New FalconNgsCaseNotificationGroup - CrowdStrike/psfalcon GitHub Wiki
Create a Falcon NGSIEM case notification group
Requires 'Case Templates: Write'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| Name | String | Notification group name | X | ||||
| Description | String | Notification group description | X | ||||
| Channel | Object[] | Objects containing 'channels' properties ('config_id', 'config_name', 'recipients', 'type') | X |
New-FalconNgsCaseNotificationGroup [-Name] <String> [[-Description] <String>] [[-Channel] <Object[]>] [-WhatIf] [-Confirm] [<CommonParameters>]POST /casemgmt/entities/notification-groups/v1
entities_notification_groups_post_v1
New-FalconNgsCaseNotificationGroup -Name Finance -Description 'Finance analysts and managers' -Channel @{ config_id = 'id'; type = 'slack' }See Get-FalconWorkflowIntegration.
2025-09-26: PSFalcon v2.2.9
