Forum Discussion
SCOM Management Pack for ATP?
I can't seem to find one, but I'm wondering what the timing is for a Management Pack for ATP? Or if there is a third party solution? The ATA management pack is simple, but exactly what I need. ...
Hi
We dont have a MP for Azure ATP. The ATA MP uses events from the ATA center so that wouldn't be possible in AATP as there is not ATA center.
My recommendation would be to look at collecting syslog with SCOM. Then have AATP send syslog to SCOM.
http://cornasdf.blogspot.com/2010/06/syslog-monitoring-walkthrough-with.html
Oh that's a really interesting idea. I like that. I didn't realize ATP could stream syslog events. I can think of a few ways that would be useful for my monitoring story around this. Thanks for the tip.
I think that will work okay for me, but for others that may be searching and just to complete the train of thought, are there any plans for an eventual MP?
I think that will work okay for me, but for others that may be searching and just to complete the train of thought, are there any plans for an eventual MP?
No Plans for an MP.
That's really a shame. I'll leave a suggestion on UserVoice.
Vote here for a AATP Management Pack for SCOM: https://microsoftsecurity.uservoice.com/forums/905791-azure-advanced-threat-protection-ata-in-the-cloud/suggestions/35735290-system-center-operations-manager-scom-management