 -35.09845752 28.48292868 -37.76953125 29.41015625 C-41.1983841 30.59617715 -44.62823379 31.77928315 -48.05859375 32.9609375 C-48.95088684 33.26863068 -49.84317993 33.57632385 -50.76251221 33.89334106 C-64.85323253 38.73596558 -79.00388207 43.40333639 -93.14453125 48.09765625 C-93.23760871 59.21645575 -93.30848669 70.33516109 -93.35177994 81.45427227 C-93.37256871 86.61850022 -93.40072552 91.78245971 -93.44628906 96.9465332 C-93.49005961 101.93918778 -93.51373369 106.93158571 -93.52404022 111.9244175 C-93.53137597 113.82002611 -93.54569945 115.71562222 -93.56745148 117.61112022 C-93.78250325 137.14506659 -89.81997504 152.67514776 -76.08081055 167.25732422 C-60.97465811 182.67232575 -41.36475917 194.5332589 -22.14453125 204.09765625 C-21.33902832 204.51168701 -20.53352539 204.92571777 -19.70361328 205.35229492 C-17.17651223 206.34160041 -17.17651223 206.34160041 -14.79541016 205.38183594 C-13.59537354 204.70749512 -13.59537354 204.70749512 -12.37109375 204.01953125 C-11.47116699 203.52300049 -10.57124023 203.02646973 -9.64404297 202.51489258 C-8.6954541 201.96470459 -7.74686523 201.4145166 -6.76953125 200.84765625 C-5.78871582 200.29424561 -4.80790039 199.74083496 -3.79736328 199.1706543 C4.34996357 194.51913788 12.22673396 189.55550219 19.85546875 184.09765625 C20.92152344 183.33710938 21.98757812 182.5765625 23.0859375 181.79296875 C40.49843443 169.03704578 54.02482297 155.02164823 57.85546875 133.09765625 C58.10018054 130.15042782 58.11039704 127.22920447 58.08251953 124.27319336 C58.08281158 123.44282562 58.08310364 122.61245789 58.08340454 121.75692749 C58.08202501 119.04617402 58.06652958 116.33570471 58.05078125 113.625 C58.04704621 111.73214366 58.04420156 109.83928537 58.04220581 107.94642639 C58.03460801 102.98986372 58.014993 98.03342022 57.99279785 93.0769043 C57.97225601 88.00896822 57.96318633 82.94101268 57.953125 77.87304688 C57.93174315 67.94786461 57.89765423 58.02277038 57.85546875 48.09765625 C56.87522232 47.77210754 55.89497589 47.44655884 54.88502502 47.11114502 C22.12100797 36.22640068 22.12100797 36.22640068 10.1328125 32.08203125 C9.32590973 31.80331177 8.51900696 31.52459229 7.68765259 31.23742676 C4.57049105 30.15911232 1.45428594 29.07812026 -1.66040039 27.99267578 C-4.04045976 27.16427682 -6.42239511 26.3414822 -8.8046875 25.51953125 C-9.5074733 25.27281677 -10.21025909 25.02610229 -10.93434143 24.77191162 C-17.31143787 22.57941875 -21.0504777 23.60904293 -27.24609375 25.7734375 Z " fill="#006EEE" transform="translate(160.14453125,25.90234375)"/>
+<path d="M0 0 C0 6.93 0 13.86 0 21 C-3.65449219 22.21236328 -3.65449219 22.21236328 -7.3828125 23.44921875 C-9.79260532 24.2498692 -12.20221862 25.05105774 -14.61181641 25.85229492 C-16.26202099 26.40070661 -17.91240603 26.94857564 -19.56298828 27.49584961 C-31.06411183 31.30781368 -31.06411183 31.30781368 -42.4921875 35.33203125 C-53.9110731 39.46002934 -65.47378464 43.18494993 -77 47 C-77.06977071 58.13610205 -77.12294808 69.27215138 -77.15543652 80.40842819 C-77.17103598 85.58046995 -77.19216887 90.75236123 -77.22631836 95.92431641 C-77.25911691 100.92343864 -77.27689593 105.92241689 -77.28463173 110.92163849 C-77.29013866 112.82084669 -77.30089151 114.72004778 -77.31719017 116.61919403 C-77.42685465 129.93738849 -76.66919562 141.90387953 -70.5 154 C-70.16033203 154.671521 -69.82066406 155.34304199 -69.47070312 156.03491211 C-65.71830743 163.07232623 -60.71839488 168.51034091 -55 174 C-54.05060547 174.94359375 -54.05060547 174.94359375 -53.08203125 175.90625 C-37.90880225 190.10812439 -18.01030871 199.95885444 0 210 C0 216.27 0 222.54 0 229 C-20.01190348 220.99523861 -39.27671475 208.51279782 -56 195 C-56.52883789 194.57654297 -57.05767578 194.15308594 -57.60253906 193.71679688 C-74.87760407 179.81272023 -89.62424469 162.65004852 -93 140 C-93.25186096 136.28230449 -93.25429156 132.5839482 -93.22705078 128.85888672 C-93.22734283 127.79428726 -93.22763489 126.72968781 -93.22793579 125.63282776 C-93.22655338 122.1483619 -93.21104373 118.66411555 -93.1953125 115.1796875 C-93.1915785 112.75017412 -93.18873335 110.32065923 -93.18673706 107.8911438 C-93.17913113 101.52241803 -93.15950887 95.15378468 -93.1373291 88.78509521 C-93.11680502 82.27601369 -93.10772134 75.76691711 -93.09765625 69.2578125 C-93.07626001 56.50516909 -93.04254994 43.75258948 -93 31 C-92.20416504 30.74831055 -91.40833008 30.49662109 -90.58837891 30.23730469 C-87.58676796 29.28603162 -84.58626281 28.33136277 -81.58642578 27.37451172 C-79.66910687 26.76404349 -77.75058191 26.1573673 -75.83203125 25.55078125 C-69.47195806 23.51955369 -63.22425835 21.38126633 -57.05175781 18.83520508 C-54.59062244 17.83335547 -52.10263161 16.99704632 -49.5625 16.21875 C-48.64726563 15.93386719 -47.73203125 15.64898437 -46.7890625 15.35546875 C-44.9296875 14.78515625 -43.0703125 14.21484375 -41.2109375 13.64453125 C-35.87436161 11.98342805 -30.70213379 10.12298679 -25.53125 8.00390625 C-21.08244488 6.23948817 -16.54289968 4.75141223 -12 3.25 C-11.06027344 2.93417969 -10.12054688 2.61835938 -9.15234375 2.29296875 C-8.25644531 1.99519531 -7.36054688 1.69742187 -6.4375 1.390625 C-5.63183594 1.12282227 -4.82617188 0.85501953 -3.99609375 0.57910156 C-2 0 -2 0 0 0 Z " fill="#87CFFC" transform="translate(141,25)"/>
+<path d="M0 0 C1.73379158 0.59053917 1.73379158 0.59053917 3.50260925 1.19300842 C6.5925978 2.24780579 9.67960073 3.31078905 12.76525879 4.37817383 C15.30963585 5.25671603 17.85632819 6.12843161 20.40307808 7.00006676 C37.6040034 12.88764148 54.79180789 18.8213672 71.85546875 25.09765625 C72.65082031 25.38640625 73.44617188 25.67515625 74.265625 25.97265625 C79.73795482 27.98014232 79.73795482 27.98014232 80.85546875 29.09765625 C80.95719369 30.42752467 80.99063903 31.76270788 80.99591064 33.09645081 C81.00162079 33.95818909 81.00733093 34.81992737 81.01321411 35.70777893 C81.0148909 37.13742226 81.0148909 37.13742226 81.01660156 38.59594727 C81.02156647 39.59451752 81.02653137 40.59308777 81.03164673 41.62191772 C81.04632887 44.94847289 81.05308513 48.27498016 81.05859375 51.6015625 C81.0643462 53.91592917 81.07010392 56.23029583 81.0758667 58.54466248 C81.08639789 63.41478701 81.09222471 68.28489496 81.09570312 73.1550293 C81.10115129 79.35827268 81.12509078 85.56129247 81.15367508 91.76446629 C81.17243164 96.55613306 81.17751424 101.3477478 81.179039 106.13944817 C81.18204363 108.4233006 81.189997 110.7071526 81.20322418 112.9909687 C81.36410974 142.94134062 74.87656934 165.04488551 53.85546875 187.09765625 C37.46253904 203.41982511 15.32672588 215.88546367 -4.88769531 226.84619141 C-6.46083071 227.71852936 -8.0138937 228.62763909 -9.54980469 229.56396484 C-10.33129883 230.0327002 -11.11279297 230.50143555 -11.91796875 230.984375 C-12.61067871 231.41322998 -13.30338867 231.84208496 -14.01708984 232.28393555 C-16.82398422 233.35753882 -18.29379592 232.97349122 -21.14453125 232.09765625 C-23.43017578 231.07299805 -23.43017578 231.07299805 -25.77734375 229.796875 C-26.65616211 229.32064697 -27.53498047 228.84441895 -28.44042969 228.35375977 C-29.3740332 227.83612061 -30.30763672 227.31848145 -31.26953125 226.78515625 C-32.24438477 226.24753662 -33.21923828 225.70991699 -34.22363281 225.15600586 C-55.34043528 213.38882371 -75.97452959 200.24333779 -93.14453125 183.09765625 C-93.88960937 182.36417969 -94.6346875 181.63070312 -95.40234375 180.875 C-109.46889344 166.11891356 -116.33018925 147.5226452 -116.25805664 127.31884766 C-116.25820267 126.24507874 -116.25834869 125.17130981 -116.25849915 124.06500244 C-116.25780414 120.52638712 -116.25003101 116.98782485 -116.2421875 113.44921875 C-116.24032186 110.99156727 -116.23889864 108.53391541 -116.23789978 106.07626343 C-116.23408613 99.61544768 -116.22426566 93.1546545 -116.2131958 86.69384766 C-116.20295693 80.09798488 -116.19839685 73.50211844 -116.19335938 66.90625 C-116.18264237 53.97004247 -116.16577265 41.03385056 -116.14453125 28.09765625 C-93.21425796 20.07674008 -70.28356423 12.06323117 -47.26953125 4.28515625 C-44.25707204 3.26619338 -41.24482207 2.24662792 -38.23312378 1.22541809 C-36.4138567 0.60858458 -34.59416842 -0.00700879 -32.7739563 -0.62104797 C-31.97214935 -0.89281357 -31.17034241 -1.16457916 -30.34423828 -1.44458008 C-29.59885803 -1.69438629 -28.85347778 -1.9441925 -28.08551025 -2.2015686 C-26.01087686 -2.90756994 -26.01087686 -2.90756994 -23.62841797 -4.1628418 C-15.84141616 -6.48118546 -7.30124709 -2.53756788 0 0 Z M-16.14453125 -0.90234375 C-16.14453125 6.02765625 -16.14453125 12.95765625 -16.14453125 20.09765625 C-14.09492188 20.773125 -12.0453125 21.44859375 -9.93359375 22.14453125 C-7.91430291 22.81240556 -5.89536912 23.48134883 -3.87646484 24.15039062 C-2.49011444 24.60918747 -1.1034046 25.06689984 0.28369141 25.5234375 C2.29558938 26.18583857 4.30609352 26.85233668 6.31640625 27.51953125 C7.52087402 27.9175293 8.7253418 28.31552734 9.96630859 28.72558594 C12.74501974 29.67555286 15.44986799 30.74438049 18.16259766 31.86816406 C26.12462221 35.09014549 34.32746773 37.6582372 42.48046875 40.34765625 C44.169364 40.90727099 45.85816688 41.46716459 47.546875 42.02734375 C51.64868171 43.38733183 55.75171999 44.74354017 59.85546875 46.09765625 C59.94851761 57.73799428 60.01940993 69.37824252 60.06271744 81.01887798 C60.08351231 86.4252361 60.11168071 91.83133808 60.15722656 97.23754883 C60.20097476 102.463621 60.22466663 107.68944818 60.23497772 112.91568947 C60.2423174 114.900611 60.2566488 116.88552049 60.27838898 118.87033653 C60.50775148 140.69632935 55.22342147 156.28980746 39.71875 172.3046875 C29.3789481 182.04762478 17.30973467 189.83731615 5.04296875 196.91015625 C4.24793945 197.37599121 3.45291016 197.84182617 2.63378906 198.32177734 C-0.85168133 200.33697343 -4.25599417 202.21109684 -8.01171875 203.671875 C-11.54508749 205.1891451 -13.69227241 206.11957193 -16.14453125 209.09765625 C-17.5547733 215.34504272 -16.82451025 221.79525825 -16.14453125 228.09765625 C8.33738445 216.47216555 32.48524727 202.2287392 51.85546875 183.09765625 C52.64953125 182.37578125 53.44359375 181.65390625 54.26171875 180.91015625 C65.82756247 170.13649361 75.87140583 153.62584649 77.03615189 137.61375427 C77.10022459 134.77118624 77.10296758 131.93502081 77.08251953 129.09179688 C77.08281158 128.0177359 77.08310364 126.94367493 77.08340454 125.83706665 C77.08201823 122.30926253 77.06648985 118.78167319 77.05078125 115.25390625 C77.04704864 112.79911413 77.04420284 110.34432051 77.04220581 107.88952637 C77.03458892 101.4451482 77.01495708 95.00086094 76.99279785 88.55651855 C76.97229754 81.97388946 76.96319515 75.3912456 76.953125 68.80859375 C76.93170939 55.90490925 76.89798424 43.0012876 76.85546875 30.09765625 C75.70135498 29.72479492 74.54724121 29.35193359 73.3581543 28.96777344 C69.02807366 27.56825847 64.69885354 26.16609743 60.36987305 24.76318359 C58.50519366 24.15928449 56.64028949 23.55607898 54.77514648 22.95361328 C36.41249163 17.02129028 36.41249163 17.02129028 28.19854736 13.9654541 C24.10765221 12.45032354 19.97612103 11.05332521 15.84765625 9.64453125 C14.50950363 9.18690399 14.50950363 9.18690399 13.14431763 8.72003174 C11.28422458 8.08429056 9.42394285 7.4491012 7.56347656 6.81445312 C4.70180778 5.83787536 1.84111561 4.85847291 -1.01953125 3.87890625 C-2.83457756 3.25894517 -4.64967965 2.63914736 -6.46484375 2.01953125 C-7.32199982 1.72584656 -8.17915588 1.43216187 -9.06228638 1.12957764 C-12.53173878 -0.27580063 -12.53173878 -0.27580063 -16.14453125 -0.90234375 Z M-27.62109375 1.1796875 C-28.26517181 1.39453293 -28.90924988 1.60937836 -29.57284546 1.83073425 C-30.94015177 2.28751131 -32.30697092 2.74574878 -33.67333984 3.20532227 C-35.7394421 3.90003892 -37.80706195 4.59006663 -39.875 5.27929688 C-45.67015688 7.21637733 -51.44821439 9.17230833 -57.15380859 11.36206055 C-62.80953867 13.45192009 -68.57441385 15.25155324 -74.30078125 17.13671875 C-75.32171875 17.47445312 -76.34265625 17.8121875 -77.39453125 18.16015625 C-78.3071875 18.46050781 -79.21984375 18.76085937 -80.16015625 19.0703125 C-82.33488817 19.81894404 -84.49441077 20.61219657 -86.64355469 21.43139648 C-91.76353184 23.35741233 -96.95104802 25.06951593 -102.14453125 26.78515625 C-103.11003906 27.10548828 -104.07554688 27.42582031 -105.0703125 27.75585938 C-107.42793097 28.53784174 -109.78600742 29.3184097 -112.14453125 30.09765625 C-112.21485668 44.10220508 -112.26743407 58.10672621 -112.29996777 72.11141586 C-112.31558665 78.61519265 -112.3367559 85.11885033 -112.37084961 91.62255859 C-112.40357773 97.90548108 -112.42141265 104.1882894 -112.42916298 110.47129059 C-112.43468237 112.86172532 -112.44546011 115.25215419 -112.46172142 117.64253998 C-112.48367432 121.00499202 -112.48649071 124.36697939 -112.48510742 127.72949219 C-112.49589325 128.70557938 -112.50667908 129.68166656 -112.51779175 130.68733215 C-112.47359919 140.69217043 -110.19694234 150.15060386 -105.58203125 159.03515625 C-105.06974976 160.03857056 -105.06974976 160.03857056 -104.54711914 161.06225586 C-90.29774468 187.9749042 -62.7197026 204.31514254 -37.14453125 219.09765625 C-36.42861816 219.51241211 -35.71270508 219.92716797 -34.97509766 220.35449219 C-32.76478996 221.63027891 -30.54973538 222.89727619 -28.33203125 224.16015625 C-27.64351074 224.55485107 -26.95499023 224.9495459 -26.24560547 225.35620117 C-22.90360625 227.40453071 -22.90360625 227.40453071 -19.14453125 228.09765625 C-19.14453125 221.82765625 -19.14453125 215.55765625 -19.14453125 209.09765625 C-20.81 208.17984375 -22.47546875 207.26203125 -24.19140625 206.31640625 C-47.30989326 193.51839177 -47.30989326 193.51839177 -56.14453125 187.09765625 C-56.76086426 186.65744141 -57.37719727 186.21722656 -58.01220703 185.76367188 C-77.01320728 172.15454045 -92.00201972 157.04221101 -96.14453125 133.09765625 C-96.39033255 130.08945275 -96.39935247 127.10648387 -96.37158203 124.08959961 C-96.37187408 123.23972473 -96.37216614 122.38984985 -96.37246704 121.51422119 C-96.37108702 118.73853921 -96.35558913 115.96313439 -96.33984375 113.1875 C-96.33610889 111.24980313 -96.33326415 109.31210435 -96.33126831 107.37440491 C-96.3236691 102.29947605 -96.30405284 97.2246635 -96.28186035 92.14978027 C-96.26132158 86.96119764 -96.25224948 81.77259603 -96.2421875 76.58398438 C-96.22080317 66.42182418 -96.1867125 56.25974993 -96.14453125 46.09765625 C-95.16693848 45.78538086 -94.1893457 45.47310547 -93.18212891 45.15136719 C-89.50940575 43.9771134 -85.83823364 42.79807189 -82.16748047 41.61767578 C-80.58716191 41.11021042 -79.00644129 40.60399516 -77.42529297 40.09912109 C-69.60825556 37.60221794 -61.84501325 35.1097384 -54.26080322 31.96032715 C-50.87658175 30.58079303 -47.42023519 29.43996685 -43.94921875 28.30078125 C-42.87173874 27.94303619 -42.87173874 27.94303619 -41.77249146 27.57806396 C-39.52244424 26.83172091 -37.27103058 26.08960562 -35.01953125 25.34765625 C-33.47516704 24.83621938 -31.93089545 24.32450273 -30.38671875 23.8125 C-26.6405423 22.57047369 -22.8925385 21.33420017 -19.14453125 20.09765625 C-19.14453125 13.16765625 -19.14453125 6.23765625 -19.14453125 -0.90234375 C-22.18439011 -0.90234375 -24.74351241 0.21719685 -27.62109375 1.1796875 Z M-27.24609375 25.7734375 C-28.07362152 26.05809372 -28.90114929 26.34274994 -29.75375366 26.6360321 C-32.4271919 27.5564224 -35.09845752 28.48292868 -37.76953125 29.41015625 C-41.1983841 30.59617715 -44.62823379 31.77928315 -48.05859375 32.9609375 C-48.95088684 33.26863068 -49.84317993 33.57632385 -50.76251221 33.89334106 C-64.85323253 38.73596558 -79.00388207 43.40333639 -93.14453125 48.09765625 C-93.23760871 59.21645575 -93.30848669 70.33516109 -93.35177994 81.45427227 C-93.37256871 86.61850022 -93.40072552 91.78245971 -93.44628906 96.9465332 C-93.49005961 101.93918778 -93.51373369 106.93158571 -93.52404022 111.9244175 C-93.53137597 113.82002611 -93.54569945 115.71562222 -93.56745148 117.61112022 C-93.78250325 137.14506659 -89.81997504 152.67514776 -76.08081055 167.25732422 C-60.97465811 182.67232575 -41.36475917 194.5332589 -22.14453125 204.09765625 C-21.33902832 204.51168701 -20.53352539 204.92571777 -19.70361328 205.35229492 C-17.17651223 206.34160041 -17.17651223 206.34160041 -14.79541016 205.38183594 C-13.59537354 204.70749512 -13.59537354 204.70749512 -12.37109375 204.01953125 C-11.47116699 203.52300049 -10.57124023 203.02646973 -9.64404297 202.51489258 C-8.6954541 201.96470459 -7.74686523 201.4145166 -6.76953125 200.84765625 C-5.78871582 200.29424561 -4.80790039 199.74083496 -3.79736328 199.1706543 C4.34996357 194.51913788 12.22673396 189.55550219 19.85546875 184.09765625 C20.92152344 183.33710938 21.98757812 182.5765625 23.0859375 181.79296875 C40.49843443 169.03704578 54.02482297 155.02164823 57.85546875 133.09765625 C58.10018054 130.15042782 58.11039704 127.22920447 58.08251953 124.27319336 C58.08281158 123.44282562 58.08310364 122.61245789 58.08340454 121.75692749 C58.08202501 119.04617402 58.06652958 116.33570471 58.05078125 113.625 C58.04704621 111.73214366 58.04420156 109.83928537 58.04220581 107.94642639 C58.03460801 102.98986372 58.014993 98.03342022 57.99279785 93.0769043 C57.97225601 88.00896822 57.96318633 82.94101268 57.953125 77.87304688 C57.93174315 67.94786461 57.89765423 58.02277038 57.85546875 48.09765625 C56.87522232 47.77210754 55.89497589 47.44655884 54.88502502 47.11114502 C22.12100797 36.22640068 22.12100797 36.22640068 10.1328125 32.08203125 C9.32590973 31.80331177 8.51900696 31.52459229 7.68765259 31.23742676 C4.57049105 30.15911232 1.45428594 29.07812026 -1.66040039 27.99267578 C-4.04045976 27.16427682 -6.42239511 26.3414822 -8.8046875 25.51953125 C-9.5074733 25.27281677 -10.21025909 25.02610229 -10.93434143 24.77191162 C-17.31143787 22.57941875 -21.0504777 23.60904293 -27.24609375 25.7734375 Z " fill="#1B2B39" transform="translate(160.14453125,25.90234375)"/>
+<path d="M0 0 C6.16616243 3.69969746 10.73171712 7.33310034 13.48046875 14.15234375 C14.78124006 19.64711709 14.41196271 25.27125588 14.125 30.875 C15.9503125 30.75125 15.9503125 30.75125 17.8125 30.625 C21.1976174 30.61299604 22.06368234 30.83586107 25.0625 32.75 C28.1748971 35.95671216 28.25294794 37.72388348 28.27026367 42.08740234 C28.27664352 43.17548187 28.28302338 44.2635614 28.28959656 45.38461304 C28.29070938 46.56480011 28.2918222 47.74498718 28.29296875 48.9609375 C28.29796135 50.77363632 28.29796135 50.77363632 28.30305481 52.62295532 C28.30812552 55.18352883 28.31046309 57.74410897 28.31030273 60.3046875 C28.31248701 64.22667319 28.33063545 68.14837671 28.34960938 72.0703125 C28.35254367 74.55468653 28.35452822 77.03906191 28.35546875 79.5234375 C28.36265427 80.69957611 28.36983978 81.87571472 28.37724304 83.0874939 C28.37416641 84.18187775 28.37108978 85.2762616 28.36791992 86.40380859 C28.36934494 87.36596283 28.37076996 88.32811707 28.37223816 89.31942749 C28.10332713 92.09902118 27.72925916 93.59279742 26.125 95.875 C22.37725949 98.76672626 19.54433259 99.25881205 14.86938477 99.29492188 C13.6278212 99.31083374 12.38625763 99.32674561 11.10707092 99.34313965 C9.76018328 99.34440696 8.41329423 99.34458373 7.06640625 99.34375 C5.67544754 99.35085682 4.28449174 99.35855658 2.89353943 99.36682129 C-0.01742712 99.38024544 -2.92812255 99.38184424 -5.83911133 99.37597656 C-9.55950427 99.37008086 -13.278592 99.40067353 -16.99873257 99.44109344 C-19.87021322 99.46701155 -22.74138123 99.46984428 -25.61296272 99.46620178 C-26.9840428 99.4678891 -28.35513793 99.47749436 -29.72610283 99.49534607 C-41.76442422 99.63486428 -41.76442422 99.63486428 -45.69946289 96.46289062 C-48.67792556 92.91988712 -49.00317871 91.3059481 -49.03613281 86.77026367 C-49.04574036 85.70543259 -49.0553479 84.6406015 -49.06524658 83.54350281 C-49.06949646 82.38832657 -49.07374634 81.23315033 -49.078125 80.04296875 C-49.08382507 78.85907059 -49.08952515 77.67517242 -49.09539795 76.45539856 C-49.10485821 73.94610491 -49.11138599 71.43679877 -49.11523438 68.92749023 C-49.12493353 65.08880908 -49.1559455 61.25066462 -49.1875 57.41210938 C-49.19403049 54.97656569 -49.19928078 52.54101816 -49.203125 50.10546875 C-49.2154718 48.9563652 -49.2278186 47.80726166 -49.24053955 46.62333679 C-49.23753845 45.54904922 -49.23453735 44.47476166 -49.23144531 43.36791992 C-49.23509094 42.42575119 -49.23873657 41.48358246 -49.24249268 40.51286316 C-48.79725318 37.31693314 -47.76896638 35.47011853 -45.875 32.875 C-42.78611478 30.81574319 -42.16564073 30.6359626 -38.6875 30.75 C-37.429375 30.79125 -36.17125 30.8325 -34.875 30.875 C-34.92140625 29.9571875 -34.9678125 29.039375 -35.015625 28.09375 C-35.29057412 18.74547979 -34.61412259 13.20451037 -28.5 6.125 C-20.42483951 -0.79656614 -10.46656582 -4.06236573 0 0 Z M-19.875 15.875 C-22.22619399 19.40179099 -22.08943452 20.90379485 -22 25.0625 C-21.95875 26.980625 -21.9175 28.89875 -21.875 30.875 C-14.285 30.875 -6.695 30.875 1.125 30.875 C1.99959984 22.52280033 1.99959984 22.52280033 -1.1875 15.1875 C-4.34066259 12.47431358 -6.07591053 11.9503858 -10.1875 11.5625 C-14.55619458 11.93272835 -16.50602201 13.13280861 -19.875 15.875 Z M-43.1640625 36.70898438 C-45.74490672 41.48472465 -45.55184892 45.81122505 -45.46875 51.16015625 C-45.46879028 52.25339706 -45.46883057 53.34663788 -45.46887207 54.4730072 C-45.46351831 56.78032186 -45.445942 59.08763614 -45.41699219 61.39477539 C-45.37510712 64.92846299 -45.37592717 68.46024645 -45.3828125 71.99414062 C-45.37232098 74.23699242 -45.3593831 76.4798344 -45.34375 78.72265625 C-45.34354858 79.7800148 -45.34334717 80.83737335 -45.34313965 81.92677307 C-45.32722778 82.91137009 -45.31131592 83.8959671 -45.29492188 84.91040039 C-45.28650269 85.77468155 -45.2780835 86.63896271 -45.26940918 87.5294342 C-44.78640168 90.40189744 -43.86793846 91.77294343 -41.875 93.875 C-38.78413235 94.90528922 -36.6219132 95.01380203 -33.38134766 95.03613281 C-32.25652985 95.04574036 -31.13171204 95.0553479 -29.97280884 95.06524658 C-28.75717255 95.06949646 -27.54153625 95.07374634 -26.2890625 95.078125 C-25.03999115 95.08382507 -23.7909198 95.08952515 -22.5039978 95.09539795 C-19.85939897 95.10485098 -17.2149137 95.11174638 -14.5703125 95.11523438 C-11.18864914 95.120717 -7.80738885 95.14474456 -4.42585182 95.17320633 C-1.19278604 95.19635692 2.04030043 95.19828384 5.2734375 95.203125 C7.09081924 95.2216452 7.09081924 95.2216452 8.94491577 95.24053955 C10.64159897 95.2360379 10.64159897 95.2360379 12.37255859 95.23144531 C13.3650058 95.23509094 14.357453 95.23873657 15.37997437 95.24249268 C18.61626505 94.80923147 20.49912067 93.78539842 23.125 91.875 C24.35086148 89.42327705 24.27823133 87.7715099 24.31787109 85.02978516 C24.34196548 83.51779037 24.34196548 83.51779037 24.36654663 81.97525024 C24.41091758 77.36827209 24.45204949 72.76143854 24.47509766 68.15429688 C24.49167548 65.7215825 24.5189891 63.28891719 24.55712891 60.85644531 C24.61177162 57.35455989 24.63375188 53.85381626 24.6484375 50.3515625 C24.68244156 48.71859726 24.68244156 48.71859726 24.71713257 47.05264282 C24.71428253 46.03834198 24.7114325 45.02404114 24.70849609 43.97900391 C24.71658295 43.08790924 24.7246698 42.19681458 24.73300171 41.27871704 C23.84046521 37.7501 22.1890987 36.72948007 19.125 34.875 C16.28552611 34.27015434 16.28552611 34.27015434 13.22070312 34.34155273 C12.05599487 34.3257164 10.89128662 34.30988007 9.69128418 34.29356384 C7.81769226 34.30100365 7.81769226 34.30100365 5.90625 34.30859375 C4.61561646 34.30239517 3.32498291 34.29619659 1.99523926 34.28981018 C-0.73170868 34.27942281 -3.45813423 34.28394309 -6.18505859 34.29858398 C-9.67247234 34.3157794 -13.15823958 34.29226253 -16.64546967 34.25709438 C-19.982493 34.2298033 -23.31912025 34.23985727 -26.65625 34.24609375 C-27.90531128 34.23283554 -29.15437256 34.21957733 -30.44128418 34.20591736 C-37.09263504 34.27531819 -37.09263504 34.27531819 -43.1640625 36.70898438 Z " fill="#192632" transform="translate(152.875,82.125)"/>
+<path d="M0 0 C4.29 0 8.58 0 13 0 C13 9.24 13 18.48 13 28 C8.71 28 4.42 28 0 28 C0 18.76 0 9.52 0 0 Z " fill="#1A2733" transform="translate(136,133)"/>
+</svg>
\ No newline at end of file

From 8f6140e7b5a43c3b36b7eb106d231c3056c8b823 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 13:42:09 +0100
Subject: [PATCH 06/17] bring back requested structure

---
 .../SAP ETD - Synch alerts.yaml               |  73 ++++
 .../Data Connectors/createUIDef.json          | 406 ++++++++++++++++++
 .../SAP ETD Cloud/Data/Solution_SAPETD.json   |  24 ++
 3 files changed, 503 insertions(+)
 create mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json
 create mode 100644 Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
new file mode 100644
index 00000000000..3e24a70cbc0
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -0,0 +1,73 @@
+id: 7a830484-e349-4527-85f6-7850c468c238
+kind: Scheduled
+name: SAP ETD - Synch alerts
+description: Synch alerts coming in from SAP Enterprise Threat Detection into Microsoft Sentinel (one way)
+severity: Medium
+status: Available
+requiredDataConnectors:
+  - connectorId: SAPETDAlerts
+    dataTypes:
+      - ETDAlerts_CL
+queryFrequency: 1h
+queryPeriod: 2d
+triggerOperator: gt
+triggerThreshold: 0
+tactics: []
+relevantTechniques: []
+query: |
+  let minThreshold= 1;
+  let minScore= 50;
+  let lookBack= 70d;
+  ETDAlerts_CL
+  // | where CreationTimestamp > ago(lookBack)
+  | where PatternName <> "Logon from external with SAP standard users"
+  | summarize arg_max(TimeGenerated, *) by AlertId, Id
+  | project-away TenantId, Type, Version, EventSourceId, Technical*
+  | where Threshold >= minThreshold and Score >= minScore
+  | order by Timestamp
+  | extend NewEvent= split(OriginalEvent, "\n")
+  | mv-expand NewEvent to typeof(string)
+  | parse NewEvent with Key: string ":" Value: string
+  | extend
+      Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),
+      Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)
+  | extend KV= bag_pack(Key, Value)
+  | summarize
+      KeyValues= make_bag(KV),
+      take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)
+      by AlertId, Id
+  | extend
+      SystemId= KeyValues.sid,
+      ClienId= KeyValues.client,
+      Host= KeyValues.instance_host,
+      Instance= KeyValues.instance_name,
+      User= KeyValues.user_name,
+      IP= KeyValues.user_ip
+eventGroupingSettings:
+  aggregationKind: AlertPerResult
+entityMappings:
+  - entityType: CloudApplication
+    fieldMappings:
+      - identifier: Name
+        columnName: SystemId
+      - identifier: AppId
+        columnName: ClienId
+      - identifier: InstanceName
+        columnName: Instance
+  - entityType: Host
+    fieldMappings:
+      - identifier: FullName
+        columnName: Host
+  - entityType: IP
+    fieldMappings:
+      - identifier: Address
+        columnName: IP
+alertDetailsOverride:
+  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
+  alertDescriptionFormat: |
+    Alert synched from SAP Enterprise Threat Detection, cloud edition into Microsoft Sentinel (one way).
+    {{PatternDescription}}
+customDetails:
+  SAP_User: User
+  ETD_AlertID: AlertId
+version: 1.0.0
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json b/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json
new file mode 100644
index 00000000000..7ed008dbc6d
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json	
@@ -0,0 +1,406 @@
+{
+	"$schema": "https://schema.management.azure.com/schemas/2021-09-09/uiFormDefinition.schema.json",
+	"view": {
+		"kind": "Form",
+		"properties": {
+			"title": "Microsoft Sentinel: SAP ETD Data Connector",
+			"steps": [
+				{
+					"name": "basics",
+					"label": "Basics",
+					"elements": [
+						{
+							"name": "resourceScope",
+							"type": "Microsoft.Common.ResourceScope"
+						},
+						{
+							"name": "getLAWorkspace",
+							"type": "Microsoft.Solutions.ArmApiControl",
+							"request": {
+								"method": "POST",
+								"path": "providers/Microsoft.ResourceGraph/resources?api-version=2021-03-01",
+								"body": {
+									"query": "[concat('resources | where type =~ \"microsoft.operationalinsights/workspaces\" and subscriptionId == \"', steps('basics').resourceScope.subscription.subscriptionId, '\" | project label = name, description = location, value = pack(\"name\", name, \"location\", location, \"resourceGroup\", resourceGroup, \"id\", id) | order by label asc')]"
+								}
+							}
+						},
+						{
+							"name": "getKeyVaults",
+							"type": "Microsoft.Solutions.ArmApiControl",
+							"request": {
+								"method": "POST",
+								"path": "providers/Microsoft.ResourceGraph/resources?api-version=2021-03-01",
+								"body": {
+									"query": "[concat('resources | where type =~ \"microsoft.keyvault/vaults\" and subscriptionId == \"', steps('basics').resourceScope.subscription.subscriptionId, '\" | project label = name, description = resourceGroup, value = name | order by label asc')]"
+								}
+							}
+						},
+						{
+							"name": "sentinelWorkspace",
+							"type": "Microsoft.Common.DropDown",
+							"label": "Sentinel workspace",
+							"defaultValue": "[parse('[]')]",
+							"toolTip": "",
+							"multiselect": false,
+							"selectAll": true,
+							"filter": true,
+							"filterPlaceholder": "Filter items ...",
+							"multiLine": true,
+							"visible": true,
+							"constraints": {
+								"allowedValues": "[steps('basics').getLAWorkspace.data]",
+								"required": true
+							}
+						}
+					]
+				},
+				{
+					"name": "identity",
+					"label": "Identity",
+					"elements": [
+						{
+							"name": "keyVaultNameApi",
+							"type": "Microsoft.Solutions.ArmApiControl",
+							"request": {
+								"method": "POST",
+								"path": "[concat(steps('basics').resourceScope.subscription.id, '/providers/Microsoft.KeyVault/checknameavailability?api-version=2022-07-01')]",
+								"body": {
+									"name": "[steps('identity').keyvault.newKeyVaultName]",
+									"type": "Microsoft.KeyVault/vaults"
+								}
+							}
+						},
+						{
+							"name": "announcement",
+							"type": "Microsoft.Common.TextBlock",
+							"visible": true,
+							"options": {
+								"text": "The SAP ETD data connector collects data using a Client ID and Client Secret to connect to ETD.",
+								"link": {
+									"label": "Learn more",
+									"uri": "https://learn.microsoft.com/azure/sentinel/business-applications"
+								}
+							}
+						},
+						{
+							"name": "spn",
+							"type": "Microsoft.Common.Section",
+							"label": "Client credentials",
+							"elements": [
+								{
+									"name": "clientId",
+									"type": "Microsoft.Common.TextBox",
+									"label": "Client (App) ID",
+									"placeholder": "example: sb-101464cb-6d15-4abd-9dbd-gx233d401e22!b312711|etdcloudprod-004-prod-etd-cloud-service-broker!b274464",
+									"constraints": {
+										"required": true
+									}
+								}
+							],
+							"visible": true
+						},
+						{
+							"name": "keyvault",
+							"type": "Microsoft.Common.Section",
+							"label": "Key Vault",
+							"elements": [
+								{
+									"name": "useExistingKeyVault",
+									"type": "Microsoft.Common.OptionsGroup",
+									"label": "Create new, or existing Key Vault",
+									"defaultValue": "New",
+									"toolTip": "",
+									"constraints": {
+										"allowedValues": [
+											{
+												"label": "New",
+												"value": false
+											},
+											{
+												"label": "Existing",
+												"value": true
+											}
+										],
+										"required": true
+									},
+									"visible": true
+								},
+								{
+									"name": "newKeyVaultName",
+									"type": "Microsoft.Common.TextBox",
+									"label": "Key Vault name",
+									"defaultValue": "[toLower(concat('SAPETDkv', first(split(steps('basics').resourceScope.subscription.subscriptionId, '-'))))]",
+									"toolTip": "Name of the Key Vault",
+									"constraints": {
+										"required": true,
+										"validations": [
+											{
+												"isValid": "[steps('identity').keyVaultNameApi.nameAvailable]",
+												"message": "[steps('identity').keyVaultNameApi.message]"
+											}
+										]
+									},
+									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
+								},
+								{
+									"name": "existingKeyVaultName",
+									"type": "Microsoft.Common.DropDown",
+									"label": "Azure Key Vault",
+									"defaultValue": "[parse('[]')]",
+									"toolTip": "",
+									"multiselect": false,
+									"selectAll": true,
+									"filter": true,
+									"filterPlaceholder": "Filter items ...",
+									"multiLine": true,
+									"constraints": {
+										"allowedValues": "[steps('basics').getKeyVaults.data]",
+										"required": true
+									},
+									"visible": "[steps('identity').keyvault.useExistingKeyVault]"
+								},
+								{
+									"name": "secretName",
+									"type": "Microsoft.Common.TextBox",
+									"label": "Secret name",
+									"placeholder": "example: secret1",
+									"toolTip": "Name of the secret in Key Vault (not the actual client secret)",
+									"constraints": {
+										"required": true
+									},
+									"visible": true
+								},
+								{
+									"name": "secretValue",
+									"type": "Microsoft.Common.PasswordBox",
+									"label": {
+										"password": "Client Secret",
+										"confirmPassword": "Confirm secret"
+									},
+									"toolTip": "The client secret value from SAP ETD",
+									"constraints": {
+										"required": true
+									},
+									"options": {
+										"hideConfirmation": true
+									},
+									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
+								}
+							],
+							"visible": true
+						}
+					]
+				},
+				{
+					"name": "etd",
+					"label": "API Connection",
+					"elements": [
+						{
+							"name": "uaaUrl",
+							"type": "Microsoft.Common.TextBox",
+							"label": "Authentication Server URL",
+							"placeholder": "example: https://etd-cloud-wv245d01.authentication.eu10.hana.ondemand.com",
+							"toolTip": "UAA URL",
+							"constraints": {
+								"required": true,
+								"regex": "^https:\/\/[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
+								"validationMessage": "Please enter a valid URL starting with https:// and without a trailing \"/\"."
+							},
+							"visible": true
+						},
+						{
+							"name": "apiHost",
+							"type": "Microsoft.Common.TextBox",
+							"label": "SAP ETD API Host URL",
+							"placeholder": "example: https://etdcloud-data-retrieval-service.cfapps.eu10-004.hana.ondemand.com",
+							"toolTip": "UAA URL",
+							"constraints": {
+								"required": true,
+								"regex": "^https:\/\/[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
+								"validationMessage": "Please enter a valid URL starting with https:// and without a trailing \"/\"."
+							},
+							"visible": true
+						}
+					]
+				},
+				{
+					"name": "roles",
+					"label": "Role Assignments",
+					"elements": [
+						{
+							"name": "roleAssignment",
+							"type": "Microsoft.Common.Section",
+							"label": "Storage and DCR Role Assignment",
+							"elements": [
+								{
+									"name": "storageOverview",
+									"type": "Microsoft.Common.TextBlock",
+									"visible": true,
+									"options": {
+										"text": "As part of the deployment, the Funcion App uses identity based connection to host storage. The Function App managed identity must be assigned the Storage Blob Data Owner role on the Storage Account.",
+										"link": {
+											"label": "Learn more",
+											"uri": "https://learn.microsoft.com/azure/azure-functions/functions-reference?tabs=azurewebjobsstorage&pivots=programming-language-csharp#grant-permission-to-the-identity"
+										}
+									}
+								},
+								{
+									"name": "dcrOverview",
+									"type": "Microsoft.Common.TextBlock",
+									"visible": true,
+									"options": {
+										"text": "As part of the deployment, Data Collection Rule (DCR) and Data Collection Endpoint (DCE) resources will be created. To ingest data, the Function App managed identity must be assigned the Monitoring Metrics Publisher role on the DCR.",
+										"link": {
+											"label": "Learn more",
+											"uri": "https://learn.microsoft.com/azure/azure-monitor/logs/logs-ingestion-api-overview"
+										}
+									}
+								},
+								{
+									"name": "dcrInfo",
+									"type": "Microsoft.Common.InfoBox",
+									"visible": true,
+									"options": {
+										"text": "Role assignment typically requires Owner or User Access Administrator privileges on the target resource.",
+										"uri": "https://learn.microsoft.com/azure/role-based-access-control/role-assignments-portal",
+										"style": "Info"
+									}
+								},
+								{
+									"name": "hasPermissions",
+									"type": "Microsoft.Common.OptionsGroup",
+									"label": "Role assignment",
+									"defaultValue": "none",
+									"toolTip": "",
+									"constraints": {
+										"allowedValues": [
+											{
+												"label": "Yes (I have sufficient privileges for role assignment)",
+												"value": true
+											},
+											{
+												"label": "No (I will assign roles after deployment)",
+												"value": false
+											}
+										],
+										"required": true
+									},
+									"visible": true
+								}								
+							],
+							"visible": true
+						},
+						{
+							"name": "ketVaultRoleAssignment",
+							"type": "Microsoft.Common.Section",
+							"label": "Key Vault Role Assignment",
+							"elements": [
+								{
+									"name": "kvOverview",
+									"type": "Microsoft.Common.TextBlock",
+									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]",
+									"options": {
+										"text": "As part of the deployment, a Key Vault resource will be created to store the client secret of the Microsoft Entra Service Principal. To ingest data, the Function App managed identity must be assigned the Key Vault Secrets User role on the Key Vault.",
+										"link": {
+											"label": "Learn more",
+											"uri": "https://learn.microsoft.com/en-us/azure/key-vault/general/rbac-guide"
+										}
+									}
+								},
+								{
+									"name": "kvInfo",
+									"type": "Microsoft.Common.InfoBox",
+									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]",
+									"options": {
+										"text": "Role assignment to the Key Vault typically requires Owner or User Access Administrator privileges on the target resource.",
+										"uri": "https://learn.microsoft.com/azure/role-based-access-control/role-assignments-portal",
+										"style": "Info"
+									}
+								},
+								{
+									"name": "hasPermissions",
+									"type": "Microsoft.Common.OptionsGroup",
+									"label": "Role assignment",
+									"defaultValue": "none",
+									"toolTip": "",
+									"constraints": {
+										"allowedValues": [
+											{
+												"label": "Yes (I have sufficient privileges for role assignment)",
+												"value": true
+											},
+											{
+												"label": "No (I will assign roles after deployment)",
+												"value": false
+											}
+										],
+										"required": true
+									},
+									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
+								},
+								{
+									"name": "noKvPermissions",
+									"type": "Microsoft.Common.InfoBox",
+									"options": {
+										"text": "To complete the deployment, you will need to assign the Key Vault Secrets User role to the Function App managed identity on the Key Vault resource created during deployment. For more information, see the deployment guide.",
+										"uri": "https://learn.microsoft.com/azure/sentinel/business-applications",
+										"style": "Warning"
+									},
+									"visible": "[or(steps('identity').keyvault.useExistingKeyVault, equals(steps('roles').ketVaultRoleAssignment.hasPermissions, false))]"
+								}
+							],
+							"visible": true
+						}
+					]
+				},
+				{
+					"name": "tags",
+					"label": "Tags",
+					"elements": [
+						{
+							"name": "tagsByResource",
+							"type": "Microsoft.Common.TagsByResource",
+							"resources": [
+								"Microsoft.Resources/deployments",
+								"Microsoft.Insights/components",
+								"Microsoft.Web/serverfarms",
+								"Microsoft.Storage/storageAccounts",
+								"Microsoft.Web/sites",
+								"Microsoft.Insights/dataCollectionRules",
+								"Microsoft.Insights/dataCollectionEndpoints",
+								"Microsoft.Authorization/roleAssignments",
+								"Microsoft.OperationalInsights/workspaces/tables"
+							]
+						}
+					]
+				}
+			]
+		},
+		"outputs": {
+			"kind": "ResourceGroup",
+			"location": "[steps('basics').resourceScope.location.name]",
+			"resourceGroupId": "[steps('basics').resourceScope.resourceGroup.id]",
+			"parameters": {
+				"functionAppName": "[steps('function').newFunctionAppName]",
+				"storageAccountName": "[steps('function').newStorageAccountName]",
+				"appInsightsWorkspaceResourceId": "[steps('function').appInsightsWorkspace.id]",
+				"roleAssignmentDcr": "[steps('roles').roleAssignment.hasPermissions]",
+				"roleAssignmentStorage": "[steps('roles').roleAssignment.hasPermissions]",
+				"roleAssignmentKv": "[steps('roles').ketVaultRoleAssignment.hasPermissions]",
+				"sentinelWorkspace": "[steps('basics').sentinelWorkspace]",
+				"etdUaaUrl": "[steps('etd').uaaUrl]",
+				"etdApiHost": "[steps('etd').apiHost]",
+				"tagsByResource": "[steps('tags').tagsByResource]",
+				"keyVault": {
+					"useExistingKeyVault": "[steps('identity').keyvault.useExistingKeyVault]",
+					"keyVaultName": "[coalesce(steps('identity').keyvault.existingKeyVaultName, steps('identity').keyvault.newKeyVaultName)]",
+					"secretName": "[steps('identity').keyvault.secretName]"
+				},
+				"secretValue": "[coalesce(steps('identity').keyvault.secretValue, 'empty')]",
+				"identity": {
+					"clientId": "[steps('identity').spn.clientId]"
+				}
+			}
+		}
+	}
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json
new file mode 100644
index 00000000000..0ce0c01ddf4
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json	
@@ -0,0 +1,24 @@
+{
+    "Name": "SAP Enterprise Threat Detection, cloud edition",
+    "Author": "SAP",
+    "Logo": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/SAPBTP.svg\" width=\"75px\" height=\"75px\">",
+    "Description": "The Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.",
+    "WorkbookDescription": [],
+    "Workbooks": [],
+    "Analytic Rules": [
+        "/Analytic Rules/SAP ETD - Synch alerts.yaml"
+    ],
+    "Playbooks": [],
+    "PlaybookDescription": [],
+    "Parsers": [],
+    "SavedSearches": [],
+    "Hunting Queries": [],
+    "Data Connectors": [],
+    "Watchlists": [],
+    "WatchlistDescription": [],
+    "BasePath": "C:\\GitHub\\Azure-Sentinel",
+    "Version": "3.0.1",
+    "Metadata": "SolutionMetadata.json",
+    "TemplateSpec": true,
+    "Is1PConnector": false
+}
\ No newline at end of file

From 491aa98e684bde205378a358f4a7855aec191d86 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 15:04:09 +0100
Subject: [PATCH 07/17] etd connector register

---
 .../detectionTemplateSchemaValidation/ValidConnectorIds.json     | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json b/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
index 67d38fd39a8..f4942eb50a0 100644
--- a/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
+++ b/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
@@ -154,6 +154,7 @@
   "SalesforceServiceCloud",
   "SAP",
   "SAPBTPAuditEvents",
+  "ETDAlerts",
   "SecurityEvents",
   "SemperisDSP",
   "SenservaPro",

From 924a88db6abb5f4040002443518ecf319fe982d9 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 15:18:55 +0100
Subject: [PATCH 08/17] etd table test add

---
 .../CustomTables/SAPETDAlerts_CL.json         | 53 +++++++++++++++++++
 .../ValidConnectorIds.json                    |  2 +-
 2 files changed, 54 insertions(+), 1 deletion(-)
 create mode 100644 .script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json

diff --git a/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json b/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json
new file mode 100644
index 00000000000..e8cd077e51a
--- /dev/null
+++ b/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json
@@ -0,0 +1,53 @@
+{
+    "Name": "SAPBTPAuditLog_CL",
+    "Properties": [
+        {
+            "name": "Version",
+            "type": "string"
+          },
+          {
+            "name": "AlertId",
+            "type": "int"
+          },
+          {
+            "name": "PatternName",
+            "type": "string"
+          },
+          {
+            "name": "PatternDescription",
+            "type": "string"
+          },
+          {
+            "name": "Status",
+            "type": "string"
+          },
+          {
+            "name": "CreationTimestamp",
+            "type": "datetime"
+          },
+          {
+            "name": "MinTimestamp",
+            "type": "datetime"
+          },
+          {
+            "name": "MaxTimestamp",
+            "type": "datetime"
+          },
+          {
+            "name": "Score",
+            "type": "int"
+          },
+          {
+            "name": "Threshold",
+            "type": "int"
+          },
+          {
+            "name": "Measure",
+            "type": "int"
+          },
+          {
+            "name": "TriggeringEvents",
+            "type": "dynamic"
+          }
+    ]
+}
\ No newline at end of file
diff --git a/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json b/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
index f4942eb50a0..6416f1fec01 100644
--- a/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
+++ b/.script/tests/detectionTemplateSchemaValidation/ValidConnectorIds.json
@@ -154,7 +154,7 @@
   "SalesforceServiceCloud",
   "SAP",
   "SAPBTPAuditEvents",
-  "ETDAlerts",
+  "SAPETDAlerts",
   "SecurityEvents",
   "SemperisDSP",
   "SenservaPro",

From 4e1d1a75ef573e4b0ab2052dfb1d078f4c91a9fc Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 15:26:21 +0100
Subject: [PATCH 09/17] structure fix

---
 .../CustomTables/SAPETDAlerts_CL.json         | 102 +++++++++---------
 .../SAP ETD - Synch alerts.yaml               |   4 +-
 Solutions/SAP ETD Cloud/Package/3.0.0.zip     | Bin 9692 -> 9694 bytes
 .../SAP ETD Cloud/Package/mainTemplate.json   |  26 ++---
 4 files changed, 68 insertions(+), 64 deletions(-)

diff --git a/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json b/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json
index e8cd077e51a..a84f34dc7a1 100644
--- a/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json
+++ b/.script/tests/KqlvalidationsTests/CustomTables/SAPETDAlerts_CL.json
@@ -1,53 +1,57 @@
 {
-    "Name": "SAPBTPAuditLog_CL",
+    "Name": "SAPETDAlerts_CL",
     "Properties": [
-        {
-            "name": "Version",
-            "type": "string"
-          },
-          {
-            "name": "AlertId",
-            "type": "int"
-          },
-          {
-            "name": "PatternName",
-            "type": "string"
-          },
-          {
-            "name": "PatternDescription",
-            "type": "string"
-          },
-          {
-            "name": "Status",
-            "type": "string"
-          },
-          {
-            "name": "CreationTimestamp",
-            "type": "datetime"
-          },
-          {
-            "name": "MinTimestamp",
-            "type": "datetime"
-          },
-          {
-            "name": "MaxTimestamp",
-            "type": "datetime"
-          },
-          {
-            "name": "Score",
-            "type": "int"
-          },
-          {
-            "name": "Threshold",
-            "type": "int"
-          },
-          {
-            "name": "Measure",
-            "type": "int"
-          },
-          {
-            "name": "TriggeringEvents",
-            "type": "dynamic"
-          }
+      {
+        "name": "TimeGenerated",
+        "type": "datetime"
+      },
+      {
+        "name": "Version",
+        "type": "string"
+      },
+      {
+        "name": "AlertId",
+        "type": "int"
+      },
+      {
+        "name": "PatternName",
+        "type": "string"
+      },
+      {
+        "name": "PatternDescription",
+        "type": "string"
+      },
+      {
+        "name": "Status",
+        "type": "string"
+      },
+      {
+        "name": "CreationTimestamp",
+        "type": "datetime"
+      },
+      {
+        "name": "MinTimestamp",
+        "type": "datetime"
+      },
+      {
+        "name": "MaxTimestamp",
+        "type": "datetime"
+      },
+      {
+        "name": "Score",
+        "type": "int"
+      },
+      {
+        "name": "Threshold",
+        "type": "int"
+      },
+      {
+        "name": "Measure",
+        "type": "int"
+      },
+      {
+        "name": "TriggeringEvents",
+        "type": "dynamic"
+      }
     ]
 }
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
index 3e24a70cbc0..c522a9522bc 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -7,7 +7,7 @@ status: Available
 requiredDataConnectors:
   - connectorId: SAPETDAlerts
     dataTypes:
-      - ETDAlerts_CL
+      - SAPETDAlerts_CL
 queryFrequency: 1h
 queryPeriod: 2d
 triggerOperator: gt
@@ -18,7 +18,7 @@ query: |
   let minThreshold= 1;
   let minScore= 50;
   let lookBack= 70d;
-  ETDAlerts_CL
+  SAPETDAlerts_CL
   // | where CreationTimestamp > ago(lookBack)
   | where PatternName <> "Logon from external with SAP standard users"
   | summarize arg_max(TimeGenerated, *) by AlertId, Id
diff --git a/Solutions/SAP ETD Cloud/Package/3.0.0.zip b/Solutions/SAP ETD Cloud/Package/3.0.0.zip
index 8682f3cbfe687678fd591422e62bc67c7cf51208..70d2afb81813d60122dd2e10b512b6b490daa14b 100644
GIT binary patch
delta 6152
zcmV+j829JgOWsS6O#?;7q_I#G2LmE|Mw4d;HU~h)q-R9Nq_d<4=>>n~m8;X;*JFQU
zgZx9<zPm^Ypuved17(QLLh_u@Nia|_*2cbSdPox>A-8AA)8}N|dmT&yNn@1A5%8ao
zI!Fir<~uavF0?2f_Yh8;&St>IzcE6i$?1%K9N@4on2$ml-FNG2<m{SoOb_7C0|$En
zHz1E&6jp+q0Ns54@&teO*pNsr9+Le_ShZt$1i)KnPkoe)>+=a@)FaQI6{tx7Rl=z#
z-|*kDV-Ue9i#TQU!KeKEamZVC#YcTcgs<XV<W5{50)IFJ0*%N1xW_3tyR_KHkmfp}
zpAE%Ca6S-9C~pV*1sF7I!>Rd-U2hZ724HTFdxU#R)U!E4V;_H+hQEA9-1GARFgq$?
z1Awr`=jg_Mkcek$3^?i3uS3yyZ72XiuTEh2zrYh>VX$$IR<C}3M$YKu6!!lG0#aiY
z*diO3zl&ihK=C_;Zi81pE38l#1W|WAsBrEOws7Gu`Z4!c5xX~x#&BQ_6;toc#mO+w
z=tFXx&?JqAbLM{;lEON#3ACzgn_rXT>lo;D0NXa3+$eS(Ii+3CWq$FcjgJ!f{$&s+
z`IqRNroPQir|?3yIgrn4+u<Q1+x-N)G2aGvXa4=cVdbq0Jg*UATt58}G5FWFxu7~c
z*?QU3_>e_zz)z9GM|+xvF#~M{&PslQGRIA4x`t^8=T(1<0$?wVvQwu4hg^?+69Ei6
zY%*byP$R{q%M0W?7M)C~jw-TK#xc-qQ-cm?E`+*sNnH;S(!fL-yAgBt^44jsJ|cc<
zPfZR9EkWD_4V`(r(y7tYHT_VFFb82PM1?t5@MhF^x~Y3yKSB>r>E!wi4MUKE3z0%V
zIFZWQt`~o#&Q1uTTq-d7iJiO5bJ|C49GwFKBMxu?aGbTcBB33Xcd)^>n9Y64Qm$wh
zC+`|t4mTjoL9N24MNW#fJHSl|zs~ei9h-2}^1X(GHRGFdAqxAu=e!?M&+AM*j_UoP
z+`-}9({0Cb@Hpwlbcd@XS{H$d`U>|M0uhc`l1P7AXeQjFlS#xTTo%5PrXLsHaE2eT
zIQ8lmzkV5eb{Z$aY>y>y&NU4Rhr}r=DL5McS3}w!93`hh<=V?I(?}Z)O58q^7`+3P
zBZ9SUB8O<6DT+S?(Tpb9*d#`yPelQ&z~~%}{ZF5&`svM$P94i|oSUU{9OuSq1{53I
z+>n2Il2sp89#zTu;0r0X`YgVX10|ti;-Q5e3y!2dNqsOvfkeQhK1&dX(Ks6W!fGZv
zoG-VDFzeAgoiec5><hHtVy<aqkPZ$B6{2q*1p_uAp`cn%d=Y(vd>ou}C~~xz4<~;o
zHo!S!1ig>21+kOs^VVa|tQOd%q9s_oS2TaIr=A-p3S!O1$zq;Vs8cB1vwYBXRGf*J
zX}m2Wq2`+tRdwo+y=-%4uq-0%x_G^-4+zMpJWy4-ugoa~0-AjU6OBA0e;N0ry|z6V
zkDX6j!^bz{@u>ONwQ)~+jRYiwkb{L=4xwHBYq=qquc96N!drZ*0uxrOXeNFam{osU
z7ED#qq4204hk_wo>V=QC2k)Vq^&!_0)<>}wbU1y%l3x^S4f;j4>#x=M&hoyT6JhAV
zG0I&5an9cn)3D$sfWeYL-ZqxIjmi#%49bCX3LPu$^9~05C!)w(r*ie7hkQ0r+%Y6u
z!wO1kwLqYiVuB(ReAopJ=Z_)?ba{W6L&&(N2t>L@%;A)It3;fFlVky?lJ_)Fxr;^*
z^^$riUeCDU<&#tNxu)SD$D+gP>JAlu4q+1{Y2=@#{tQ`|A-$7G`qYHSQ+e)Wm$jTb
zm6TksH3L<dVpv?@VP&<3I=a`s5X8y+W(B`nonub;;&RLJf(0s|Q@SdVj&6T^3S#{d
z<~68JYi&rJYrx302cO2hgZNOi9D_hb;@!ae2@3$n^WYSPH*`6bN8O+bOm{P|lw+*H
zef8iOtF(OZj8&k2d7iQE-lu|~y3al+jljG|j+Nh$OG<Od+#_QCUc6M5v+luZ^<_D&
zzD(beao}8*GGOEq;{Ko(mr#G^o?1yzcri>G;|_CK5uJjf4xFta&zV?TUAT>0@KVUx
zmPSPbN^l2U_kb>)({3IsW(u{7OEBl(E3AU1?d8hD)g)jMb=I)EGcTlcS84aIPc=y>
zwIfz(dRojM=_0RGwxVthIn=tqMSCTP5<|ec`6lv&Jfu<LH^^<z^)G+&0gzMXg_wrJ
zBOaZ=jyLcK*nfMne{^_saJ+wd^73eZ=j3#6|73sn<lx;~uoK?>w0F9{cYuE_E*6Uq
z3g>H)P(A7WeAUPzs+A_<vKrs~p}zmy8rOUw14`SomDh^B<jy_jL8kh=seIejN(cq@
zRl9&#BtEcL8wbA-?(={Ap7IpjTY<U)F*t`;lU;a!Bj%So@bj_boicj>w6^a&4XKhW
z`4E%8NKC#~m~={xD({(k3DGQZ3XZPdX(+#zS3h^;{)+bW!pU=nSJYsSeBWk|EFmKc
zD9;hBzm{LYCAZRJce%ao{-$&HnwTn?YxO4=rf}{~8dSu@O+0@iy%;ajc{>{7_4p{h
zoM_v+RhO==X_%gQZaft_Xtqw;<~b|u4UI0G;EEIdWXe=&4}vR4G7=DRp&S#}2a(7x
zw1aaJOMX@P68w%DJ8MExhD0jc7=ey2W6KVrh<Q|8%WyF8ZpeefWuVJ6#m<wFb~2NQ
zhSMKY7QtekAeMhQAy{y)n*eC?l{I+Euy8=++G^yJAfX=N9;cW@%w|~CqseR5^Voz5
z)<yb>>)FN*XEbI%stf#2pK6J4bEEaOX*_MZn}%LYK}fSDiBvNFU*I)5hl|W)IPbr=
z&Ux&UfAHvjvbDLg`5Rs7G|gR|2l}OIWDgoAcw8SzUTS||c}@kHu9Cl?m1#L!kEUx`
z1H|n#CeNOcanBFL*2gM0;~vT9+8`W)xfG>zo3-3nxr`2Mv$nDYkfO-F1bMRyLI>tc
z7hMZ=puMDV>9TKC*iv!V=z8LgRqxYx<3oA!ifiL;cLhB-!)7kOYi;l<=hT-&c``3^
zB@oVG7^{B-EjI?aX-L2D377#mz!8R1;c4&-t~tpyBox?9-PvkShZ4?vMKw9A(9qI7
zwu7)!2Zh(6+4{&{S2#z>2#xUh2-Gob>M)OGaGTm{uV0qA-CTrSHsUF)uJejrFUdK1
zegTz4fF&0Imk0M@0AMz1k)g=@V<t*=If0#`og#nAQvno@(a0w=%<`jWL7L=1Amk4N
zWfGx3Z#1tFf|d}siNyb{SpeE_5N)9K1K7Yz&;b(b3Ut`uD*jV&hS7}HT={h!3wDA9
zV`!p9Dl{*#y8%7#h|{Spm4IbfQunGUT!PyLOWla7gM3#+l^qE2B>w^nE&{Cvc?<QK
zBh-HiF*b|r93Hd~vZNe|*ct3csBL3>tm`Ap(H&et^WeuQ<!f}Duy9oh-}*X2BU{8G
z!lIH9MI^>SvK^US3Z;&l6lu7=KK94{4}s?eSG=w0Df!*O>`CnXK8C%^tr*yW^Zi(L
zwnLi@cwn8SF&HRdk0hAx8-SH|ZOykO;sJlA=fsK>E*2Ql7QD13UT}tg+I9eTN^HS~
zwK2#AUZ%biU0ck*bfdsW0kW|+A}6SqQVem<Vw%_2)5u$2Cxe>#lAn%VuMM#Yr6bu4
z?}f>Z7?AVcP6}ZBM8?zr4@Q^J0$Q(0JBndAbzr+({}Zr8l%4CWuaA(T&)3)AzB_-}
z-v;>q5u`k#I`Gc|OuOdM*O3r+NYXexQ?o^KpYydqgYI)LM;e3t<cpF+v2{Uq9N56h
z&{aX-jM~%OMD=@4e=K&`7E=EtIOz#_hs#N1%qmC|9)Ll;W~(UkKPXtz_Eae(ocgsk
zc_Y}I9B7f5EmAY5baThm$K;UuEk}P##bwvrSh)%XXcZ+>)bBft&5f=zppOW9A(9mg
zx}i$%g2{Akrk>?j4_9f<iY8-q5Y+RZR!SDJQnE&cue737M$Hf{W7GtCa)nXfI}1LV
zVa0oP<EmW8j3LyHQaXUv-&a3A*1f{0RiP9w21HFC`MFa^rN0OX)0kFU{Aqts#R|;~
zk@;P&w9xNXu-Xd%Qe?nl#9$P(M6s4S7gt@5{;=}Zj&q^U<4xS(R8?ZGRDn7M3fRt$
z{JX^tE8|q;1f>RD2WbR~4wj=C(Sj;Big+dE(Ukgh6!;FCfj-Bzr2rdlB*6tUI3;o@
zEG;!~T%ln86nPH}RMRnIpzMDZB`Rz5E8`k0-Yc|Q94My`BYV0w8`<YH3}Y=H-7W6`
zwk?_d#UE3yF=?i;fIGoyfzjB%;iVSrV#Y;5nN(&_qn2OxJfQItfqfk@OyuEqL}np@
zQI~^z=f*=(oqrLzt*2mD8)7Dc=2xjm7vtggiXwr@3aW-$wSbjXIG=xCV~==_SPVx<
z=&Gu$20N{t>D!GEFs0LjgtfWVvi5u2A3cvexp(_cbJ<h(cy%G@D~|du?38k~*@eq6
z=kQ%9wEec?><z*>3bEs#J;+QK7_-bmbq;V}CgLoEe$gIHmbKMHcA5uqNjR<X?1tgz
zZBg##QOGp}$pWQo<;H(Qko%HB?)4KDfu+p18$<zai6tWlR>a5(o5eP$D{9C$!&cm=
z1YI%Wp>x2)-JF5I9u}yX*52-s@!9hYoIQqTj;5GBuYP^ok%{@`71i*UDA)rEHlwpW
zW_wf|QcXNBVj`__R9sWoh|o4ya$Ty{tN9YN^l=}3+r{G%6heP0Wzr0xW^H<TY;xI-
z_lHE)yw3ZBn<(LNfAFbP5jI2(L=a2d<~04Kk;~UJzE^nVDl6Y7ym;B}dm<U;HBRma
zKC<HVJ;A12(#n*JMCG2_E=8bIQbFxF&eBN=DnZRhZ}eu6gQ56->%s2@lPtM#QH59c
zHLM)!HBH)-)A@g`)a9eAcxyG<sGjCOc)`^|RcwTw)mF|&qhM(nNgt+GTG*yR+ep_i
zN)k~&#*ms<f9Dq#V%4&mSjDjMXT%S#1`QWpy&z4(G&$y^>TP!<N0&+-y3b_QTVpk!
z)2h!rU*2YE%QmUATeddM?Uoi_St8QcZr6bEQ_ow}T2X&Fg9bhbqr@Ep^TZ@2qrm9R
zVOFL}$YNJF9c(32)pj{V3~VH$lYTiY3~i&kAxSrz=x%Uow}tKok4`qwU2P^)+vm>k
zF|>K^3ZGV6=MHwbk&SZ)co^6=cR`H~HjS}GvvP-S@xkx8fXw1w3?<noLmhkJPlgs8
z^40H#cDa9}t9(~fU&^C$U3dp|bh_V~%)7VLak*FJ7CMz#xb5-^%amzpE2q#>=cKKC
zLTlLslX3|LWfBa_BYY8M5f(0o&{_te&iGxh?16E)gGI|6luxJfTwBW-)J=AY@&(J5
zEohrhV|jumuSKVF1Yb}Yf;NJhmK$g)CfZ(JpbdYEwlV@O<pU~Jj9SVC7?ugp#8<7X
zEWoXm16Z&OfN@fEw`6FObbo_1|Mv9$I(5DV*y@(GHGTgfZNHYr#_9UE#gVOP`6iZO
z)ob6Jc3;nTD^9atCcVBo!xk}Xl9g$oU_7MDKcvfl8R_z7H)$(Ni(hd%yiq2Lwlbi3
z+Pi;Ys>+Je+&iYXo2RvRPiOC##@-wmvRK-B$8`1fJfhB-hn+JHmrO@rDh<7JGGO<#
z^Onq{wp`JBy+Y>M-%F>DFO)XESi1NZwPGtv|Ne|=-;3|kZfV|M)WR>9w*A@DwHIG=
z)Aa1N)oyy-kjlB5fXnK`N_WFA0-2^!uQ-2wdL_!Hd78AT&S{hu-K?0cAPstD>CcPQ
z4m3=2HcoF|IbWBY$@xEX@9yRz^|sTHJEb45I_<dW+Vc;WW_(K@v@l33UN#F;n?}4~
z`tU+&!_Dc!rAQiGdayPvxYS>p2HceX+m`lwtLeU_2{fnoHm3E~9r7zl<Gqda-L8LW
zyQ`7?f7Fj5$(4Bc2-1E32vYr)S?J?OnvGTL^TmG!sVqn4QCsuFS(3HhV}DLlFUj=r
zhOgh0Bhc%b%v}F9^C!s^+HJL)ZS$lwL-gwRr%nX7gv{6A<JeKtmx9XpXugnIo3+#v
zf#7IJs#j#c(Pk<E;vYes%~GBuB=&z@8D4~+UUhSAs$lC}IT@h>o~~#@sLTm$wr*MT
zJL0Q?*Ru<XdbjKxO_a23g~%3Nb!ONW``i&#m4C?$Mb-L_kaI!oMZbJjc~X4P{C&C#
z{s!mfs<hMj8Ii@>D_yORpCt!fVUoH|L2;9-Da`nmiGHq6?Je)JkTiR!n09~bu8d9&
z47DsPu8-DSeyPoZtMBwsAWi)|6iB;^uYem}h4^JLpWnd6gR@hHP2n6d|77W7YxB`v
zeX{h{%YlJ(NOnT^5Vi1He(Ch3(u&b$@b%C(t3|ZY8YS-w1ju0Z*GBby^kSjaUNIf2
z)Kx#CDC?m})uCQRLyZv?k!62W!=OhU=bgWkfJS(hCXE#fkF)T)xz<&yVbztkXcVUn
zgQ{)BgYO<`>9||8mr9uB-!>f!yK|$k7DDrh^dh2uqKGf7u~UPu=k!i6n4-wgQp!b)
z-{lviUBPfdk6}L_lL1Oezw+?U6U6KkN%^dbSJRXVsJ&#=X}hGA8j63V$Uwu;lQAV5
zAFZpaD-8FXS!v`k-wqt63&QGB%Shh4HZW2CMpk!<WZa9y6KQiBms=ZR`!vyr=T-f}
zL+=m#H!h0gtxa8HJZ|4GP#`#uz0e0x_3&c)dY9kPZ<ELR<9^11G&%5rxdY$9#rZ}%
zIL8!|k$!+Rpqv!f@MC|yd1E=w$;+49v)OhW|7Y_|56y1tzhWOlDh?R)Wb)ou=dPE?
zFtc(c2Qo>>r_&$j)ILr?$HCV(A~3(w!DGb^zyrLwj_0(CX2AG6w#~w%%<||-ZI~_w
zhFd$ByTRqP4FYy0`ymd&Flf@fMKJQe19pcrnKp(K^u8Kha&Lb_eS<CqutGW!0USEC
zL<1!|UW1A%WKN?NE1Gagr6z>EzZ$*o|0TflaO8vKh`{=qgULiqEk5|8*BXeHC^k@U
zjdrX$pzh25u+;{ZzbI7~Ym48LE^+bLa4~n;Ow)?#zWDMOUD{=d`+JqvWpMK-yqC$0
zM{+(5pFaf^Kk$Di&))_K+kUzs|00JTqcLU;p0fz^Krk0)o|$vT&M|uj1M#TmWw|<X
z$^a&OKK23l|NYm0lOw(`g$Cp)B~t+XY@FHm6E~TrXWY8q;hBW||CUNR*#J9)ZOmv4
z3%H?3%Y6X<@@Ny2e2y4L7-tcWX3n_xTs|TE(bEn3ynuhz2~UEa(QBAX4LbCKj%M*j
zEQeQ!#}|HZ<-2hV3LOl=|03c~909X3F}0Bs1Zn2RL?JsQVU?t_DkVo5npjk!ntqc3
z<atFZY92I4Ho+Y4SUiG1qcCz|xD!zfVGmee++oR*3))HxR4wxHyIqoCQAb2ply4Xk
znc67|ElhuT!Wgf|z=!3h8I0)08A3QB^QY8@Jw7k{aCR-~Lf|mxd{K#`5FA3^ODq*J
zQN<l#q?xP!#w0hG*hNgPfMr~t51dQEisuAWtjz-{=MIY;mv0S;YNYCa5?<px-)0U^
z$0qy&Tk#6;#p`k&ZI#ZPUH+lxyaLFK{hYwA1D}6wh&h`#U+p&wr{d9Dckq-OR*xZf
zsm`_#icj6ygv61ZBTq!HMnYDkpqxrjda)rT23AJl(gJT^czik5Ng4Nmhn!>z;J^Jk
z{0M(e8J<ho-_MQX_?k}S!X<%eCvD(e^Z8Qr!qygyG4yLUXpj#vcFi$%0oQamg?c-0
zt1ExdH3m;Dc~+trMO3#qJ1V<kPf;@&wA0aP{&CiKtKJ{0Q5NeV=buU~XRB)6m^s&t
zKc90eVTQ}-$a0qEw%NHG#mS-2==MZJ6)L$;tgT1Z<5CS=UTVg)ZKhpUd9JcsKa_+X
zz@7wAJ*ztb27uKX=sk6{K`f<&fXGjDnXWUv1Mcuku4`WH%v~0}CSvBSlUt6L)W!En
z6ch<%#b-`A{_5uc0Z>Z^2*5~NPg@-T0Q8d&C2S2Mdq!HoNLx=^9RL9IlZYic8bHRR
aXHZK81^@s600IC40JH!A02Czv0002n&gk0!

delta 6150
zcmV+h82RVkOWaG4O#@@!n6Xe42LqRNJd<Y!HV04Nm}g_(n6sn@=>>mfn$_v<>#@JF
zLH;2P-(92w5a7g}fhI&}A$d;dBp4_FYhzzEJ){ZHj~lb(>2osfy$&XUBruBO2$)ZZ
z9HasO^Bo#-|5+4|dk7~^XEWg8-x#6M<a9<q4sh5P%tr~0zPt4`a&}EPrU&rnfrGt(
z6_CL#3d=xFfM`B{c>;eMY)B*v56S)|EZMP?|L~UCQy&H6`g{Tz>B#eE1yT|~m2eWu
zH~e?(7({TyB2F27@F_oh9P*Z3@ll@<;iz~Qxf2(Nz#k5QK;yAL?r{pvE-m&kq`6M$
zWJ4JdoDYNs%G<$a0q)G&aB99{*V{z20hrt49^q~h^=yvN*hhbk;V+*N_xyYSoQ@jU
z03fXKIl8eQB;uJG1CBZM>rnJv8wx<ss}mUhFYts|7;K!Q)vKSMkuy3uh0T9~fYew8
zw#dfi?_yXA(E3iH+u+sD3M*6uLC#$dDx5on{ag5pe$4$<#O@8FF`QOI#ngLqSu)Hs
z`j8waG)d#(oOyqSq_ECw0<9|B=GWx-ItF?jz@E(}H;P?HPHES3nO}Tq<D*2re;LF{
z{v~>*sc*B>DZG$v4&<}ic6frwc0a*x%(ubanSXz9Sb6IL&ub(Y7fwG!4F2_PE~O4n
zwq7<hK4g&_@FV2#(VnJZ%s^FvgOVSg%yHA1u3;L&VHJO)0N6{T?8s@rA=hKyMEb%G
zn@m_FbVzaI@&fseMJH3Lql)a5aSZg@)S$ze3!&~@QrAO-G%%6IZp56uylGmijEJAw
zBa=fyGY~gHLucMDe`NG@?LO3E%lq33OJT?r{229}Zt5P_kI=*OIk|pA!w^K^LUa%i
zPNbT)>ji(QvlD_Gm#T|?V&^XNoc56$N9TaRd;=T+9Oo;pLTE?j9c-{FW^-?{6e`-q
z$vefC!wm>?P^;=`k&`m*4scVFuQUBr$0i)Le6QhP&G@EVh?4&9Iq!$m^Ey+Hqk4ZR
zcW`+3blY(pJWIMU-Qg;U)<s~VvckQEK!jtKB$9s?nhE#lWD>CnmxZsS(Z_{19N<SR
zPQCiYuV2QVoyJKp+hYkFa!rH6A#sWt3XaDA)sPksr&FPC?PZv0q>Tn8Zkb7p-hsXm
z!P+*FLp0B{#2<oaMw4u85~I1N?*CU{ZjQ$Or%zSo^yWsVi)A>@4bnM|bF(x9iVbdV
zNIieast+rVs$_lef)rbQ7B9$wl29@6&^(U?M^c}pK3JeYB4ARVC5Xdl9F2WpGLs$7
zm)k_x^k|z-85nH#1sZQL*EBLn2Zw|T(KnBO0fUfG(5olDh`T{P4$e6gIa<tzlfM%i
z;G8jnen;4X*va*I>oI3m3yf0H63pEzn%I9+&y5oWv1a3B(M~GJDHM)bKIl4X%|y&J
z-WD-X^UaBRI(5iiwmCCc77<2Wyx!IO17uXbrz+i7<_-b@%|3#CMxK$sjC;~p+a8R^
z&Zn*6<D2n#)cot(xF`KZ0un;V!NM(v(60Wq+z@P6(GGs$Ek0F&2@_T{6Tb`0sx5yD
zcB<%5cvO!=!3r+*!bjVK_t4Gykn0HRqu2^MoW5YmFN(DW{UY1-*D7AKycg$0n0Ro8
zawkBX^K`^CEI0^Yq$H4+jOA{lvMV8ja^Rdo$4dLWYXSd>C^FWmTzcpspA8gi49V88
zg3?+o5NM@1pa=yYc7em0qX+_>9p--!GS(>qkxmhFIAz8v5vSlDSpceJJPlOtoY6zQ
zq+W`*GH!VJ<P^QFX*kI7=dilEL&cm!*a1lz`KPHrL;ht*?<A7mG~w%1K0DcEE$2uj
zC8ul6Kvkv~78iI}S*@Xt?zJxjaWaot!Q)ovk`rFI+;Y5Nfr{glPD-Ss8=rrIOuvMA
z4XV>x8xrRlFmmm|r*ZEfJ`^p-AWe~YH}HPK0>JS+I7P_~T~6gWH>d*BT?j1Y5^Hc=
zJ@~{bEgyVhMd)9iPprG&sUW59v-e3OE$@*_<#*(a(ws2&h?u_@|5W9mdvI5MS?;PY
z)2n10ESIGT7&(KuC#c04lsSK<RuTwa42{NE!(1jrr$DF!XKTpwB-U0JVj~y46lS)i
z(a(Sq-1XKyh)d_Lo5zQlLha%V%z5?-tDtFnx$+P-30Op$HSF%p|0o?*+P&*jP2x%I
zh*g@N7IQ|r$SakhsGCC$wJvbcSP7!U5U_5(i98_>X_WX4a@%wLi+q33<CJ+Jrrz)<
zM<=l34Lkz&-=6Fr9UdJV@1LH$JlfwmIo;bo+21`mc=s0Ugm*vfo$l`);9rZ2#o~j)
z`C24YPx?JyHL{3mrHQhv#x#GZ@Bg;ODPPEX()MiSwPG*1bB}posXkXK-*&YULP34i
zE+7_(3GCIzzAuFPJg0xBJO%ewpsqj+&f(Q$6yDz``Q;A$e7tz4Y#sou?K@9Bsw7B0
z#NjUzhp!bTof4wTd!}AOG)tU<m+N;LzOUug&mFD5qCLHE!kppdG}t5Gx7j00$jAc9
za|G)z<X3RLt@PMkZg0E4>3qE=rb^~o{mF$XoV$|-6)|xW&q#kS#w&E*j)r(KK8i0V
z+O}@hrK@Wire~fTPlXPet&_HS&I)@&qYEdv;zU20GF8rl;L4GV1VmgV$HetPB=W25
z;GD#gUsa9-zn#X;nqZV6k;*m(p5x2dvV$mM9u;>o91Of0@|bWL;xbLK^JJu*%p{`W
z^v9G%u$U)^r4oOF1>d?!?<PlCgPRO11w^i`hCK-q>Jjd4ib=$5hGjgOTxLCwO_<<Y
zB%ZjKZR~JHWA>xExBv91mI607T1T74&8E9%=*1KyG+UBLCCmQ>-kx)~$VrCt{(I}3
z$3FQ7kLV{`n=6~Y(Pd84+|^;AU#dp-pmBm{^^xSI_LYC<RFEku`Kwu(inH}-x|TIS
z+)iWi>=_yN{6Oq`ENe6Fk$ip)!XcPHQA)8{%Z-)G;=nd*D_a05huljLHoG8kV7_$G
zwNR(oOB$E1`BsH36}OD8CvI2u4t+O1l*g{PFz$9y(1QbP=JH$C2A6V9cR7^D@-p`U
z;T(psKG1)1U67lGbPAt<4S)k2VH6b}1;5~$lUzeWf!)+?t@dar;k;MWk+YHvE!|@~
z2s?F9cpaLpkL-1YbCitG2%nEY9mA#$^H>JAsjc?zWtpqZMc8E{p2F%nuh{jHoRjAl
z&_@JVashC8OdrPmWuq1uio8E&qDGe!*eMz*q8@)0K=Bxjd@{q#K6)0UNe%=;{xDGX
z5IXZl^P(VV262N({NI`dpb7`k2AV#A4ZH*$AhE7Mfeo(WKLuwP#AwYmU)Ql<Cs;6s
zCQhV6^Afuo(DRNso!U|fScWBaubN^dxKXgwb*MVXcSStefe=sfFEHOC&}xvkP@g$M
ztq^~svdGTiK?@;E%8`hg!G46=HipHzKEfQ`!TmFjd5luNM#l*YSEcZ+uOl?FMJyuB
zDH%&dVjLvfk=cz<>bOafhU@ENf9(GdcwTVD+lro&-yO`D#NO{?*t^_>fgL#Ck5x}Q
zwAp|M)>#^Zbppmnf+@ZMm}uA5d|M(OV0V8`tVrQvffa4ROKai<XZWXW2VkVc7Hn7>
zBV6ER>O0Z3#r#V*3VakG8*3wSf_f>%$mT4Rd3`;Ny!CZ5sF^SM>FD*^5SvgslFjf^
znCyrFIq&VH0LD*bKn?I<bO|k>^_n!I7)DVCw#)TD0ZYW!xz76f2r2q}ef{mbll^~f
zfd3ys$^)qb|17{%YaVnR32}!cjngwVTO{{6UkkM6KKF8@G00E8C^-~c7i7nQ4XmtO
z73<BYJ<Uy2zvuMFVux)Z^-qG6o{)FAoJ2;ef;8dL7u0LEiZbVef+cNFl{vzxUu%#z
zg3ZZ+7Ma;1HFHWg_gZ~S4yoUAv{Zlmb<K^HpHP5SAu>h%zQfqu=sE-Xh?o~5S;3$i
zs`M_HOxI@WS$_3!mFBEyGFAscJ^yK?WDzSRYgFt?D_UjL4AC-1O`s=N81=og;G-E<
zyk|GA%5}^bLhUG}18ALn_2XlqD~wkaO7UVq)bx>`J9Sk0i;ysl*|f!<233Eo(995-
z-{ndR{cZ)Ty#OFZ2CO~|MnOvmYpHW_)#d09D_`w67y3Nd#QjZ`A?8XIsAHgj?d-_E
zTkNnhPDM^oYS49%Mxf|m37QctsB)u-mrfo{sZU3N@30x@b6i^ru;E4$Trh)EB8S4#
zQUk{o3g%Cd_rO3k9Ww^Xu26rXvPQo$uEA=(Lc7I*a{4f`r)#s3eNMwL*7DKa@(y6z
zlHgzbG36SQW*Q5)6Py+pjr|*5YQZjMTojZ^Wd=2B`DM=o8b1-(*Ac@M9&Sfu77`eB
zIk<OjJQUUW7m?d~3U;+2W+GyKm5OvR7=EuP5|}KRYN%BUSXoK)`5k}uh-ZhzaD;@e
zD#L29)7qK7-3S3wIz32On_DewzsLR2^RSb9x9>EUJ#~*)7k|Fuknh4yDVLXBxbAWe
z--Y7ZZ!5^&AeN&LIR4oq%ydyP%Pdsq==Np8%`)g0?V)5@TTNJ}c?6e)(;Ccf7<=9p
z;%**-Ttkp7O1f5VJVbxEFB#!pKT#1?%6z*)6yTOvGJ;@5jI6L(Y=gR@XnZql#f?hP
z6(b%x2Rz)(83^oQftqRU?H(DQJ>S6DV|eChs@L;!*S8&(m|tE|{(gx%J)mGSI@@Em
zN5vu4#PcE`(kg_+HN}hwRdXeGrE0O7Z$L|*^3k_lJQzVCq>_In%@Ar<rI*Jhm*;qY
zNL0<}yg#^!${qIypGw(aL)1Y2u*7Xn&|ez4d;#Nog;%bW@_oXK*Xh0|l3`xj<bL2I
zOI+U*Y|53aOu0xD?78hC1Ud~BbdKXJk))sx)O_MbZv#0PgzvYW`d%=}(h3*Vc6Hyr
z%AsD<q)juOUrB#mKDvsxR-=mQY5s#3TrE_;MkrZrReb8SD=io41Jp{Z+B9Mt-5N$o
zBI?H&O!MmR{Hj7MSyl(D7%={f_`%hn;i{__q)C`2$DB^R?Jl(FQoTd>Ijnjktmd;>
z_1Wf2nksD>CUv&T)~30w(&8UWM84YX8ZCb6d5c;oDoKB^&F^58sbgT0nB-s-_`5l-
z%2e@K?5?JRePpW6E{BMLU1W5+FNcMpJ#;rD>1GGr4NmR$&)wkB$?mzU&17ot+!;QG
zcFtYl(`w(`!45aFYwiFK1AFE!sL{cWF}7k>?!hfS_&t}4S^S%zB>O0+V=w$s(1HiP
z`eo2AmvVoVFNf+2cU0~N@1SZ<_iK`Q_m-+H_o}!;r=kkCT})w_qAYF26I!a8v=vKe
zEs|hT9KoO{f?+X)FQN#-V#N<yiyqY3ybBgNFfMMeXi<am(NvymYw?1*$u3c>VA&!C
zZS!d?M$qJ}=u~{*3o1I$Mo`n@0!?*8+lvXbVbOn9G@zweK&4<&OK||hq5zs`s+AQ1
zxV7Z}1(W`bQ=q%0KAR->8zl9&C-c|o@-@I#x2&zn`VUF^wKO(P&c7{=Y)!&9F$=5C
z`sO72dcIq6QvEW?^wk-*h*^^yOaleuAvyjbIsVH?jyJnNTUiqPij&`s@>aA(0L_!!
z4HJJ;R+QA<F`3;wiM@OBddH;o=1`EulGHmUr?+Pfb<Q*FoL{(P^7&Fp=bcmkx+j^p
z<RP_XhTiKHGSBs1I$3<7B=N<P!@sB%TUoOAXH4>5e3y1h>i(h@ez_#=&z_vU_?nw0
zW4En#)9Z%B&DBI$Rv%Wn8-D!9G--Op$<lu-Q8vw!qD^&9qa^5N#cTyh&nruIUZhf>
zVN$bkGV{v$y5vmG|CxJtH@B#_opjtO*?84S#!Yvgf4HRLTl#i|K@#z@IhWd`;RTb0
z7fKRtP7W@G(dd$awMoFG{@SG9rexo?B;Q+2?k!EAIhnUHiMQ^MUrEyLZ6xb<P11i|
zjqLxUe)mYO#KZTF?)&$S>bJ~7-#OB3tYV)p{)0zlIWiB~njg-Rto0uIbDDZdrjIv#
z=%yTgUe{#i`mdQkNv6<ltKDpyXQ3IQSHC}XBDf`9z6Kx1j+#CSRK`d1G1S^*rJjfa
zM?+G*BKwUtQwb3N-sx<X^7J6F@5+DhBK*p#n`=`ATj$Ej2o>=BL=!?~PGGZj%bMR2
zUlqKbT~O4!W#?$3q-85aw&<!e!?xJxj;N~qOJ*pl)^~)Q3t}(&<+I9@;)CW-(N*v_
zI5$_NozBmQEYM!*YJL0yIp_+L)O8Aqn_Nv{#<xuLbA45Bd6$Kx*+YG_TX%nDbaG&*
zWm$1GwB}+<Z5CX8r-yQA>gS;x+Fg9`+vqC9FN^v71}+|)oziOx=ZN{&NgrFAkM8R0
zq_<xD3#3D`6S{|}h1c>+r;n0Wj5dQ0g|=BOqK(!ld0!wv2CKg|s_&y03$6Bw=}@Jv
z`VmDP4@D}|8Wjx{MN~Led+C3I9(9~|{!RkA;8~h9Rwg{o0_*1bR;_MTSIeSNkTwje
zHV_ZHd!(h{ZqZUIVU~Z}bRg``&B0m-&1cbzi28}5ys*Pg4Zf1oJHarDA}dSz7BPN{
zUyySJlL>u={d_bAs3ZN#!#__Dvr{DHvnpOqQ!1eLl2NDadRFQtmLh)x4MR^xlWcsn
zuCA^y&~s*`k;i;HaF{Oqs!Q1-dE?r^MESc|-T9GmFA`5=%WYh4ZHVpDL?fP2^$QQW
zKk(nUD2%r@b&c_$eZxR?;5_z1A3D{;E9vW9emlQS9_tVK84J?nzz60Id<Pfj8|~m6
zQ%pnp0oH(WQe4B2_2z$#<v1rVUvAH4+j0D#%`-hTyQlw(eGI8MTFi6EdtaTqULpg`
z$^{(ABq5(pf1FeMI05YjU*Cw3{7MIp6*~YA@a8(6(=M6;<L}ru3zIU-qYt%Vx)>5}
z?O@ghKO$`quq)XQaR??slh!T5kpCU9JEY09F_575)##G@8R~x<bg6X}(uoM&(4i$7
zDB1BElv5#d8ueGvgi9(lA?*Ft=zae$0Um}UA8bYh*4G?NCJJit!5_WEK(s`SfqFZ%
zW3d5sQ}%}~GO+v=sk%~I{DyRiE60W_xyxpnR*d$=m&fS3F3Z>7tF$hIo5$b1OlCZW
z^J)0}DJb`WKY4%tHb~g^(+&9-IrJEfF<<bUMVJACSvd2YoHKTgc{><_M?Ejg(vedJ
zFyZsD55WKLzy6yX@r5ZgAWtco0_bPs%(9=j$uvFVcKr^|A>{wJRJzFqSRia;Mq^mO
z4MkdR{r}6OO-%1OVjN+dMLe20<KA=mgz!gCH|X;MRwsWv{dq>OVJ<c3&<i@6#T&64
zULhV|_`#L$#xW>#Fa-aLh(B=z%*Vu}Moti<nHv*@?2v?2lFq7>9A#)?Ern|0O$Lx>
z6sdT5&>YzWv%6#Q2>y)1$c5ofL=A*JV103WB`Ymx3oKBz$j9$?NrLqo5m`~SVMt_B
zr>L(m<*9#SybJ>$mY-%Yq8n!j;fTziQXlsCyxPOrwI~OH!<_R)C5}RH2z@WHLc~PX
zbbyg&uKF9(+hAfBF}VVkaeY2;F8L~+6Hu`>522j9Dso)DH6*H$D)mWtE%SVvIXoSk
z@T+UZE5H}8%Nev)I&*gUho18aAT#!J0=o`;wjqD!Y~FmS-z=PpM{nK1Q*Ky2hTNq(
z+d?Qlb!QV2M|O@p5xp7-S&@QrDnaSRhLjjs5QR$%ym#S|<yanN+yfqRk|}`y_UrH?
z{5fTKE@gi|H;&+II*|+41E!s{A$QH^OVR&YTPMcQquroEK1A0wN7n^h)8Q2A?Yyn7
zK-YihJGJClHDVM|-6HI$?20`_d1TN|N2mG6S>LUCPpn2+tcRR`Dz%)gs&!-LRyY1k
z&aDI(E~6vMS(@8s=WY}yheD&<6R}jN<UX;s9$Ak|b#Hl*8Pm3zc3tJU%5MEo5_$l8
z5=8Z^?gSY6RcoO4)TIWoloA3WKhfp5_6{+)!!Nn6d9^clS@fESnX^uAIZ{#=*(Xs@
zB$V}?Ipz4PoBsz;O9u#*jCsUa9RL8$lMy9s4VQI1T9u4>#918x0L_z%B{~{U-<W4m
YO9ci10000200IEC0000IB>(^b02^xMRR910

diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index fd2ce88f585..96dc6e2d3a2 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -93,7 +93,7 @@
                   "description": "Synch alerts coming in from SAP® enterprise threat detection into Microsoft Sentinel (one way)",
                   "displayName": "SAP ETD - Synch alerts",
                   "enabled": false,
-                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nETDAlerts_CL\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId, Id\n| project-away TenantId, Type, Version, EventSourceId, Technical*\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(OriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)\n    by AlertId, Id\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
+                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId, Id\n| project-away TenantId, Type, Version, EventSourceId, Technical*\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(OriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)\n    by AlertId, Id\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
                   "queryFrequency": "PT1H",
                   "queryPeriod": "P2D",
                   "severity": "Medium",
@@ -105,7 +105,7 @@
                   "requiredDataConnectors": [
                     {
                       "dataTypes": [
-                        "ETDAlerts_CL"
+                        "SAPETDAlerts_CL"
                       ],
                       "connectorId": "SAPETDAlerts"
                     }
@@ -170,7 +170,7 @@
                   "description": "Identifies logons from an unexpected network.\r\nSource Action: Logon to the backend system from an IP address which is not assigned to one of the networks.\r\networks can be maintained in the \"SAP - Networks\" watchlist of the Microsoft Sentinel Solution for SAP package.\r\n*Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*",
                   "displayName": "SAP ETD - Login from unexpected network",
                   "enabled": false,
-                  "query": "let regex_ip = @\"user_ip:(\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3})\";\nlet regex_user = @\"user_name:(\\w+)\";\nlet regex_sid = @\"sid:(\\w{3})\";\nlet regex_client = @\"client:(\\d{3})\";\nlet regex_instance_name = @\"instance_name:(\\w+)\";\nlet regex_instance_host = @\"instance_host:([\\w-]+)\";\nlet SAPNetworks = _GetWatchlist('SAP - Networks');\nETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n| extend Id_ = TriggeringEvents.Id\n| extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)\n| extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)\n| extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)\n| extend extracted_client = extract(regex_client, 1, sapOriginalEvent)\n| extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)\n| extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)\n| evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)\n| where isempty(Network)\n| project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status\n| extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({\"IsPrivate\": true}), geo_info_from_ip_address(extracted_user_ip))",
+                  "query": "let regex_ip = @\"user_ip:(\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3})\";\nlet regex_user = @\"user_name:(\\w+)\";\nlet regex_sid = @\"sid:(\\w{3})\";\nlet regex_client = @\"client:(\\d{3})\";\nlet regex_instance_name = @\"instance_name:(\\w+)\";\nlet regex_instance_host = @\"instance_host:([\\w-]+)\";\nlet SAPNetworks = _GetWatchlist('SAP - Networks');\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n| extend Id_ = TriggeringEvents.Id\n| extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)\n| extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)\n| extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)\n| extend extracted_client = extract(regex_client, 1, sapOriginalEvent)\n| extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)\n| extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)\n| evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)\n| where isempty(Network)\n| project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status\n| extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({\"IsPrivate\": true}), geo_info_from_ip_address(extracted_user_ip))",
                   "queryFrequency": "PT1H",
                   "queryPeriod": "PT1H",
                   "severity": "Medium",
@@ -182,7 +182,7 @@
                   "requiredDataConnectors": [
                     {
                       "dataTypes": [
-                        "ETDAlerts_CL"
+                        "SAPETDAlerts_CL"
                       ],
                       "connectorId": "SAPETDAlerts"
                     }
@@ -304,7 +304,7 @@
                     "id": "SAPETDAlerts",
                     "publisher": "Microsoft",
                     "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
-                    "graphQueriesTableName": "ETDAlerts_CL",
+                    "graphQueriesTableName": "SAPETDAlerts_CL",
                     "graphQueries": [
                       {
                         "metricName": "Total events received",
@@ -489,7 +489,7 @@
                 "kind": "[variables('blanks')]",
                 "properties": {
                   "streamDeclarations": {
-                    "Custom-ETDAlerts_CL": {
+                    "Custom-SAPETDAlerts_CL": {
                       "columns": [
                         {
                           "name": "Version",
@@ -554,27 +554,27 @@
                   "dataFlows": [
                     {
                       "streams": [
-                        "Custom-ETDAlerts_CL"
+                        "Custom-SAPETDAlerts_CL"
                       ],
                       "destinations": [
                         "clv2ws1"
                       ],
                       "transformKql": "source| extend TimeGenerated = now()",
-                      "outputStream": "Custom-ETDAlerts_CL"
+                      "outputStream": "Custom-SAPETDAlerts_CL"
                     }
                   ],
                   "dataCollectionEndpointId": "[variables('dataCollectionEndpointId1')]"
                 }
               },
               {
-                "name": "ETDAlerts_CL",
+                "name": "SAPETDAlerts_CL",
                 "apiVersion": "2022-10-01",
                 "type": "Microsoft.OperationalInsights/workspaces/tables",
                 "location": "[parameters('workspace-location')]",
                 "kind": null,
                 "properties": {
                   "schema": {
-                    "name": "ETDAlerts_CL",
+                    "name": "SAPETDAlerts_CL",
                     "columns": [
                       {
                         "name": "TimeGenerated",
@@ -656,7 +656,7 @@
             "id": "SAPETDAlerts",
             "publisher": "Microsoft",
             "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
-            "graphQueriesTableName": "ETDAlerts_CL",
+            "graphQueriesTableName": "SAPETDAlerts_CL",
             "graphQueries": [
               {
                 "metricName": "Total events received",
@@ -930,9 +930,9 @@
                   "dcrConfig": {
                     "dataCollectionEndpoint": "[[parameters('dcrConfig').dataCollectionEndpoint]",
                     "dataCollectionRuleImmutableId": "[[parameters('dcrConfig').dataCollectionRuleImmutableId]",
-                    "streamName": "Custom-ETDAlerts_CL"
+                    "streamName": "Custom-SAPETDAlerts_CL"
                   },
-                  "dataType": "ETDAlerts_CL",
+                  "dataType": "SAPETDAlerts_CL",
                   "addOnAttributes": {
                     "SubaccountName": "[[parameters('etdHost')]"
                   },

From 951b668718d57ee7faffbeb8a38c622832427842 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 15:53:25 +0100
Subject: [PATCH 10/17] kql fix

---
 .../SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
index c522a9522bc..11ed09d1533 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -21,7 +21,7 @@ query: |
   SAPETDAlerts_CL
   // | where CreationTimestamp > ago(lookBack)
   | where PatternName <> "Logon from external with SAP standard users"
-  | summarize arg_max(TimeGenerated, *) by AlertId, Id
+  | summarize arg_max(TimeGenerated, *) by AlertId
   | project-away TenantId, Type, Version, EventSourceId, Technical*
   | where Threshold >= minThreshold and Score >= minScore
   | order by Timestamp
@@ -35,7 +35,7 @@ query: |
   | summarize
       KeyValues= make_bag(KV),
       take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)
-      by AlertId, Id
+      by AlertId
   | extend
       SystemId= KeyValues.sid,
       ClienId= KeyValues.client,

From 52cd58780f30343e33f834c85a9167009f4ff499 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 16:14:20 +0100
Subject: [PATCH 11/17] kql fix

---
 .../Analytic Rules/SAP ETD - Synch alerts.yaml            | 8 +++++---
 Solutions/SAP ETD Cloud/Package/mainTemplate.json         | 2 +-
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
index 11ed09d1533..e7e613c51fe 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -19,22 +19,24 @@ query: |
   let minScore= 50;
   let lookBack= 70d;
   SAPETDAlerts_CL
+  | mv-expand TriggeringEvents
+  | extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)
   // | where CreationTimestamp > ago(lookBack)
   | where PatternName <> "Logon from external with SAP standard users"
   | summarize arg_max(TimeGenerated, *) by AlertId
   | project-away TenantId, Type, Version, EventSourceId, Technical*
   | where Threshold >= minThreshold and Score >= minScore
   | order by Timestamp
-  | extend NewEvent= split(OriginalEvent, "\n")
+  | extend NewEvent= split(sapOriginalEvent, "\n")
   | mv-expand NewEvent to typeof(string)
   | parse NewEvent with Key: string ":" Value: string
   | extend
       Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),
-      Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)
+      Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)
   | extend KV= bag_pack(Key, Value)
   | summarize
       KeyValues= make_bag(KV),
-      take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)
+      take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)
       by AlertId
   | extend
       SystemId= KeyValues.sid,
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 96dc6e2d3a2..6b099a894b8 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -93,7 +93,7 @@
                   "description": "Synch alerts coming in from SAP® enterprise threat detection into Microsoft Sentinel (one way)",
                   "displayName": "SAP ETD - Synch alerts",
                   "enabled": false,
-                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId, Id\n| project-away TenantId, Type, Version, EventSourceId, Technical*\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(OriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, OriginalEvent)\n    by AlertId, Id\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
+                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId\n| project-away TenantId, Type, Version\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(sapOriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)\n    by AlertId\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
                   "queryFrequency": "PT1H",
                   "queryPeriod": "P2D",
                   "severity": "Medium",

From 9494118cef5a5fc9dd37884994dd5a7faabb422f Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 16:23:19 +0100
Subject: [PATCH 12/17] kql fix

---
 .../SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml    | 1 -
 Solutions/SAP ETD Cloud/Package/mainTemplate.json               | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
index e7e613c51fe..41d221d9f49 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -24,7 +24,6 @@ query: |
   // | where CreationTimestamp > ago(lookBack)
   | where PatternName <> "Logon from external with SAP standard users"
   | summarize arg_max(TimeGenerated, *) by AlertId
-  | project-away TenantId, Type, Version, EventSourceId, Technical*
   | where Threshold >= minThreshold and Score >= minScore
   | order by Timestamp
   | extend NewEvent= split(sapOriginalEvent, "\n")
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 6b099a894b8..5eeae28eb00 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -93,7 +93,7 @@
                   "description": "Synch alerts coming in from SAP® enterprise threat detection into Microsoft Sentinel (one way)",
                   "displayName": "SAP ETD - Synch alerts",
                   "enabled": false,
-                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId\n| project-away TenantId, Type, Version\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(sapOriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)\n    by AlertId\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
+                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(sapOriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)\n    by AlertId\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
                   "queryFrequency": "PT1H",
                   "queryPeriod": "P2D",
                   "severity": "Medium",

From eda5a11793859b883d718ea6f74aa5bb3ab833ca Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 6 Feb 2025 16:37:36 +0100
Subject: [PATCH 13/17] kql fix

---
 .../SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml    | 1 -
 Solutions/SAP ETD Cloud/Package/mainTemplate.json               | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml
index 41d221d9f49..2de121389e9 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Synch alerts.yaml	
@@ -25,7 +25,6 @@ query: |
   | where PatternName <> "Logon from external with SAP standard users"
   | summarize arg_max(TimeGenerated, *) by AlertId
   | where Threshold >= minThreshold and Score >= minScore
-  | order by Timestamp
   | extend NewEvent= split(sapOriginalEvent, "\n")
   | mv-expand NewEvent to typeof(string)
   | parse NewEvent with Key: string ":" Value: string
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 5eeae28eb00..613c78683d9 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -93,7 +93,7 @@
                   "description": "Synch alerts coming in from SAP® enterprise threat detection into Microsoft Sentinel (one way)",
                   "displayName": "SAP ETD - Synch alerts",
                   "enabled": false,
-                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId\n| where Threshold >= minThreshold and Score >= minScore\n| order by Timestamp\n| extend NewEvent= split(sapOriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)\n    by AlertId\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
+                  "query": "let minThreshold= 1;\nlet minScore= 50;\nlet lookBack= 70d;\nSAPETDAlerts_CL\n| mv-expand TriggeringEvents\n| extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)\n// | where CreationTimestamp > ago(lookBack)\n| where PatternName <> \"Logon from external with SAP standard users\"\n| summarize arg_max(TimeGenerated, *) by AlertId\n| where Threshold >= minThreshold and Score >= minScore\n| extend NewEvent= split(sapOriginalEvent, \"\\n\")\n| mv-expand NewEvent to typeof(string)\n| parse NewEvent with Key: string \":\" Value: string\n| extend\n    Value= iff(isempty(Key) and isnotempty(NewEvent), NewEvent, Value),\n    Key= iff(isempty(Key) and isnotempty(NewEvent), TriggeringEvents.EventLogType, Key)\n| extend KV= bag_pack(Key, Value)\n| summarize\n    KeyValues= make_bag(KV),\n    take_any(CreationTimestamp, MinTimestamp, MaxTimestamp, TriggeringEvents.EventLogType, Measure, PatternDescription, PatternName, Status, Threshold, TriggeringEvents.OriginalEvent)\n    by AlertId\n| extend\n    SystemId= KeyValues.sid,\n    ClienId= KeyValues.client,\n    Host= KeyValues.instance_host,\n    Instance= KeyValues.instance_name,\n    User= KeyValues.user_name,\n    IP= KeyValues.user_ip\n",
                   "queryFrequency": "PT1H",
                   "queryPeriod": "P2D",
                   "severity": "Medium",

From dc00da7b6e70a38fe79733615d1f8929c12da64d Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 13 Feb 2025 10:04:54 +0100
Subject: [PATCH 14/17] ccp folder structure adjust

---
 ...P ETD - Login from unexpected network.yaml |  68 +++
 .../SAP ETD Cloud/Data Connectors/SAPETD.json | 157 +++++++
 .../Data Connectors/SAPETD_ccp/DCR.json       |  85 ++++
 .../SAPETD_ccp/connectorDefinition.json       | 175 ++++++++
 .../SAPETD_ccp/dataConnector.json             |  54 +++
 .../SAPETD_ccp/solutionMetadata.json          |  11 +
 .../Data Connectors/createUIDef.json          | 406 ------------------
 .../SAP ETD Cloud/Data/Solution_SAPETD.json   |  10 +-
 Solutions/SAP ETD Cloud/Package/3.0.0.zip     | Bin 9694 -> 9656 bytes
 .../SAP ETD Cloud/Package/mainTemplate.json   |  10 +-
 10 files changed, 562 insertions(+), 414 deletions(-)
 create mode 100644 Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/SAPETD.json
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/DCR.json
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/connectorDefinition.json
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/dataConnector.json
 create mode 100644 Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/solutionMetadata.json
 delete mode 100644 Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
new file mode 100644
index 00000000000..e75d84b9893
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
@@ -0,0 +1,68 @@
+id: 7a830484-e349-4527-85f6-7850c468c238
+kind: Scheduled
+name: SAP ETD - Login from unexpected network
+description: |
+  Identifies logons from an unexpected network.
+  Source Action: Logon to the backend system from an IP address which is not assigned to one of the networks.
+  networks can be maintained in the "SAP - Networks" watchlist of the Microsoft Sentinel Solution for SAP package.
+  
+  *Data Sources: SAP Enterprise Thread Detection Solution -  Alerts*
+severity: Medium
+status: Available
+requiredDataConnectors:
+  - connectorId: SAPETDAlerts
+    dataTypes:
+      - SAPETDAlerts_CL
+queryFrequency: 1h
+queryPeriod: 2d
+triggerOperator: gt
+triggerThreshold: 0
+tactics: []
+relevantTechniques: []
+query: |
+  let regex_ip = @"user_ip:(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})";
+  let regex_user = @"user_name:(\w+)";
+  let regex_sid = @"sid:(\w{3})";
+  let regex_client = @"client:(\d{3})";
+  let regex_instance_name = @"instance_name:(\w+)";
+  let regex_instance_host = @"instance_host:([\w-]+)";
+  let SAPNetworks = _GetWatchlist('SAP - Networks');
+  ETDAlerts_CL
+  | mv-expand TriggeringEvents
+  | extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)
+  | extend Id_ = TriggeringEvents.Id
+  | extend extracted_user_ip = extract(regex_ip, 1, sapOriginalEvent)
+  | extend extracted_sap_user = extract(regex_user, 1, sapOriginalEvent)
+  | extend extracted_sid = extract(regex_sid, 1, sapOriginalEvent)
+  | extend extracted_client = extract(regex_client, 1, sapOriginalEvent)
+  | extend extracted_instance_name = extract(regex_instance_name, 1, sapOriginalEvent)
+  | extend extracted_instance_host = extract(regex_instance_host, 1, sapOriginalEvent)
+  | evaluate ipv4_lookup(SAPNetworks, extracted_user_ip, Network, return_unmatched = true)
+  | where isempty(Network)
+  | project TimeGenerated, extracted_user_ip, extracted_sap_user, extracted_sid, extracted_client, extracted_instance_name, extracted_instance_host, AlertId, PatternName, PatternDescription, Status
+  | extend GeoLocation= iff(ipv4_is_private( extracted_user_ip), dynamic({"IsPrivate": true}), geo_info_from_ip_address(extracted_user_ip))
+eventGroupingSettings:
+  aggregationKind: AlertPerResult
+entityMappings:
+  - entityType: CloudApplication
+    fieldMappings:
+      - identifier: AppId
+        columnName: extracted_sid
+      - identifier: InstanceName
+        columnName: extracted_instance_name
+  - entityType: Host
+    fieldMappings:
+      - identifier: FullName
+        columnName: extracted_instance_host
+  - entityType: IP
+    fieldMappings:
+      - identifier: Address
+        columnName: extracted_user_ip
+alertDetailsOverride:
+  alertDisplayNameFormat: 'SAP ETD - {{PatternName}} '
+  alertDescriptionFormat: |
+    {{PatternDescription}}
+customDetails:
+  SAP_User: User
+  ETD_AlertID: AlertId
+version: 1.0.0
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/SAPETD.json b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD.json
new file mode 100644
index 00000000000..23338c1b5af
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD.json	
@@ -0,0 +1,157 @@
+{
+    "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',variables('_dataConnectorContentIdConnectorDefinition1'))]",
+    "apiVersion": "2022-09-01-preview",
+    "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectorDefinitions",
+    "location": "[parameters('workspace-location')]",
+    "kind": "Customizable",
+    "properties": {
+      "connectorUiConfig": {
+        "title": "SAP ETD",
+        "logo": "SapLogo.svg",
+        "id": "SAPETDAlerts",
+        "publisher": "SAP",
+        "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+        "graphQueriesTableName": "SAPETDAlerts_CL",
+        "graphQueries": [
+          {
+            "metricName": "Total events received",
+            "legend": "ETD Events",
+            "baseQuery": "{{graphQueriesTableName}}"
+          }
+        ],
+        "sampleQueries": [
+          {
+            "description": "Get Sample of ETD Events",
+            "query": "{{graphQueriesTableName}}\n | take 10"
+          }
+        ],
+        "dataTypes": [
+          {
+            "name": "{{graphQueriesTableName}}",
+            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n | where TimeGenerated > ago(12h) | where name_s == \"no data test\" | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
+          }
+        ],
+        "connectivityCriteria": [
+          {
+            "type": "HasDataConnectors"
+          }
+        ],
+        "availability": {
+          "isPreview": true
+        },
+        "permissions": {
+          "resourceProvider": [
+            {
+              "provider": "Microsoft.OperationalInsights/workspaces",
+              "permissionsDisplayText": "Read and Write permissions are required.",
+              "providerDisplayName": "Workspace",
+              "scope": "Workspace",
+              "requiredPermissions": {
+                "write": true,
+                "read": true,
+                "delete": true
+              }
+            },
+            {
+              "provider": "Microsoft.OperationalInsights/workspaces/sharedKeys",
+              "permissionsDisplayText": "Read permissions to shared keys for the workspace are required. [See the documentation to learn more about workspace keys](https://docs.microsoft.com/azure/azure-monitor/platform/agent-windows#obtain-workspace-id-and-key)",
+              "providerDisplayName": "Keys",
+              "scope": "Workspace",
+              "requiredPermissions": {
+                "action": true
+              }
+            }
+          ],
+          "customs": [
+            {
+              "name": "Client Id and Client Secret for ETD Retrieval API",
+              "description": "Enable API access in ETD."
+            }
+          ]
+        },
+        "instructionSteps": [
+          {
+            "description": "**Step 1 - Configuration steps for the SAP ETD Audit Retrieval API**\n\nFollow the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-for-global-accounts-in-cloud-foundry-environment/). Take a note of the **url** (Audit Retrieval API URL), **uaa.url** (User Account and Authentication Server url) and the associated **uaa.clientid**.\n\n>**NOTE:** You can onboard one or more ETD subaccounts by following the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-usage-for-subaccounts-in-cloud-foundry-environment/). Add a connection for each subaccount."
+          },
+          {
+            "description": "Connect using OAuth client credentials",
+            "title": "Connect events from SAP ETD to Microsoft Sentinel",
+            "instructions": [
+              {
+                "type": "ContextPane",
+                "parameters": {
+                  "contextPaneType": "DataConnectorsContextPane",
+                  "label": "Add account",
+                  "isPrimary": true,
+                  "title": "ETD connection",
+                  "instructionSteps": [
+                    {
+                      "title": "Account Details",
+                      "instructions": [
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "SAP ETD Client ID",
+                            "placeholder": "Client ID",
+                            "type": "text",
+                            "name": "clientId"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "SAP ETD Client Secret",
+                            "placeholder": "Client Secret",
+                            "type": "password",
+                            "name": "clientSecret"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "Authorization server URL (UAA server)",
+                            "placeholder": "https://your-tenant.authentication.region.hana.ondemand.com/oauth/token",
+                            "type": "text",
+                            "name": "authServerUrl"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "ETD data retrieval API URL",
+                            "placeholder": "https://your-etd-cloud-data-retrieval-service.cfapps.region.hana.ondemand.com",
+                            "type": "text",
+                            "name": "etdHost"
+                          }
+                        }
+                      ]
+                    }
+                  ]
+                }
+              }
+            ]
+          },
+          {
+            "title": "ETD accounts",
+            "description": "Each row represents a connected ETD account",
+            "instructions": [
+              {
+                "type": "DataConnectorsGrid",
+                "parameters": {
+                  "mapping": [
+                    {
+                      "columnName": "Data retrieval endpoint",
+                      "columnValue": "properties.request.apiEndpoint"
+                    }
+                  ],
+                  "menuItems": [
+                    "DeleteConnector"
+                  ]
+                }
+              }
+            ]
+          }
+        ]
+      }
+    }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/DCR.json b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/DCR.json
new file mode 100644
index 00000000000..4f4f53434f6
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/DCR.json	
@@ -0,0 +1,85 @@
+{
+    "name": "SAP-ETD-DCR",
+    "apiVersion": "2022-06-01",
+    "type": "Microsoft.Insights/dataCollectionRules",
+    "location": "[parameters('workspace-location')]",
+    "kind": "[variables('blanks')]",
+    "properties": {
+      "streamDeclarations": {
+        "Custom-SAPETDAlerts_CL": {
+          "columns": [
+            {
+              "name": "Version",
+              "type": "string"
+            },
+            {
+              "name": "AlertId",
+              "type": "int"
+            },
+            {
+              "name": "PatternName",
+              "type": "string"
+            },
+            {
+              "name": "PatternDescription",
+              "type": "string"
+            },
+            {
+              "name": "Status",
+              "type": "string"
+            },
+            {
+              "name": "CreationTimestamp",
+              "type": "datetime"
+            },
+            {
+              "name": "MinTimestamp",
+              "type": "datetime"
+            },
+            {
+              "name": "MaxTimestamp",
+              "type": "datetime"
+            },
+            {
+              "name": "Score",
+              "type": "int"
+            },
+            {
+              "name": "Threshold",
+              "type": "int"
+            },
+            {
+              "name": "Measure",
+              "type": "int"
+            },
+            {
+              "name": "TriggeringEvents",
+              "type": "dynamic"
+            }
+          ]
+        }
+      },
+      "dataSources": "[variables('TemplateEmptyObject')]",
+      "destinations": {
+        "logAnalytics": [
+          {
+            "workspaceResourceId": "[variables('workspaceResourceId')]",
+            "name": "clv2ws1"
+          }
+        ]
+      },
+      "dataFlows": [
+        {
+          "streams": [
+            "Custom-SAPETDAlerts_CL"
+          ],
+          "destinations": [
+            "clv2ws1"
+          ],
+          "transformKql": "source| extend TimeGenerated = now()",
+          "outputStream": "Custom-SAPETDAlerts_CL"
+        }
+      ],
+      "dataCollectionEndpointId": "[variables('dataCollectionEndpointId1')]"
+    }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/connectorDefinition.json b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/connectorDefinition.json
new file mode 100644
index 00000000000..76ee314d527
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/connectorDefinition.json	
@@ -0,0 +1,175 @@
+{
+    "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',variables('_dataConnectorContentIdConnectorDefinition1'))]",
+    "apiVersion": "2022-09-01-preview",
+    "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectorDefinitions",
+    "location": "[parameters('workspace-location')]",
+    "kind": "Customizable",
+    "properties": {
+      "connectorUiConfig": {
+        "title": "SAP ETD",
+        "logo": "SapLogo.svg",
+        "id": "SAPETDAlerts",
+        "publisher": "SAP",
+        "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
+        "graphQueriesTableName": "SAPETDAlerts_CL",
+        "graphQueries": [
+          {
+            "metricName": "Total events received",
+            "legend": "ETD Events",
+            "baseQuery": "{{graphQueriesTableName}}"
+          }
+        ],
+        "sampleQueries": [
+          {
+            "description": "Get Sample of ETD Events",
+            "query": "{{graphQueriesTableName}}\n | take 10"
+          }
+        ],
+        "dataTypes": [
+          {
+            "name": "{{graphQueriesTableName}}",
+            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n | where TimeGenerated > ago(12h) | where name_s == \"no data test\" | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)"
+          }
+        ],
+        "connectivityCriteria": [
+          {
+            "type": "HasDataConnectors"
+          }
+        ],
+        "availability": {
+          "isPreview": true
+        },
+        "permissions": {
+          "resourceProvider": [
+            {
+              "provider": "Microsoft.OperationalInsights/workspaces",
+              "permissionsDisplayText": "Read and Write permissions are required.",
+              "providerDisplayName": "Workspace",
+              "scope": "Workspace",
+              "requiredPermissions": {
+                "write": true,
+                "read": true,
+                "delete": true
+              }
+            },
+            {
+              "provider": "Microsoft.OperationalInsights/workspaces/sharedKeys",
+              "permissionsDisplayText": "Read permissions to shared keys for the workspace are required. [See the documentation to learn more about workspace keys](https://docs.microsoft.com/azure/azure-monitor/platform/agent-windows#obtain-workspace-id-and-key)",
+              "providerDisplayName": "Keys",
+              "scope": "Workspace",
+              "requiredPermissions": {
+                "action": true
+              }
+            }
+          ],
+          "customs": [
+            {
+              "name": "Client Id and Client Secret for ETD Retrieval API",
+              "description": "Enable API access in ETD."
+            }
+          ]
+        },
+        "instructionSteps": [
+          {
+            "description": "**Step 1 - Configuration steps for the SAP ETD Audit Retrieval API**\n\nFollow the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-for-global-accounts-in-cloud-foundry-environment/). Take a note of the **url** (Audit Retrieval API URL), **uaa.url** (User Account and Authentication Server url) and the associated **uaa.clientid**.\n\n>**NOTE:** You can onboard one or more ETD subaccounts by following the steps provided by SAP [see ETD docs](https://help.sap.com/docs/ETD/sap-business-technology-platform/audit-log-retrieval-api-usage-for-subaccounts-in-cloud-foundry-environment/). Add a connection for each subaccount."
+          },
+          {
+            "description": "Connect using OAuth client credentials",
+            "title": "Connect events from SAP ETD to Microsoft Sentinel",
+            "instructions": [
+              {
+                "type": "ContextPane",
+                "parameters": {
+                  "contextPaneType": "DataConnectorsContextPane",
+                  "label": "Add account",
+                  "isPrimary": true,
+                  "title": "ETD connection",
+                  "instructionSteps": [
+                    {
+                      "title": "Account Details",
+                      "instructions": [
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "SAP ETD Client ID",
+                            "placeholder": "Client ID",
+                            "type": "text",
+                            "name": "clientId"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "SAP ETD Client Secret",
+                            "placeholder": "Client Secret",
+                            "type": "password",
+                            "name": "clientSecret"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "Authorization server URL (UAA server)",
+                            "placeholder": "https://your-tenant.authentication.region.hana.ondemand.com/oauth/token",
+                            "type": "text",
+                            "name": "authServerUrl"
+                          }
+                        },
+                        {
+                          "type": "Textbox",
+                          "parameters": {
+                            "label": "ETD data retrieval API URL",
+                            "placeholder": "https://your-etd-cloud-data-retrieval-service.cfapps.region.hana.ondemand.com",
+                            "type": "text",
+                            "name": "etdHost"
+                          }
+                        }
+                      ]
+                    }
+                  ]
+                }
+              }
+            ]
+          },
+          {
+            "title": "ETD accounts",
+            "description": "Each row represents a connected ETD account",
+            "instructions": [
+              {
+                "type": "DataConnectorsGrid",
+                "parameters": {
+                  "mapping": [
+                    {
+                      "columnName": "Data retrieval endpoint",
+                      "columnValue": "properties.request.apiEndpoint"
+                    }
+                  ],
+                  "menuItems": [
+                    "DeleteConnector"
+                  ]
+                }
+              }
+            ]
+          }
+        ]
+      }
+    },"metadata": {
+        "id": "SAPETDAlerts",
+        "version": "3.1.0",
+        "kind": "dataConnector",
+        "source": {
+            "kind": "solution",
+            "name": "SAP Enterprise Threat Detection, cloud edition integration with Microsoft Sentinel"
+        },
+        "author": {
+            "name": "Michael Schmitt",
+            "email": "m.schmitt@sap.com"
+        },
+        "support": {
+            "tier": "Partner",
+            "name": "SAP SE",
+            "email": "support@sap.com",
+            "link": "https://me.sap.com/"
+        }
+    }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/dataConnector.json b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/dataConnector.json
new file mode 100644
index 00000000000..6e908b3534f
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/dataConnector.json	
@@ -0,0 +1,54 @@
+{
+    "name": "[[concat(parameters('innerWorkspace'),'/Microsoft.SecurityInsights/',variables('connectorName'))]",
+    "apiVersion": "2023-02-01-preview",
+    "type": "Microsoft.OperationalInsights/workspaces/providers/dataConnectors",
+    "location": "[parameters('workspace-location')]",
+    "kind": "RestApiPoller",
+    "properties": {
+      "connectorDefinitionName": "SAPETDAlerts",
+      "dcrConfig": {
+        "dataCollectionEndpoint": "[[parameters('dcrConfig').dataCollectionEndpoint]",
+        "dataCollectionRuleImmutableId": "[[parameters('dcrConfig').dataCollectionRuleImmutableId]",
+        "streamName": "Custom-SAPETDAlerts_CL"
+      },
+      "dataType": "SAPETDAlerts_CL",
+      "addOnAttributes": {
+        "SubaccountName": "[[parameters('etdHost')]"
+      },
+      "auth": {
+        "type": "OAuth2",
+        "ClientSecret": "[[parameters('ClientSecret')]",
+        "ClientId": "[[parameters('ClientId')]",
+        "GrantType": "client_credentials",
+        "TokenEndpoint": "[[concat(replace(parameters('authServerUrl'), '/oauth/token', ''), '/oauth/token?grant_type=client_credentials')]",
+        "TokenEndpointHeaders": {
+          "Content-Type": "application/x-www-form-urlencoded"
+        }
+      },
+      "request": {
+        "apiEndpoint": "[[concat(parameters('etdHost'), '/alerts/v1/Alerts')]",
+        "queryWindowInMin": 10,
+        "httpMethod": "Get",
+        "retryCount": 3,
+        "timeoutInSeconds": 60,
+        "queryTimeFormat": "yyyy-MM-ddTHH:mm:ssZ",
+        "queryParameters": {
+          "$expand": "TriggeringEvents",
+          "$filter": "CreationTimestamp gt {_QueryWindowStartTime} and CreationTimestamp le {_QueryWindowEndTime}"
+        },
+        "headers": {
+          "Accept": "application/json",
+          "User-Agent": "Scuba"
+        }
+      },
+      "response": {
+        "eventsJsonPaths": [
+          "$.value"
+        ]
+      },
+      "paging": {
+        "pagingType": "LinkHeader",
+        "linkHeaderTokenJsonPath": "$.['@odata.nextLink']"
+      }
+    }
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/solutionMetadata.json b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/solutionMetadata.json
new file mode 100644
index 00000000000..c196c0ca487
--- /dev/null
+++ b/Solutions/SAP ETD Cloud/Data Connectors/SAPETD_ccp/solutionMetadata.json	
@@ -0,0 +1,11 @@
+{
+    "SolutionName":"SAP Enterprise Threat Detection, cloud edition",
+    "SolutionAuthor": "SAP",
+    "SolutionVersion":"3.0.0",
+    "PackageId": "azuresentinel.azure-sentinel-solution-SAPLogServPushV1",
+    "TemplateName": "SAPETDPushV1",
+    "ConnectorDefinitionTemplateVersion": "1.0.0",
+    "DataConnectorsTemplateVersion": "1.0.0",
+    "PackageIcon":"SAP",
+    "SolutionTier": "Partner"
+}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json b/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json
deleted file mode 100644
index 7ed008dbc6d..00000000000
--- a/Solutions/SAP ETD Cloud/Data Connectors/createUIDef.json	
+++ /dev/null
@@ -1,406 +0,0 @@
-{
-	"$schema": "https://schema.management.azure.com/schemas/2021-09-09/uiFormDefinition.schema.json",
-	"view": {
-		"kind": "Form",
-		"properties": {
-			"title": "Microsoft Sentinel: SAP ETD Data Connector",
-			"steps": [
-				{
-					"name": "basics",
-					"label": "Basics",
-					"elements": [
-						{
-							"name": "resourceScope",
-							"type": "Microsoft.Common.ResourceScope"
-						},
-						{
-							"name": "getLAWorkspace",
-							"type": "Microsoft.Solutions.ArmApiControl",
-							"request": {
-								"method": "POST",
-								"path": "providers/Microsoft.ResourceGraph/resources?api-version=2021-03-01",
-								"body": {
-									"query": "[concat('resources | where type =~ \"microsoft.operationalinsights/workspaces\" and subscriptionId == \"', steps('basics').resourceScope.subscription.subscriptionId, '\" | project label = name, description = location, value = pack(\"name\", name, \"location\", location, \"resourceGroup\", resourceGroup, \"id\", id) | order by label asc')]"
-								}
-							}
-						},
-						{
-							"name": "getKeyVaults",
-							"type": "Microsoft.Solutions.ArmApiControl",
-							"request": {
-								"method": "POST",
-								"path": "providers/Microsoft.ResourceGraph/resources?api-version=2021-03-01",
-								"body": {
-									"query": "[concat('resources | where type =~ \"microsoft.keyvault/vaults\" and subscriptionId == \"', steps('basics').resourceScope.subscription.subscriptionId, '\" | project label = name, description = resourceGroup, value = name | order by label asc')]"
-								}
-							}
-						},
-						{
-							"name": "sentinelWorkspace",
-							"type": "Microsoft.Common.DropDown",
-							"label": "Sentinel workspace",
-							"defaultValue": "[parse('[]')]",
-							"toolTip": "",
-							"multiselect": false,
-							"selectAll": true,
-							"filter": true,
-							"filterPlaceholder": "Filter items ...",
-							"multiLine": true,
-							"visible": true,
-							"constraints": {
-								"allowedValues": "[steps('basics').getLAWorkspace.data]",
-								"required": true
-							}
-						}
-					]
-				},
-				{
-					"name": "identity",
-					"label": "Identity",
-					"elements": [
-						{
-							"name": "keyVaultNameApi",
-							"type": "Microsoft.Solutions.ArmApiControl",
-							"request": {
-								"method": "POST",
-								"path": "[concat(steps('basics').resourceScope.subscription.id, '/providers/Microsoft.KeyVault/checknameavailability?api-version=2022-07-01')]",
-								"body": {
-									"name": "[steps('identity').keyvault.newKeyVaultName]",
-									"type": "Microsoft.KeyVault/vaults"
-								}
-							}
-						},
-						{
-							"name": "announcement",
-							"type": "Microsoft.Common.TextBlock",
-							"visible": true,
-							"options": {
-								"text": "The SAP ETD data connector collects data using a Client ID and Client Secret to connect to ETD.",
-								"link": {
-									"label": "Learn more",
-									"uri": "https://learn.microsoft.com/azure/sentinel/business-applications"
-								}
-							}
-						},
-						{
-							"name": "spn",
-							"type": "Microsoft.Common.Section",
-							"label": "Client credentials",
-							"elements": [
-								{
-									"name": "clientId",
-									"type": "Microsoft.Common.TextBox",
-									"label": "Client (App) ID",
-									"placeholder": "example: sb-101464cb-6d15-4abd-9dbd-gx233d401e22!b312711|etdcloudprod-004-prod-etd-cloud-service-broker!b274464",
-									"constraints": {
-										"required": true
-									}
-								}
-							],
-							"visible": true
-						},
-						{
-							"name": "keyvault",
-							"type": "Microsoft.Common.Section",
-							"label": "Key Vault",
-							"elements": [
-								{
-									"name": "useExistingKeyVault",
-									"type": "Microsoft.Common.OptionsGroup",
-									"label": "Create new, or existing Key Vault",
-									"defaultValue": "New",
-									"toolTip": "",
-									"constraints": {
-										"allowedValues": [
-											{
-												"label": "New",
-												"value": false
-											},
-											{
-												"label": "Existing",
-												"value": true
-											}
-										],
-										"required": true
-									},
-									"visible": true
-								},
-								{
-									"name": "newKeyVaultName",
-									"type": "Microsoft.Common.TextBox",
-									"label": "Key Vault name",
-									"defaultValue": "[toLower(concat('SAPETDkv', first(split(steps('basics').resourceScope.subscription.subscriptionId, '-'))))]",
-									"toolTip": "Name of the Key Vault",
-									"constraints": {
-										"required": true,
-										"validations": [
-											{
-												"isValid": "[steps('identity').keyVaultNameApi.nameAvailable]",
-												"message": "[steps('identity').keyVaultNameApi.message]"
-											}
-										]
-									},
-									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
-								},
-								{
-									"name": "existingKeyVaultName",
-									"type": "Microsoft.Common.DropDown",
-									"label": "Azure Key Vault",
-									"defaultValue": "[parse('[]')]",
-									"toolTip": "",
-									"multiselect": false,
-									"selectAll": true,
-									"filter": true,
-									"filterPlaceholder": "Filter items ...",
-									"multiLine": true,
-									"constraints": {
-										"allowedValues": "[steps('basics').getKeyVaults.data]",
-										"required": true
-									},
-									"visible": "[steps('identity').keyvault.useExistingKeyVault]"
-								},
-								{
-									"name": "secretName",
-									"type": "Microsoft.Common.TextBox",
-									"label": "Secret name",
-									"placeholder": "example: secret1",
-									"toolTip": "Name of the secret in Key Vault (not the actual client secret)",
-									"constraints": {
-										"required": true
-									},
-									"visible": true
-								},
-								{
-									"name": "secretValue",
-									"type": "Microsoft.Common.PasswordBox",
-									"label": {
-										"password": "Client Secret",
-										"confirmPassword": "Confirm secret"
-									},
-									"toolTip": "The client secret value from SAP ETD",
-									"constraints": {
-										"required": true
-									},
-									"options": {
-										"hideConfirmation": true
-									},
-									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
-								}
-							],
-							"visible": true
-						}
-					]
-				},
-				{
-					"name": "etd",
-					"label": "API Connection",
-					"elements": [
-						{
-							"name": "uaaUrl",
-							"type": "Microsoft.Common.TextBox",
-							"label": "Authentication Server URL",
-							"placeholder": "example: https://etd-cloud-wv245d01.authentication.eu10.hana.ondemand.com",
-							"toolTip": "UAA URL",
-							"constraints": {
-								"required": true,
-								"regex": "^https:\/\/[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
-								"validationMessage": "Please enter a valid URL starting with https:// and without a trailing \"/\"."
-							},
-							"visible": true
-						},
-						{
-							"name": "apiHost",
-							"type": "Microsoft.Common.TextBox",
-							"label": "SAP ETD API Host URL",
-							"placeholder": "example: https://etdcloud-data-retrieval-service.cfapps.eu10-004.hana.ondemand.com",
-							"toolTip": "UAA URL",
-							"constraints": {
-								"required": true,
-								"regex": "^https:\/\/[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
-								"validationMessage": "Please enter a valid URL starting with https:// and without a trailing \"/\"."
-							},
-							"visible": true
-						}
-					]
-				},
-				{
-					"name": "roles",
-					"label": "Role Assignments",
-					"elements": [
-						{
-							"name": "roleAssignment",
-							"type": "Microsoft.Common.Section",
-							"label": "Storage and DCR Role Assignment",
-							"elements": [
-								{
-									"name": "storageOverview",
-									"type": "Microsoft.Common.TextBlock",
-									"visible": true,
-									"options": {
-										"text": "As part of the deployment, the Funcion App uses identity based connection to host storage. The Function App managed identity must be assigned the Storage Blob Data Owner role on the Storage Account.",
-										"link": {
-											"label": "Learn more",
-											"uri": "https://learn.microsoft.com/azure/azure-functions/functions-reference?tabs=azurewebjobsstorage&pivots=programming-language-csharp#grant-permission-to-the-identity"
-										}
-									}
-								},
-								{
-									"name": "dcrOverview",
-									"type": "Microsoft.Common.TextBlock",
-									"visible": true,
-									"options": {
-										"text": "As part of the deployment, Data Collection Rule (DCR) and Data Collection Endpoint (DCE) resources will be created. To ingest data, the Function App managed identity must be assigned the Monitoring Metrics Publisher role on the DCR.",
-										"link": {
-											"label": "Learn more",
-											"uri": "https://learn.microsoft.com/azure/azure-monitor/logs/logs-ingestion-api-overview"
-										}
-									}
-								},
-								{
-									"name": "dcrInfo",
-									"type": "Microsoft.Common.InfoBox",
-									"visible": true,
-									"options": {
-										"text": "Role assignment typically requires Owner or User Access Administrator privileges on the target resource.",
-										"uri": "https://learn.microsoft.com/azure/role-based-access-control/role-assignments-portal",
-										"style": "Info"
-									}
-								},
-								{
-									"name": "hasPermissions",
-									"type": "Microsoft.Common.OptionsGroup",
-									"label": "Role assignment",
-									"defaultValue": "none",
-									"toolTip": "",
-									"constraints": {
-										"allowedValues": [
-											{
-												"label": "Yes (I have sufficient privileges for role assignment)",
-												"value": true
-											},
-											{
-												"label": "No (I will assign roles after deployment)",
-												"value": false
-											}
-										],
-										"required": true
-									},
-									"visible": true
-								}								
-							],
-							"visible": true
-						},
-						{
-							"name": "ketVaultRoleAssignment",
-							"type": "Microsoft.Common.Section",
-							"label": "Key Vault Role Assignment",
-							"elements": [
-								{
-									"name": "kvOverview",
-									"type": "Microsoft.Common.TextBlock",
-									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]",
-									"options": {
-										"text": "As part of the deployment, a Key Vault resource will be created to store the client secret of the Microsoft Entra Service Principal. To ingest data, the Function App managed identity must be assigned the Key Vault Secrets User role on the Key Vault.",
-										"link": {
-											"label": "Learn more",
-											"uri": "https://learn.microsoft.com/en-us/azure/key-vault/general/rbac-guide"
-										}
-									}
-								},
-								{
-									"name": "kvInfo",
-									"type": "Microsoft.Common.InfoBox",
-									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]",
-									"options": {
-										"text": "Role assignment to the Key Vault typically requires Owner or User Access Administrator privileges on the target resource.",
-										"uri": "https://learn.microsoft.com/azure/role-based-access-control/role-assignments-portal",
-										"style": "Info"
-									}
-								},
-								{
-									"name": "hasPermissions",
-									"type": "Microsoft.Common.OptionsGroup",
-									"label": "Role assignment",
-									"defaultValue": "none",
-									"toolTip": "",
-									"constraints": {
-										"allowedValues": [
-											{
-												"label": "Yes (I have sufficient privileges for role assignment)",
-												"value": true
-											},
-											{
-												"label": "No (I will assign roles after deployment)",
-												"value": false
-											}
-										],
-										"required": true
-									},
-									"visible": "[equals(steps('identity').keyvault.useExistingKeyVault, false)]"
-								},
-								{
-									"name": "noKvPermissions",
-									"type": "Microsoft.Common.InfoBox",
-									"options": {
-										"text": "To complete the deployment, you will need to assign the Key Vault Secrets User role to the Function App managed identity on the Key Vault resource created during deployment. For more information, see the deployment guide.",
-										"uri": "https://learn.microsoft.com/azure/sentinel/business-applications",
-										"style": "Warning"
-									},
-									"visible": "[or(steps('identity').keyvault.useExistingKeyVault, equals(steps('roles').ketVaultRoleAssignment.hasPermissions, false))]"
-								}
-							],
-							"visible": true
-						}
-					]
-				},
-				{
-					"name": "tags",
-					"label": "Tags",
-					"elements": [
-						{
-							"name": "tagsByResource",
-							"type": "Microsoft.Common.TagsByResource",
-							"resources": [
-								"Microsoft.Resources/deployments",
-								"Microsoft.Insights/components",
-								"Microsoft.Web/serverfarms",
-								"Microsoft.Storage/storageAccounts",
-								"Microsoft.Web/sites",
-								"Microsoft.Insights/dataCollectionRules",
-								"Microsoft.Insights/dataCollectionEndpoints",
-								"Microsoft.Authorization/roleAssignments",
-								"Microsoft.OperationalInsights/workspaces/tables"
-							]
-						}
-					]
-				}
-			]
-		},
-		"outputs": {
-			"kind": "ResourceGroup",
-			"location": "[steps('basics').resourceScope.location.name]",
-			"resourceGroupId": "[steps('basics').resourceScope.resourceGroup.id]",
-			"parameters": {
-				"functionAppName": "[steps('function').newFunctionAppName]",
-				"storageAccountName": "[steps('function').newStorageAccountName]",
-				"appInsightsWorkspaceResourceId": "[steps('function').appInsightsWorkspace.id]",
-				"roleAssignmentDcr": "[steps('roles').roleAssignment.hasPermissions]",
-				"roleAssignmentStorage": "[steps('roles').roleAssignment.hasPermissions]",
-				"roleAssignmentKv": "[steps('roles').ketVaultRoleAssignment.hasPermissions]",
-				"sentinelWorkspace": "[steps('basics').sentinelWorkspace]",
-				"etdUaaUrl": "[steps('etd').uaaUrl]",
-				"etdApiHost": "[steps('etd').apiHost]",
-				"tagsByResource": "[steps('tags').tagsByResource]",
-				"keyVault": {
-					"useExistingKeyVault": "[steps('identity').keyvault.useExistingKeyVault]",
-					"keyVaultName": "[coalesce(steps('identity').keyvault.existingKeyVaultName, steps('identity').keyvault.newKeyVaultName)]",
-					"secretName": "[steps('identity').keyvault.secretName]"
-				},
-				"secretValue": "[coalesce(steps('identity').keyvault.secretValue, 'empty')]",
-				"identity": {
-					"clientId": "[steps('identity').spn.clientId]"
-				}
-			}
-		}
-	}
-}
\ No newline at end of file
diff --git a/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json
index 0ce0c01ddf4..def80c74e0e 100644
--- a/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json	
+++ b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json	
@@ -6,17 +6,21 @@
     "WorkbookDescription": [],
     "Workbooks": [],
     "Analytic Rules": [
-        "/Analytic Rules/SAP ETD - Synch alerts.yaml"
+        "/Analytic Rules/SAP ETD - Synch alerts.yaml",
+        "/Analytic Rules/SAP ETD - Login from unexpected network.yaml"
     ],
     "Playbooks": [],
     "PlaybookDescription": [],
     "Parsers": [],
     "SavedSearches": [],
     "Hunting Queries": [],
-    "Data Connectors": [],
+    "Data Connectors": [
+        "Data Connectors/SAPETD_ccp/connectorDefinition.json",
+        "Data Connectors/SAPETD.json"
+    ],
     "Watchlists": [],
     "WatchlistDescription": [],
-    "BasePath": "C:\\GitHub\\Azure-Sentinel",
+    "BasePath": "C:\\GitHub\\Azure-Sentinel\\Solutions\\SAP ETD Cloud",
     "Version": "3.0.1",
     "Metadata": "SolutionMetadata.json",
     "TemplateSpec": true,
diff --git a/Solutions/SAP ETD Cloud/Package/3.0.0.zip b/Solutions/SAP ETD Cloud/Package/3.0.0.zip
index 70d2afb81813d60122dd2e10b512b6b490daa14b..bf7e1f7f2c6cbe022515750290fbdbd126c1a910 100644
GIT binary patch
delta 7689
zcmY+JWl)?Aldh5A9tbwL1PBt`<%Qr9+#$HTYj}Xc-66P3Z~_D;0|W^ULm1p`aCg}E
zt8@08-InU=s=mAb_qD3jri7!Wg#3mG0sUWBP*X{@LE{I=TWW1S{+o~9H8#g$OB&n5
z?xzW75?amk(>Tt2oIC+SzGT$64LrWi6sA7?`T3?;Rr`M>*{`QjBJvpf);96Z<nA<|
z7$<6CPZ-lXKoNQ2@i4@y53K(&9#)>~1M1h1U#h3o!}(2Q$4;rMya{{LH-izr+}Y{{
zpJ8#p{dv?&c9^3j8qYn)qHk0CHIu{Tx0d#njfQrTWz$Yg{+s|_>yloXkXP02B8ooT
zC(_lIfxcm!KngpD=IGZlc5AkB+<1am)lCA?QUy^QDaW9ufYNMtR~`zsO&6q((TL2^
zJ5$?q=ormRXcdoQ(>prx+!eIp$q4a%f?rI5Sv{Hz@vx!u@!So3b&8G`1`zeM*Yo^X
z!GNZ3Z#uBifR*igt_oH1UAv`?4P|Ivh~<>u1-B%VAATbEGJeI_HH^E`K2UedAEoe?
z%SL`8HR~=;XpGkFpIzP<bQ~KU3KJy8;;g3&16<2IW$=Ip+rIsCxc*1GeHfzWqm?u;
zJQ>#(M8pH9(R!;&cE2Nx{;@=;<y)EBbGVVJae(4-lpvdDz3Ff)XV&>{y^q3TQKnf?
zbx`-XPAw)Zch#ziL%QqsR|Mx-Au#qn*8+)7FjG1v8fq^y&?G;QWRg_k+KOrCd&C6-
z4)J(`$gk!eUlte9G!@g(rvyjeJM#hzzb5UCHjx(tOS*91Th3RksvIp6)bL=D`E4zl
z;iHgn356K%K8*F3CF<pl8NSysz4^&GxXEg?AQ*LFo+B$sNBD+ux93Q?WLs2XusHR~
zmI$x7eXsA;1K+HJ<LLYa)uvo#H#bt&$OdwsF|hXz$Jqa*vG__<vr~@4R}}+TGiy;e
zdE=X%`6{ozusyYLH!BpImwY!=Oob)6JdZ$ByH=5f^RSQ;l<zI}q5Vnl9M*Z+3n5<p
zz;4tNF6~*3s!1WfrbXo(iR<#j{(N$<`{OiU|LEX{g#Kht&_(U_$~?)M-dfP@b@}sA
z&gl`8YA@@rKj0Kjja3Ox)Mrm%T$X9<vy?!O&=tK8cYH~_F$30(=8!WKt(*%|XkuP1
z`W6#5lDp7WYUsD{Ez`G(^spZ15rpG=6Y12=PHymQw%G}&X2ArI`~A`c<X2`W!b4JF
z_Tf-1bN>-kp+TWhkBPHG73pe;quGW@fEKBfFeERm=y;;DJoKF#ftvD|H6!Yg#~`7m
zqp(bZrgIhNB%5)Xj|cI^Wwif6N9i8oMZC2WW&k?l<d^lw2ER~Om($9csU08N#@a>t
zgVe9y8xPJkH>AVZ_+*`_W>}Pf);HS|<4B>3!V}NBz_ber89Y_E1X>Rdo>6aC{R8N}
zAI%4#f;@?E2w?67wtLAGtsC!}x$cC1Am0i5{0Dk1n1OgG__SQ|V#RPvptfoaei1s6
zdFkDZF8;e~%Ae>mklZIye9W^Cbg;L6-ua}@%ubU^=VJD)^oS9$u#p|83Sj*y>Mr{s
zLj#3YyTI)8>D<_%XNf?(JBx8H^G|4s<AJ)aXz#A`XJWC1zzeOc^1q^%x*VMxyf<a}
zDf8s^&ES{C%5y!od=a6X^4p$_*_tt_JGB|iy)mC+pP+pEr}2Org59{;KbB90UxaMS
zEx>_jt<HiS?|x`JrhFCzC@4pXYVz^!?;+$!?u~{}&<+&Kpc+aME%Vtqut6|<)u((y
z9ljwYEd)k+eLwFkIzINw3PCF^ZYjD^Ha4lXAj=Fm4=eqoEk?J}rhZUC{UIq<JYnhL
zFcjCs&#*IOZnEM6yolpeSeD_on>6NACi_^I6bi0Q#a87_p*;pX4<3xz3VvaVa7Jk^
z*`Ko)uxEHXl&btOWcbO2?n;XuwE55{gSfN@yhbAM=?UT)pG;wp#YZFiF7&;<+A5sD
zq<ABKMDPDYCz6qFBQ#mjMUnW6U4i`rH?=O|fuCe|)SN)5CR>-}6jdySGMtDru{>n&
zD5(~pe7rb_rVIldBLllxsQn~e?@91gM7Eby(DHZEtABLQTf7QzcQ(O>gsv&w$vaXp
z`cp5~F}ox0GDdYHgTLM5u6F#=eWF~Tb)(@ccmJtgw6h3XgVFRVJo@8};CPCA*%Z1?
zFXW0cdA`La%6AYfxAm8{(0lL9lX_Z^>UQeIiLotAr$Y<G(J+ACf`adHaoTe@;s(XS
z2pNBnIi{PC6>V%g%1Yq6!brx3zzD`+hYs6M5w7+W!VAMJb|aU0NL3gb(W!bp8@+qO
zR~g2a3a9u7P0Yzo=(D7W&u%WY@_uu8V$RH*p|K$}94=@gXnK53{d-R_D~^QIsHV<|
z0b!5I&>sMHMPuSozsU*y?WQ?`V<H@eKvQ#$(Vk2_u=$M~c|!F1Q0>YXg!#`@HDMN}
z#~EPCqH31?>CMlKlC|mr?_r_5+z{I~>0$e`KKt^hGamxBH~V2WQ%+}arttUQqiIlF
zP~Sy>`c62WWF&T9>?Ln;N(d;NKmE>q{I*ZFOXdy8e>Nv)n&#XpBZuvL4UHnX=jsh(
z5+F#r#lHy<zE<BBcJB+wAAQ<X0#X0Icvgbd-e>O5mG_KKl%Gkp3Z+fjFKryqFFm6h
zvaO;1G<td7P~WK)p?)Mk7(!XXqXh$BbClXjW@|H5;uC|T5G8^V@{b(IWwD_Yf|mEw
zqZEL^w*&I`9)kOHqOUipoMLt4uEW=YoXN|LdOk%!%u+VVa5|f4o(841WkuT8!ufJk
z$_YDkuiKaoD!S5;XkPD6yGMKDiv}{XPf)6#6mPSW+UUuJFTKmQ$}1cmiipi{`*fl(
zMH<#ot4=))Z`*>xsHjfQ$3emc{jEk(L`Xni74+h!i^k1+kLIatx1<0TJ}O%Ab$f7H
zh^FBM0S#eDKh}X}QQZ#>6qlmE8<*iO(<$gzu;|`~Xol;+C&TWpQL}>Vta#^DUI2%M
zm1LaqQPhyFrD3VV)+F|xlYGC}z}>W{ad&VNPYRqn6Tm|X0_7qGjME+H%24gL9{@p=
zYu~2cj1<oXRi3gG|3=eUdNW!3Sp?5hmQ1v6@7?t%>_;jyuJt2Zgh!p7njpi3ngV3{
zu9tk~W}R7x5dJqP=9}!It=eWp-oQR(B?WDb6QPjwrIy1JExHZw=b`rm2C*LkO;P^B
zZI6HlEo~ha7caP8jD_{2wV<_*6M#tsT3$`@Ptm5<q0%0C*q3H$ePH{X_KC5GZnJ2C
z5+k8hTp_SQKScUhsdy|w<g_5gBNJV)Y3Ah)KS8Uo!4FMT;=HdTdFV#7^0bsx1RtbL
zh{ciLGZYmXs0I?Wf&(dxT$$aQqwtsjCjMVSHg8rk8c-Tj4=?{(Ow<r(H3G$qq{H*P
ztrhv8-<am(g9_j>tvIOBo!5QgVWl7;*Q~8!n3`1%p|%%1>Dkkxyn&6*vBS2z`VxJ(
z(nwdkqkb&s4N~^kH-zy=NfL<xGhddd;)W(FYBy$=&V8Xzhl_1YD=J8DrG_DW?2%J-
zuVu^lW4hD0K^yGi+94RMIsh+WFV@(1cC7O6`)a;giJu_&9M^qvOW@n7@rR^C^urPu
zrf_bz>G@<#3+gl7()GM}<}7=-`+lzEkm6$(81WT@<>K!*qp$n41vo@L*du=%LT3!v
z@omep3ei!hy+iu%OVE*wsdn)-PFRqV>j*pqtyVt}RID@TBYfW$!vVBTil;wy7k>%8
z6+U@_FOUgqq~6mE75Bs8xbFa5Gr|Fd{Q|}pZ2c_S?kzR{<uCy)p$AKnjbv<O(f0}?
z1qM87=`0byQK)ou94bo!j<F;us@l_YUA?{tZ)A<K4`C5k%BvkLNDFsNlSN&#X3ZB0
z*S65QIU~@|Qw5UW;sPb~)9%<v@1lLMPMO#cC_aYr5Uoz_C{uZXKX9(3_h}?FqTbGx
z*woBiO!Mf3yzKZ5b_5h)hQetd3we<)5ruSu<TzNyX)lAL?gP#>v?n^`D&{hGnjg5o
zDh(3&*wuw3D@8qm4UD9!0_+*5w}0Q+W9yBTX?n(#3wyRkhyn}dPF`-p?hvI$dqeVf
zILr`A*A;q*=jTqg;V~k6l1$TyUR^yDm8I(Rp>~B|bVjviJ{4c&59(%4j0^0WbnWG8
zX0B?od}n07RPoBKP`Fomg~Z+{;txgydtJuwVE9S*!(5V<@()dR>6t3Vax7kO@zOn!
zL>7P1udg2;K!Ee<^NkV6!olbkcxCp-Gk6x<J=^c&0{QHFyY;dFd7*u2Y13m9XU?sc
zk-9Fuz0{_Ut<=d@8@D&TihOu+aWJ|Jhq5?L>U?3nNfEgXldFIe)?GO1veFVkb&rwE
zlYjMnaYA^OYO{%!++k_+LGnT|=LGAfX56`cI?fb111=@^@-#vbnp<5mdbLKH0<m{Z
z7_v-Qm4&Ue({Gi#!)!AIQRL=NdC~qEtu7GR24n*KH)=%sS?wF-UZB>AY_#-P%r@wM
zO-Ae2Qw$Fp1D034fw}eo73Fkj%R>p4W}7P$&Ij|O!7r`ninkCqZ)#Bn{*HezJeFno
zK&MMWfS~Y@;gz~4-*l^2b-s!5te^Wy`*fOib$A;2?pU(`Z<lANL(hi_&GMKCd?SOD
znW!kxUR0a-uyW8ArBRYRck`ct^-LH{pYR7ag9d0Q$~%xu-y1(-tR&Qz0=o-zVd_DK
z!K2b}X<3>##!z~BU_waTXJ0^<A;hA8)|-O>*t(bVwaqjzNbWD%Z_m<{Q*CfmMTL!7
z>wPR8sr`Ei3&U8IeTaTs8pPe>H3zf>o(jb0-frCJ9LCMIZF=ewbVr2}*(klO+NSgk
zxjmxb;7;A>dR-OXYg7%|8bP#l@UXfR=(x1Y?iA*{Qkom4;*B{MmB{FV_FUv*a?djY
z0GKt^tu<eHeg-vaNnhIAd$?^6&HT{fIoB<5o5v9!7oruXkuq-JTw@f0-l}i7fF!TJ
z{UxMp0l5hIvMjbPT=@LUOr<BN?So@gTb!qu8%DLyL+5m|X!h@J_n)I-R21$!nI?n$
zZFwFK<H@2One9ATHk@%@5gDxE%e<w))*aE&8;W((t=co*JF@xQZSuF6N97z|Eft?I
z_MVHW^8N<d9#Abnx-`+k=aUy6hQG`U%8j7MpWUNFxg6n~iDj-ii}t5B8SO7dVaEK$
zEH!nPF)M5%LViJr>C(ZBnFyJ3uV!JU!uH8U!;ggTV?u;N@(O9`F-;JO5~rsCCLU#i
z(mlzyd;idE;~`t|6!p8LX;VvTMuSu~U;nZpcnP5kOo<{nt~2f<G<xAEI=fOnYq}<E
zB<Pe=b|#>RKtj2AHyGY!XTny3^KS<Zpc#t4xY?=#=7>}wIFV&_%5#!EOnno$;l3$A
zNHj^P4!A4)VT{W@oU}{EI}sN!MAz3ykaoqnp@+6|1^>M!*xjc(sr2)-%sS%}j$R1V
z#$0<4mZCQtpzGUCp_OCklboUawo1-uD*Mi^tw;Q3=mjri4`sfqcAw>b1p-w(dKM4u
z9<3#Xg)9Ws_-_@Bqlz|6q@rUJHOT!+%6UM9*$C*gvJ>Dns4(eNx;6s8W?I+F_|8K;
zo@QH-8#L*#_}K&yH>@^AHsXIju?k=Z648Jh=-p%dS$>o5^X~h76~pMh_TsMm_VNDw
z?s^eFM@=|o{A@GpC<amJ^!Po(V4~F&&Y7t%3VY#oc5?~opdni8=(Pl*QrJfO#KQwR
z%R}JT=i|;<uv73WwPYXgsSf#7^p~XrRX!!ATO>n#iU*$|!!3#l7Vp0Jtvdt3uxbyp
z5RoB?<$MTE4Yu*ScN3Lj<0@Lcdsjo|kxsPNs-da*Nj`14(x@$=yc-1MP>0qS4Ycr3
zMkm#Di@quohg5;k@sSYXZwqvM9*P3Dj$h*vE7#ncwF3Re<I_I^>cKi@yfV){{jlYI
zVYG*+Hc~o$NFnI^6-Sn`fHhn{=-M@%TZfmd8eBLLWWb_7pg2PQZfzz;hm7x2bDTQi
z{>VGoucxASwh`}67vihkDK#V1L=+DY7Gp0S&Krw~BU&)ae7R`sABHFMgg-pX$Y%|9
zEp4iTKj_$6M~$5V?q%UYKSSrfASBTtX9%H|6f%yrK-=5k?pH(U_1<G);&}3IfcAAl
zy9NrJl-abi^Wv0Pq$W-?nJ|sqlaPUySy=qHNK5Dk0ZhO6-RZOkPog{AoDlJ$mNEp8
z^8kdAN08B-nT?&#)u_nyh15S0TWglfs_=@Kk<H<Xb&DKe!(wYTq+qVVqYvod2Q83z
ziYGP)diHi9!&=jjm|wEo;}v+~QI;`2W5o@=;CyT`CE?+~{8P#eCU1Fa+Cz*lz&|=n
zGAqaXNw0y05!XSn93Vgy1AmI0auP%7T*T)g(C$@~=^*9oH6g-K{%g$#{f<)8?CtM8
zDYmI#Nk9S6dg#st@WJekmDilZf?4t?25ZJ^Gg{a7UiR5|cOb_i<5sFGTXVlF>jl}m
z8Z`fSIg)Uk<@Wm&!EQS-2Lz&SncrjrH_W`o+hg2Vb3#Z#-;$b%9;^b|^cQsqAMB`h
z7&n?xyFh~#Kf@t8ku3B04DqFP>7YdQGbLHbyegn2ozK1IjE~aBm=Q;#M?lZ&NW4^7
zSNVAj+t97#t>^Ek$O%NeTMtyE0KGzMgU5iOL7Pbd*BjD&p=|E^uDToJNRHi1UFd>I
zaWNh<EN<fF+p)TvJl}a2dUo?4bvG3=dZ{I&5w9wP`dy`|85{7G6G@_+8hTZ(B2QR$
z%K@;{I8ydWoZ_uEp#(LqbMfF%Kcqq<42I8#FUjVeb9t93%VC0hFS(J<I`))ww#nB^
z9c4KjQz(iZX!-RBEmWm_H=TtfdPdyGxcZ-p($Gb>l-(R6t<dbrgZ*(Dv`^>Hf5B^5
z@9l0jiZSa?L=1(X4%y8t6$`b{xzs~j2R>l2GJjXX7ji9S<s6njr*kS-VroaGKwYk5
z04tYVlAq^Pq|lJ)OUl*-_DG1$=Vprae>a>{ZlcYDBe3efBn@0Lh;Nj_oqQPNGBv0>
z@LcB%E%>P6-&IviR;}$u`Kx{yw(^f3XAqm{vt2Bm{0%-QoHT?Qs4Ik{ildhdP^S7&
zFaVFV3IaL%L9X^c!%xr>Kl4w0b$YM4w6}W3)$DhIRiI<IN9Em?9PfeWOA6z^m5j&b
zk8hOu;U4LH4moY_8{1r?V>}p=rwrIgOeUtdnEROG-Cj~1*r;W4SmJK%ix=+Qv6gMQ
zVu;x-TIr9S2j^V&dJeaOw>8fh+OmYr=l~{W+FtLJ;Vh(3b=%s4Ga0CgUfUNbhrBT1
zLtjV-`rtJ_aV=O)yyuUHQ>~Ahzyc#2#AY~O=p-J0jg`Gjo(F#yDCvc{h;DC?SXf12
z7w{ay&$bB1ZibRnLM831m`wHL{vix*Y3e}q(fMc!5k?%;pIvDxQ-LFrLJ@5zf!F%k
zTZiCUXMMxVN9xN52Rp~yNkErkA^WF`xv<X4!?@r5b>PoU(I=~m(`p_^f*<ega!@e`
zEySPyjm%_K7w@^&rmp*Ud!wMT4qFGT?7iQh-KH95ydH~}PQTTF+rZldzmxGI`q-To
zpD`O3RbF^*HcW`oZ6xrz>;eji*kE~2D!C{a+bg~QI>l<4Pu1fYbT8$%6T6cNsI#^<
zJ)KQvk@Vbg9A}`t$gn@T`>hm+6$G5~35>5f8y=U><Fw~jM-SJC*LVs%l_%NdU&mZl
z>lQm^@2Tg&b7lQz$72>SFG_VYsJrFeB>P2ex1RRWFTF;-<-YRVo&*8T2B*TR?V3Rs
z-!D^gPGnwP{f2$66tKZvTUN8YEq;SoyCfgebeD5gjWAoLckmo8Bb1(7{Q6YxAx?e}
zpKLs%?0-C7Tr5^yR%m-uMAtfpPmi<bJINPb<(_j>jG~7onZ>Rqnde--g^L%IF6jLh
zH+k|&`{T}lb@&I@M&U2upZJWT(j_=I1nObc$5pR);P&`GFJ;@GbIz?+`VJBMbEm3#
z=+4nq^^l>){&E+b^z-RJix&RcDki$$(@9$O!;&TAT1W#DCBiw3qOtNvo!njc607jt
zMJ>qRc6SXa6w!j|FtsW|nB&UK?(KjsO1%vU(Y5mewn|zv;21tkZ0uzXBYs>a)J_LR
zuw~{R@{>FykHRGY9Y2l0si*Kx%oo(X-S5q_M{)At^YpsELwGshI!*<nio&*$IU?)8
zQE7?!p@$3~efey$46RNNU0Eiy2!o7wBx(+IlTd5OoR5D^VR;Z0Yvsz2&p>>g)KgQ|
zq|5pyWPt@hsc=om0<NyATJE=d#QpvEuKWHG9_aMAMQ=GX2s*f`osF5cJ~Nx<ua;?^
zCTBdwdLwUkJuiFx^~$_x?h6;?cc`{Raphx?{9I9?%qN1k?~<*wwhQGb_wsr{U|HY%
zfp|t7)tR#n<-_lD4RCuC-k8}4$vOT_h>vQs=Q1m>sKhvS;gXXO-aW=#6FwD4*Nt99
z&AN%@a5T1lDcr4zUCzwioaRou<#Uf>r^}f;WdWNUvJBRksTY0viDB*?QMz2UImcUu
zWdD)OYmvjQEW(_Hd+L5Um5UKXU3+-wfPI^*udvUxhD%Y7)d$x&l3(rQ=Tv`@)$xfb
zU5*6?2<<#Tx`rV0N8ahEJ?-bQPp5d#0vs{hwJOFIqRwlaYBYk0-BW04*JtJr)`@G=
zE~ym{TS0@N4B}TI?Z|78-}ka2f<r{9$w9$<g}FomXBORl7D5vTqnS%T7QBg`Z7!7)
z$D9v)&8hdaC^&Z)cDw62j6P<VS?_4zS-u5QRc(Or%CB$13E+Ac8PlLL@K6k8Fq*Fi
z<)j_Sc<{N8Q_lDn_h<=Ii&+OLsq?Y<32Np%KRPV^DAE=;LNfJ)Jv8~1vO%QyyqPPv
z@OExLCIAEnc~&LyRS**VD*B|vtJbu|S6L~w%WL0QjFG8jF9mz7o_>5OKo-T569@DX
z&}-_2vXr6FO|XPNSEy^W{hRB*wnI&C;5|oph6$$ku^L{Dt#@JvZ%GnyNIZ1Md26#y
zVm~HMml<a_^_n<+bythXLfPz&vk}d@e7wIrl^n%;8oB%_Io8^{mINfzCr+aiqJ7kh
zs-nqCNM+p1{eh*t4$%{Z``L9Q<N|!b-z2CX5uRRO4tqzqOmd`<FT@x%5xRLkt2{-6
zR8u{i*H14jrCtD~ojk{2mOg%K-cY_}HRz6WFc8!f?I%7IM<4eiN|wiFIe?=8|7HIX
z=b<Zjj%5;@KMl%K!V$hoNwA)lWr);`lFJNoJ?>P0BTR`6d8OM_r9dR)0k}Go3E$Z5
z%1YCUFkF66u+dgb(BN&Xlj1{WLK)VK)mj&2PIL^lTP3h#d0+IM!#0*(t!0?$^hQ1|
zoSHyi9bzVL>0MFT!nq@4(ZzsFok4BOSqv&e--sG3(4cPh)4AVxl1+>FWyWz={FbTu
zUj(45$8KH>7x^X6qx&512RL&!jz$?FkG6?Z3ucDDvwEXdGj74cQy`Nt`ZGeBPlHbi
zqaK{^k_wq^#OUqU=|T!T@5og&EaS1sT)WEEMflcKKnU|%pT$XT^t(I``VsgczsJi)
zwcYHR!95f1h}C}AEs~SO-0ZQ9ad0g^9P{Q%6GQPMf9b%lCT1gpbpQn$k86mIWsB-8
ziBJ{s>8Hu0L|=hsgq-HXt;d#HPx+^IS5?zR1yI0z-~bV2qZb6VyzUs4@q%ltPH2o{
z{SR)1n#-+|7fMIOMiry#C}~L)oY-E@O81Bb{s9~+EIcal`O$f<(~|GOTx|PEvufW_
z8;64Dwd0)0`-EY}6(Hl&pO{$|?R4#D7JsX_(u4k8O6>Mq%k_Z2!S~eB>hY{rm3K!U
zCbhi}BU7f3VW~7VHeO7>NE-}5-4)IPQDtfP`1g$*3oSmwUxUt7#;aGx9Ht%UtSA0y
z-%3(2jw+CrOjgqg-%Z=9cYdW-Q$j;eTXy&0qeMV(pGH7XQ^NXh$VzFboQxxi^&htS
ze;I3|7CPDoL?j~Q|3_gB{->4zffV7ttu+JzAvKSYiSs{*R!!;ui~ikeKxp8mb&ZOE
okVuSxK=QvtX_Tq|FtU^X=cbwx%D*EB2uS~W^S||k;XmDf0jAmt!vFvP

delta 7726
zcmY*eRZyG@vs~OQ5L|*29D-|bcTHe%TL|v@;RJVgcXtTx!QI*58k`_O?m6|>wdsec
zsh;V1nWyPCg)IdPRRuVBJP`6f$afV=%qJ5<Gk~U9N(~oTHbkU09+4p<q5XFQmA7;}
z1`qK0A5QW=yyb7<-|8E(32$sWTlod<tR355F;;Terv9*^MNK|N!dTFqZ(x?hMcA=e
z%T;2r@6zt%?34c@-yz@6+2cHwsIE<r-^8#GV#hI!t7!N)I2$=Na$g^Fk)Ln7BYuC(
zoZaF%R!XFaYUSk_Oq`8+a_P4KCRC(vTe(cA1=GgduZ9aJt1qf2>6Z?cLI=dz+J@ce
zzu|jv85i~p1-zARsbU%<`N7%)7HVgRA~8+eYlCkM_@7c#!|1*b(O)5x&vB(A;_!%W
z@oOsaw-I6D-|z;c(t(m_oUEM4CE?c+UlO}=j+_dmQ6Q4WG@lFEV+d9NE}ZY?Slf<H
zWSpc_%2dm_6C*M%;5Y6Y`Z2sM`+Y;cv#b(>>rZ#;Tlc<$J0GII{h>mgbExA{H}z%c
zuT1X_CRmRrkw5dY4+<{ga1PyLR{B1jHb9yHPgCTmXvNi-um{V4L%+AY?DXN(gSaTi
zR7~fzcEU@JdIU3Xy_Q-W@G~B~+YMGj%1<!+Ia;eD=7JNpV38tzr{l!!`un4!=}z5f
zS1{#tq0w+=&lcsEur1OXlDpGMpT!FQ$zw3xsraBb);DB0tS6ao{rq$v0-fcm(qyZ(
z6`3Ok(H{}`Q7tRuLPy9OuUcOnrc{Euy`YAAe~skB-@y=Dt`0_r0`Lz~(F#7FGwqX>
z`-0CN7CM#n1w&meaH#F|1yOf?2~m#JjqB%nw%u|l%+;BjAXorsrp(>_$<aX!Y%LHx
z8cs1)lk@Q@F6HTKQ)U6V*x|7cn8F0Fxk1SDuEw$VynLTnI1h!mb_CF-T4_YsAbWG4
zV&4}Zmahpr^?A!b0GO3ZPV~LIKb~bGe$pXfj^u_iJ4)|RM0zp9IvT>MHu>cm^Bhe>
zZ*Q7T)yDQ^%15@cUocuOwISQrEHnjr+-W<Pk0sX*f({<L_Q&qAytzL2gC?=LKK8<o
zPqVE{?uNO5sqf#-<;*{c_T7yX!ml+TCM@~>QIEG?qT5DpfQ0OmVD!e`Q*Z3%7*{y2
zTO9L>3R$NkMcOcYkY9N9wJd|t2xX(AT<dkiC$=k2jwM5qKfJ`3XISfAdRz@p0}JkN
zIh^(Oh@m$O_HiA>{86y<&5Nkz<utc}7*0{n8HZWh%bDM`ft6CV+&6J}w-H!D6p8h0
z_eprB9jd%Eg-LnzmBT3dk`<Q-Qu7UU<D4%o3>V_~S2y8as~u*CFxSx*wy567w9|IK
z{?>U0TDjlXRn6?XTh&*uQLiQnyPZGT75pI_MaL!*Ohkq!1N76a&cR{)mU(urH9kq#
zq*7QaC!&A5aS>|_w{%{jpSOcLMPrR#$x=x|oVzzV3REvyjq&t5@*;-$^AkB-g=5Tn
z1u#W#$^e{kU-+cf)jS~7JN~WKqoAyLH8*6enNQtArpXuaMTK{0Dcy$wtr)>f{fvb<
zF{z6N#MMFzxZ3Zh$V`n6s+W8)JNYzm+?C;(ZFgIu#%dmkdzkVyfkp5n;!x-4z-+c~
zQYJP8VjY6h>9VSoU(a@z^kYf2knDC@I(o$9YGZ7btLwfw%VLrx7>l-=-K-n8=jKLp
z*M6%pmfbRINq-pYBss`JfM?X*=rpuYkAtb1?I?Hvn5|drJ9&)DrKqC(klH5IrKa4K
z*DOC7ue<lKh7_rB<Xd_|T1?I=ne|Ec(%xyGZod5y`1s(j*~GJuQ+`_M%Dn4DpA+}3
ztU{)UgqQK<Rsz9kcEnM`4?MHYWN*V;_w=agr`nm1(X_xhMVjzfvtR{%ukKLiny?)&
z&1semu<GYV?wjfwBOy9k>#=n2A4V2$5`Rg&#vijqht)?8%x&v-Q0x8k2z{gcjDa5#
zKTalqQ;6aSV$;(N^n17PB_OCb%vZ8@`J_&gMxR~%*mbO*>9>ZG;lZvomGE>qLF1FO
zLxj{a@|r11fLu1{;EL-q%hK!=I^6B!^$iIJ@Rsi0N{apQq3wa`dx_=Vx)M^(esbmf
z=CUbZ8uTo&*4-(Kn%5UD2xtC%O8h!&Mvh&TeQCJc+DjJq17)k_*!-c{hBuiatek1m
zD9&YWoPaDc=s=KbhqZ};{2p65Ys#W`xQ9c$aO^nBkMvg^TUx9*@uvH!&E8ptgCf>1
zU>Xj|8;18otR9|rU>0c8=k*%?&q|yuD|y0;f^M^^Cw#A-g^F)d^yv+X*#h-+?)x%1
zkXC;=1N0JFZ;IXbF_O>xwy*U0*>P0QZAivfI=FTRyr-=H0T$qchm9V2Z5#Q>*V(i(
z5_cewpNlah=^%nF&tQ-A7lDw=W}y5LhydH;&LSGw#d-&O%P%zYi<?rUhxYhLZ`|C#
zunRI8!}-?@A07?+#eKK5M&~<TsFj#?w`Bl{)hZi3^z`DI7}q(*XxIArNlzW^;r)3-
zfK@krzd}Wl+7oH~@$;2nh+UA5C{vXx0lb>KaGAq7c8kL{+Y`sV4o)X;)UbmQfbm}A
zVsdDVefmhkDQku%I?VZiD4}1V7Nx1;Tc%;+?kVAsD`=f3bA!Q+jK3H>ZSHqf93A`a
z@zorg{xS6^tE78Ux%5)Jg+FfEdVQOcYW)SilLLzAZu$DsXS`pHCRB@KqA&7-&GE3@
z+MXvMwCc6G@DL|u*Q*jgAmg0@gmS>yB23Bq1#*rkS$2d%kPo$@V2#+K8#GE`!t`T(
zabeH}zi}GJt5OdYkE87g;%6(C$1pZ%40FubXar$evIciJ%Ym_Q=6WTGJ8_)<TrWYY
zMX3C&Rg^GMSj0BqF|s{7=gMd2xnEQx*^!KyBt!UhE-e<^JIcNFMa8iImE*l93=E05
zK(u)A&wTMe*J=ogrj(Hj^cmTo!m~RkoY!RRNVDN!sWBZu4q44@RQY7d?sa`FX_LM`
z)oZK>=r4%%FnK>rh*kHON-0M)3-&6Z^i17qkYze7Tz7>Aaqnh2QKJ6sJp4hSK7Fbv
z9CPxLztOk7Id41Sc*%DR47-F?(tITd2!BGoCxXR^`H~>})rxMTFi~!hP9MKJp@f29
z%ORAap6~92pvRBM+l`pM?^`Ub!xT3LYS`dM#*ci&Z#oid<fOEv;`?jk?DMiD81fq;
ziG*En$<%?(wp3wOIUgfL;b)`hR##}G3st0Gs(Oz|qhC~VE1r%gfoNs2afhtTVrSCB
zVF)4~$;L*USArIWHo4Z=(=W7-El<qdad5QxCOi2d<Y+NPB67a$;sKJqMIs8=VY7V1
zfBUWJ1hd#$!`V+~g|a#8R?pCype8jCvp7sll=lVp<Opy)l=*pIReW%KgM3J{oEe;&
z(y-_OdY)c>Q~0h}pbnuv@$_cNbgBw}rMQ4r_lFKweQ6E}J*vs%@R&)CW|;=VMx)P+
zt7cYs8srBHRsKOHu9oXbT-P^ei#leivks50N-X5jG9gv1j@pTj@UR)a@VL=J)Bw?a
zQCEvFVQjXF-oOa&?p4|2a<ij~S2R3La9mJ`9%erH#ipGSNUJR%d+yisser}RuCk)@
zBS_QI!&lUr&A%)o4-2H!KM9F#LAuD#yrW#kS(2%L@51NXmtcrzgYhKQa$39iICb5f
zg=>7&$MF*k<2VJynXmgr=iis`d5b5dGx{fH2>Q<eXH+t#-#3_u&-4YOdZkWx`C&dh
zsv8_MdIPBPfKBt~ykwI=Dm<SR1kA%&Dr6VWG>Or+Qe?>v>51(m&q~Rxz(g~cvV?ms
z)%Hkfth)rSj|S6i+xv+cx9ug{A4UoWPEIi21DM9RG?2aAl2`OEX_Q@wvQG=aBO0FP
zW~t3tg2_qxwcK!8=_b1Rzl_bBLj^jPyRiqyo-Gi10KIHe<%b=o@vA@t#ypJ<#`qXJ
zA5@c<cL&^M$~LyLSvI|+%}BY!T|p13O{77erFJ%Z|DvFQMs9xLh48xYC(CT+p(?t6
zs!KAh>hrz(MO4}3a~Y+T2YBYxpKp~0=5<VqFhuwMkcml##w*A>k8V(#yc+z_Ol~~y
zgWQ?(1J&J%&;-X{`YD`7d+&B$^YBwu4|2ZBsd{iI67OO<f5FKPEWpgFrkqaK)dROh
z>tCvmuBJ#!!O1%y>EHXaX3yJ^Gg+WEM=G!%LYb-pOMdVF99X0=!f{=y>-@x4<e~$)
zuTkNaV`!$<hIoCQpg5+g)odxS!{lG+=#}!O1-`$N=<Rr<yABpAQrqDjwVl3WyM~F=
zI0#7#9iS%9?v3HSL|y^B8vqv%7l$8!*Y&j(aJc7U|7Hf<@BP};tHa%TX>#xAarXyU
zSn(sVP!Db5RfUgVd=^KkDw64T8i=9K`Q2~p#LGUEaPsSo$;%O4dsD&(VkJ*M%6-;>
zMR{a|JFQNCT^f-(9TKD-?DL!FoNK%dy?_o_4!$s*M6d@yeUK`6c~ife&FKwlYPk@?
zC{JL1#7^vyRqWPIbCHi>yh!&#nPqlFjj4e`7<y84MBVpZBmUg>k2#0xEEvW5KrLdK
zDXGyIrg5rzQVjcOTjxyO+q-_hmN*0V8EK5^Hh1&{B@XAx#F~SHN<!3Kglu!3g2X#_
z4-DN|R_h&FsWml_v>Z=6q4xq-Ey`;L{7h#U(X3g&B5+^KeriIn0-0nu-(frElj1HT
z#gDQz1v$S{@Y8yH_Z&kkXd|v3D#^G`7!bo|I*wWJ-BVM4+=2blZZv4XJZ~J}8k$Os
zcjHX_9y(8<f!}A6^C5+wQrDq26J&Lr%<b{B&f)Xkn)P1dhkWvF^3pWP2@BoD!ZDkr
zo0VXcC8?+I)74>2OD+r13bbdHT<dTL=fb;Yh>&eZW~hOpm~10$xF+YT;V*81u*eBB
zzKfpLDbKS+;PS|?p}D=`kpv7Jb4`M?k)DdJ&9I2+J@hH$46F@3l@Zcw5_<BIA^du=
zB{pB+27hzWP3OcrPGb!&jWF`=l8+s(eIN~N$18TpY~IjqkHY-c*wTOyS1{TI@7ahZ
zj&z_v07i4o>nd_QZm`!{QFmNE^4f{fx|nz0mGHcdu-Ub9M-b*4uwVsxY-}$X4;NA;
zJUQ8%X|bn_2`k}QcoEwnvOSk5X)t`fIH4NbkV~{0{xNPEycMO*Rcn>7cT?U{-29a@
zGjqZ%L3J8PA<OxzPooApd@^Im(U*_N3mo50*kjEdGS{qY4O7}T^@G7YJ0GiRZX&>J
zWBi_eFv*hsv;?43q<g>^WW-|~pFjH7luq7_KOnmxo9d?q3|{Q)DE+62>q1MhjJ?kv
z_ORg0-{p(ibJgMmreL>*5584@0j)V;+veTDt@J9)z`Q#}by@kv_^RO$Ivcg5|L97F
z<`#%xYE>Y`$i-IQ2_t;*eZHI}+234O{l4O(e&9NS!shpiARiq-GMNndislU#jTN>U
z(G%@1oq7S4gD3Kgl)MSMp@=kmh3HJC%+}PW>Xdq7mP}vl=GO?rzKu&(or4xC^hrRR
zT5pi5zaRleie^}>fh--2S{##!2WjgT`7`p06>x~4^P~Fc<Kt%EncUfnNNCr1HQ`FY
z&5N#Ui$o@dhfy|A%t6Rt6ibtKPU4^JW;@wRy8}~lI2eJ)icdI)|D%b{z#$Y^a|5}_
zf9nfv<`_jVDCx!p>rM2y6!yx%G}QA@(U+yFqdQKSWGpYwkLnrH2W31a<i;4(V$`D)
zQ?H_5gp9=y#@%cwqZ&O+4ljVPq*G^Lzt+kLMi}$C8g&BtZ@6`mN!h1WwXtyp)62`y
zZoyS3;=>zGkx+ra<ut5f=fUi9Jhr>+9G|d8qm)zbP4nlVb7wXg;-Kff$OMUcS1~uz
zmENB-T4K<swfPOnJ8xxx*=+@1{f&n27{xPeT+VEQQ5KinU#!cblHo>_L3i$t=0}>W
zr)C~c>J=c1)G9umMg3E$i}T3h$X?tNi;TjM`SL$Ujf!CPo>pVwLNIDFy5>_}EV4Ic
z!h7_NeEEyOF&EpCoP8ZE9mrG!ovADK!cDHWJbt};gLFu3Q-PNBBsPob0=$<~h#FK7
zO(es3$lGnVLVqNRav?@tz<&v<BPz1g)nBHSj|Z?JN-9x2wrj`~_aLLpr)ldwLsW-Q
zC(+{{!8J`Y7ut1eXdrd7UXwv1ye7%|6afMqaLjAn^<s>3{`9WW22@kaq((D901<U%
zD(1O!2$N}7a}T~45sU<ZkHAbRB$^Fm<c;v4-JeZ*a>0AR%nT42X)Xql*wOSMeBz^Z
z0vMQCxE=KKjb8CQvCuW=IZX4;@M#%sZkcw8nYWml^hg;>v8cT}ct}<cxzJ5nC^lIx
zKrJlkuR|0XH5`zVdVj$_NWkn$&vr5XnaQw}Sh}W#YGI1uAECS}+yGxP4#mA~H%SZ1
z0JYR0@55mUwQK;Vy}Hy$hs1;~@Ia>=kR{mNzK@^^7(=ZH{o3rGti_jWXd3Ggql+#h
zdsI<Tg(z5^eY_rx&0aho6x`gt*zm`DgF-k~sNMaqvh%9Oy@xC15mU?)>sgXh^J>UA
z`{5;+q3NY%=M1BtAGLlrS9nyBfUt2w+!fQokZy-L$ZwWhDW!Q)(k%nYQI4+~xH=2n
zKD1RkKTsRxh9841w%H$+i2Iu$c7BKZKA?D_l|&N8E}WJcS$l94HFJokjLCYGcR+ii
z3?9s}lkeO+u$dLmOO9WbzO;27f3<ppktG~z8B>xbT<hn%9v}X=|9<f@m0<-Am8Y;#
z*uq<rR9#7k&4jAjNmE~A<@*c|pyLFtSgL${*L3Sh;k!Pxi-RZ5Xg-IYZ(-}@`ORrH
z<~~ev@yFEPpiG8sN8qwt6Ng6<LlRqI<ACd>IDUNjQ@4)CJ|h#9{)flvxi=Nj0k`rw
zl1RhOop4`?{@l-`NXh-2bylf74Rx{Kd{c9BsElHhGWNF?aY6YHey4pG074>jyMtPY
z&OLV(=?S;eTGISu^}>E(rH2joT3OD4s7K$TxYoDeoJH*^nL;B7ksL*d_ScmXv31#H
zcKLT|qQh|+I=~?TzR6-khVD?^mE|B-4I&1CLDvVRelGrlq7z$p8ktmi@{Vb<MLkpQ
z-1&-WA;T>T$T&}Vqh1To`^n!a_=aDo=9cZ2{jW5p^%lOW@dqWo;4uQ7lybb8M|KX@
zts&=#vC2F%U|Twk^~0%4jwa7@)Ld=7Lrk}}_-JP&55g55cd=+pp6Gh1MyD{ltG<hN
z|A`$#blO#V2{P|(l~8=r>&1&uxAwwHA017@pM_3f4<uKY4rs<iXX}DvyUsqoK=PNi
z-`A+)Ne~EA>5TeeQ8nNrZnFxX=!Al3{tkVd+6TuR2cI=;<||_U)C0KgEWoinNNSuk
zNu~5!UvHdfLCG!r8eu$z#VS+9)H9H-R;ttq-cXe&kS8!Bg~W=HZq2|T4<oXL6P9Hk
zj!`S>>rVv26qK1ko$4y)-s)sH-8yuCM|GE0Gpj@wAc*Vj&n@sO;M$G2a+1=_?fXV)
z+mkXpeEifp6kiQ_q)Rbgw1H;18BV)1DK{F@b#)62;B(j{Bt!Cygo?&Ri^c(><7*3E
z2$Mpjp`*YLHM)Nm=XtJm8dv;`nA;F6Y0WHcc2}{yNE_ZFC2G)J^BQrv`y*5^l^&M;
z2{Tnu#*h)C3vlK%x^KEknJ8+}pY`q%KUjq-l*Y0p@pS8UJP<USFe$vfMnRyF7jt%y
zEyIO=w$zrF)%j)uL+AP1vzA3Wug$oh?HT^#Cj;{C18lJAC2F;NzFxFHOFT20%BLVn
z_?uN})gLgt%#Wud7cjXLoq3e)4fqXHv&J4poiEN00IIu|`8dI1iduo+ZO3ajSg961
z3KUK3vP=d%Xd0Q)Ka8F(#UTTe$Nj~!#9*&F9+tKR!%W1Dq}TP7Ki-wc-Nh(erT07~
zcS~f~Ome$j(YKp5kj~2Z7hoZlaxB^70eQ~%4O#sq<;&5oOh&ZU+077uP|hrKpr&^-
z@Fk%c*fIr_HQ2^(uR?2~Nz^l^858>d`7^KCHfP%26md!1p4^uz!?y-cEdSbFQJYT<
z{P|$j9rrb}c>y=zmz8XVj#<yF1tZK3g;@5adJYZEA25+YaIS%?vu%aZsXjkZK5R~n
zm3Y|%%C{D~FE@fam4VBRXc1nmXQWC=O~AL1QGBqg#R~r44IHgxU<_Sq@hK+GS?o-z
z$4A>!-Dl?6w*&PR@$jIcY5tKYerSyeTpgQBiv%`K=uj4OOsxDk@sJYkSEKTq<)R^u
z%eySi?X)IJ856yknW-jrN#C!0GO+UER`r9@ix8e{XJoBE2{`1zoFf<7I~3HY0fZ`T
zlXAS79h=(R%z}LzZkNUb0$gO>#P6}2FTeU7-xkkB%vxOD&G1x8HO&&!UZBB`8r>~R
z-}&B}<S!a<kX0;bi54)N=F2YT8%Rk+<GhbI*Br=`Av?_ON%WWYNTG{<j~3f_+0nkF
zRcXAK++u}SiV;*{I~a694mobq1DaCh)Ape}WN4kvg?0GiH{rKb1%3tJ*{bR_f@%+M
zmD$q@MrYK2N<~5U35vjd4&t%Kq7;cR@^U@bm(#d|XLxdtRS`P#NvLIAW($zcqGaNT
z;?d6oGl?9uBox(^l}zaOSzjP~98gTs614sk^>Nv)P9Ao(S7~kc2(yhyU=SDLOp>Zc
zV)B=3_WPmMOTWYg)-x|_#9p-$*i^_4%C7o>FSct2N%ij1<jE@)I%}Ue^0ezW9LU9g
z8PE;~?HhWO7UUbjON{sP=g!N*TfQ{y@-*e28XHetZ(MaFeY3n##G14_?J=Q{V8kT6
zF}vQ<Ijl(?Wp8w%MdFkLMoZ@@4i`j}Kacb+^HQ<*%=MWLVfMoPXpcE;inQo`5Nw(3
zFPgYMlCw=?MGVywOzZ61Z^nRiqy0;X*~e}**CoY%-2>+q#+A+!ihJ8l40f`Y@C{-`
zs1p~!fgu%Wl7yobGzf}dG*d3bXUcGpE2azX>LKpBc%$vTao7t2_P_T&Wdw~$DzS(>
z6fP5gPhsFuwU2hI639Crf2~_YOzC0JBCv^sCbBwStvGPFuPV+*9Ctrl6N1;w!~c3G
zFPS^sF#Jdzi;{5?!N?UwcrSWMKMh4hS@-Lpe4`2@FXXVm$Z15r`OHpWnUn53JjLOS
z1b0<-Xx=X1^b<q}_=x<0d3bwS1`?^e*+UTbKGJG{UcP0m-sAG7msoCeK)2I_pWjmC
z1y(_V!L}1t=xA;Evg5v>w`(ihM4uQ!8A3~(Sc|E)dwmhg=h=CTryu@{C@O(Dvo>i8
z7y`F}F&0<S%wam;M+p2J_B$QXQOVHz-l%p|NMRZ|Ihx}ETzJUAuq34*jd5~OBO|R0
zQHHK&euiHn%$}zdqcu5~3{M~Fg|1MbXd%0kaT~50x-pin;fC>80@|89nkLKjRVO&X
zNKHmkJIS8#UHaNbR2D_ge!|+3-mv{rqNt-`B5^*do6?0aVG*{!4sI+b;=kArebmAW
zu}Q_D3e4{T4z(dNqoVZ6*I^pov=u4E8h>;BT&ygGzKBD3&8kVbkB69%q^b58;nqbb
zz&nFoA*cnW$_U*vtlkys<<O}Uxoz@P7Wg&)@CWQ@)Js-x4P376cm7OX!{5AUr8~2F
z?w3g<+Od@G<x?%#5h|Oj!GrPH)GCs-(&E}hd0Fy+s#iTFEuyyc_8hFep@$Fuk{r>!
ze^{0o>aU&`foEhunJ7nL6*?Wg`;ei$*H0S&p||}7zIjx??O(!=;<&ZpwTi>yaGT_C
zgIRXr3-J=PuVk9xMpR+()Gi>D(ro1uWb8CiQTs&HG(QV@bzE|<+@h#d!#|}w%#~-c
zth5F;)A*O8MRT2*j6=tdMx9a)T2|XhhQ{(|j{ZnWzGrM#sj8M)+EvHUH?SUVvMmAY
zc-A!Ni6#Y;_vXN>30DfjAo?#79|^lQi!m1m`;V%)q}O!8onI={*ckkt0ONPjnH*Fl
z>cylk4BgA&;h~rhSt|3to*cZvs45^K_sa6<spye`K({j>kg5U<EFRqd__SYfzdCB(
zA%Z}$_#hAgh!FJO(GmaxB|6fwaQtiH{@<a0yxXt6vi~cH^Z$mvB7x$`sL2pOF#npn
VstO4INP|GI|Dfrgj7R%#^<S58>CXTF

diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 613c78683d9..8ac70b60cc8 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -299,10 +299,10 @@
                 "kind": "Customizable",
                 "properties": {
                   "connectorUiConfig": {
-                    "title": "SAP ETD",
+                    "title": "SAP Enterprise Threat Detection, cloud edition",
                     "logo": "SapLogo.svg",
                     "id": "SAPETDAlerts",
-                    "publisher": "Microsoft",
+                    "publisher": "SAP",
                     "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
                     "graphQueriesTableName": "SAPETDAlerts_CL",
                     "graphQueries": [
@@ -651,10 +651,10 @@
         "kind": "Customizable",
         "properties": {
           "connectorUiConfig": {
-            "title": "SAP ETD",
+            "title": "SAP Enterprise Threat Detection, cloud edition",
             "logo": "SapLogo.svg",
             "id": "SAPETDAlerts",
-            "publisher": "Microsoft",
+            "publisher": "SAP",
             "descriptionMarkdown": "The SAP ETD data connector enables ingestion of security alerts from ETD into Microsoft Sentinel, supporting cross-correlation, alerting, and threat hunting.",
             "graphQueriesTableName": "SAPETDAlerts_CL",
             "graphQueries": [
@@ -993,7 +993,7 @@
           "kind": "Solution",
           "contentSchemaVersion": "3.0.0",
           "displayName": "SAP ETD",
-          "publisherDisplayName": "SAP",
+          "publisherDisplayName": "SAP SE",
           "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/SAP%20ETD/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Microsoft Sentinel Solution for SAP ETD integrates SAP Enterprise Threat Detection alerts into Microsoft Sentinel, allowing SOC teams to ingest, monitor, and hunt across SAP data. This integration enhances security by enabling faster detection, investigation, and mitigation of risks within SAP environments.</p>\n<p><strong>Data Connectors:</strong> 1, <strong>Analytic Rules:</strong> 1</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
           "contentKind": "Solution",
           "contentProductId": "[variables('_solutioncontentProductId')]",

From 086774380e389387c576c7d5b1ac94aab98fae11 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 13 Feb 2025 10:16:30 +0100
Subject: [PATCH 15/17] table name fix

---
 .../Analytic Rules/SAP ETD - Login from unexpected network.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
index e75d84b9893..5ec6851325e 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
@@ -27,7 +27,7 @@ query: |
   let regex_instance_name = @"instance_name:(\w+)";
   let regex_instance_host = @"instance_host:([\w-]+)";
   let SAPNetworks = _GetWatchlist('SAP - Networks');
-  ETDAlerts_CL
+  SAPETDAlerts_CL
   | mv-expand TriggeringEvents
   | extend sapOriginalEvent = tostring(TriggeringEvents.OriginalEvent)
   | extend Id_ = TriggeringEvents.Id

From b7e4f164d412e4302c34c7905fe7d3f0d22250cf Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 13 Feb 2025 11:55:49 +0100
Subject: [PATCH 16/17] id fix

---
 ...P ETD - Login from unexpected network.yaml |  2 +-
 .../SAP ETD Cloud/Package/mainTemplate.json   | 83 ++++++++++++++++---
 2 files changed, 74 insertions(+), 11 deletions(-)

diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
index 5ec6851325e..27b4e574ca5 100644
--- a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
+++ b/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml	
@@ -1,4 +1,4 @@
-id: 7a830484-e349-4527-85f6-7850c468c238
+id: 5dd72ebe-03ac-43ac-851b-68cfe5106e4f
 kind: Scheduled
 name: SAP ETD - Login from unexpected network
 description: |
diff --git a/Solutions/SAP ETD Cloud/Package/mainTemplate.json b/Solutions/SAP ETD Cloud/Package/mainTemplate.json
index 8ac70b60cc8..97567db105a 100644
--- a/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
+++ b/Solutions/SAP ETD Cloud/Package/mainTemplate.json	
@@ -55,6 +55,13 @@
         "analyticRuleTemplateSpecName1": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('7a830484-e349-4527-85f6-7850c468c238')))]",
         "_analyticRulecontentProductId1": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','7a830484-e349-4527-85f6-7850c468c238','-', '3.0.0')))]"
       },
+      "analyticRuleObject2": {
+        "analyticRuleVersion2": "3.0.0",
+        "_analyticRulecontentId2": "5dd72ebe-03ac-43ac-851b-68cfe5106e4f",
+        "analyticRuleId2": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', '5dd72ebe-03ac-43ac-851b-68cfe5106e4f')]",
+        "analyticRuleTemplateSpecName2": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('5dd72ebe-03ac-43ac-851b-68cfe5106e4f')))]",
+        "_analyticRulecontentProductId2": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','5dd72ebe-03ac-43ac-851b-68cfe5106e4f','-', '3.0.0')))]"
+      },
       "workspaceResourceId": "[resourceId('microsoft.OperationalInsights/Workspaces', parameters('workspace'))]",
       "dataConnectorCCPVersion": "1.0.0",
       "_dataConnectorContentIdConnectorDefinition1": "SAPETDAlerts",
@@ -160,9 +167,65 @@
                   }
                 }
               },
+              {
+                "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+                "apiVersion": "2022-01-01-preview",
+                "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('AnalyticsRule-', last(split(variables('analyticRuleObject1').analyticRuleId1,'/'))))]",
+                "properties": {
+                  "description": "SAP ETD Analytics Rule 1",
+                  "parentId": "[variables('analyticRuleObject1').analyticRuleId1]",
+                  "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                  "kind": "AnalyticsRule",
+                  "version": "[variables('analyticRuleObject1').analyticRuleVersion1]",
+                  "source": {
+                    "kind": "Solution",
+                    "name": "SAP ETD",
+                    "sourceId": "[variables('_solutionId')]"
+                  },
+                  "author": {
+                    "name": "SAP"
+                  },
+                  "support": {
+                    "name": "SAP",
+                    "tier": "Partner",
+                    "link": "https://help.sap.com/docs/SAP_ENTERPRISE_THREAT_DETECTION_CLOUD_EDITION"
+                  }
+                }
+              }
+            ]
+          },
+          "packageKind": "Solution",
+          "packageVersion": "[variables('_solutionVersion')]",
+          "packageName": "[variables('_solutionName')]",
+          "packageId": "[variables('_solutionId')]",
+          "contentSchemaVersion": "3.0.0",
+          "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+          "contentKind": "AnalyticsRule",
+          "displayName": "SAP ETD - Synch alerts",
+          "contentProductId": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
+          "id": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
+          "version": "[variables('analyticRuleObject1').analyticRuleVersion1]"
+        }
+      },
+      {
+        "type": "Microsoft.OperationalInsights/workspaces/providers/contentTemplates",
+        "apiVersion": "2023-04-01-preview",
+        "name": "[variables('analyticRuleObject2').analyticRuleTemplateSpecName2]",
+        "location": "[parameters('workspace-location')]",
+        "dependsOn": [
+          "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
+        ],
+        "properties": {
+          "description": "SAP ETD - Login from unexpected network Analytics Rule with template version 3.0.0",
+          "mainTemplate": {
+            "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+            "contentVersion": "[variables('analyticRuleObject2').analyticRuleVersion2]",
+            "parameters": {},
+            "variables": {},
+            "resources": [
               {
                 "type": "Microsoft.SecurityInsights/AlertRuleTemplates",
-                "name": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                "name": "[variables('analyticRuleObject2')._analyticRulecontentId2]",
                 "apiVersion": "2023-02-01-preview",
                 "kind": "Scheduled",
                 "location": "[parameters('workspace-location')]",
@@ -238,11 +301,11 @@
                 "apiVersion": "2022-01-01-preview",
                 "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('AnalyticsRule-', last(split(variables('analyticRuleObject1').analyticRuleId1,'/'))))]",
                 "properties": {
-                  "description": "SAP ETD Analytics Rule 1",
-                  "parentId": "[variables('analyticRuleObject1').analyticRuleId1]",
-                  "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+                  "description": "SAP ETD Analytics Rule 2",
+                  "parentId": "[variables('analyticRuleObject2').analyticRuleId2]",
+                  "contentId": "[variables('analyticRuleObject2')._analyticRulecontentId2]",
                   "kind": "AnalyticsRule",
-                  "version": "[variables('analyticRuleObject1').analyticRuleVersion1]",
+                  "version": "[variables('analyticRuleObject2').analyticRuleVersion2]",
                   "source": {
                     "kind": "Solution",
                     "name": "SAP ETD",
@@ -265,12 +328,12 @@
           "packageName": "[variables('_solutionName')]",
           "packageId": "[variables('_solutionId')]",
           "contentSchemaVersion": "3.0.0",
-          "contentId": "[variables('analyticRuleObject1')._analyticRulecontentId1]",
+          "contentId": "[variables('analyticRuleObject2')._analyticRulecontentId2]",
           "contentKind": "AnalyticsRule",
-          "displayName": "SAP ETD - Synch alerts",
-          "contentProductId": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
-          "id": "[variables('analyticRuleObject1')._analyticRulecontentProductId1]",
-          "version": "[variables('analyticRuleObject1').analyticRuleVersion1]"
+          "displayName": "SAP ETD - Login from unexpected network",
+          "contentProductId": "[variables('analyticRuleObject2')._analyticRulecontentProductId2]",
+          "id": "[variables('analyticRuleObject2')._analyticRulecontentProductId2]",
+          "version": "[variables('analyticRuleObject2').analyticRuleVersion2]"
         }
       },
       {

From 17dea93f52b30f58f2583d15348bcb1bacdb6fd6 Mon Sep 17 00:00:00 2001
From: MartinPankraz <mapankra@microsoft.com>
Date: Thu, 13 Feb 2025 14:30:34 +0100
Subject: [PATCH 17/17] validation exclusion for dynamic params

---
 .../tests/KqlvalidationsTests/SkipValidationsTemplates.json  | 5 +++++
 ...d network.yaml => SAPETD-LoginFromUnexpectedNetwork.yaml} | 0
 Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json            | 2 +-
 3 files changed, 6 insertions(+), 1 deletion(-)
 rename Solutions/SAP ETD Cloud/Analytic Rules/{SAP ETD - Login from unexpected network.yaml => SAPETD-LoginFromUnexpectedNetwork.yaml} (100%)

diff --git a/.script/tests/KqlvalidationsTests/SkipValidationsTemplates.json b/.script/tests/KqlvalidationsTests/SkipValidationsTemplates.json
index 7588b1ba65d..9de54e1864c 100644
--- a/.script/tests/KqlvalidationsTests/SkipValidationsTemplates.json
+++ b/.script/tests/KqlvalidationsTests/SkipValidationsTemplates.json
@@ -1,4 +1,9 @@
 [
+  {
+    "id": "5dd72ebe-03ac-43ac-851b-68cfe5106e4f",
+    "templateName": "SAPETD-LoginFromUnexpectedNetwork.yaml",
+    "validationFailReason": "The name 'Network' does not refer to any known column, table, variable or function. The name 'geo_info_from_ip_address' does not refer to any known function."
+  },
   {
     "id": "ef895ada-e8e8-4cf0-9313-b1ab67fab69f",
     "templateName": "AuthenticationAttemptfromNewCountry.yaml",
diff --git a/Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml b/Solutions/SAP ETD Cloud/Analytic Rules/SAPETD-LoginFromUnexpectedNetwork.yaml
similarity index 100%
rename from Solutions/SAP ETD Cloud/Analytic Rules/SAP ETD - Login from unexpected network.yaml
rename to Solutions/SAP ETD Cloud/Analytic Rules/SAPETD-LoginFromUnexpectedNetwork.yaml
diff --git a/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json
index def80c74e0e..8d701d01d6b 100644
--- a/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json	
+++ b/Solutions/SAP ETD Cloud/Data/Solution_SAPETD.json	
@@ -7,7 +7,7 @@
     "Workbooks": [],
     "Analytic Rules": [
         "/Analytic Rules/SAP ETD - Synch alerts.yaml",
-        "/Analytic Rules/SAP ETD - Login from unexpected network.yaml"
+        "/Analytic Rules/SAPETD-LoginFromUnexpectedNetwork.yaml"
     ],
     "Playbooks": [],
     "PlaybookDescription": [],