Forum Discussion
Uploading Palo Alto firewall logs to MCAS and Sentinel
Hi, I'm investigating the best way to get our Palo Alto firewall logs into MCAS and Sentinel. My present understanding is two different log collector methods would be required in parallel. - ...
According to the article below, the MDCA (MCAS) integration with Sentinel includes the ability to forward discovery logs (from your firewalls that are already sending to MDCA) to Sentinel. You should not need to send them to Sentinel separately, if you use this integration.
https://docs.microsoft.com/en-us/defender-cloud-apps/siem-sentinel#integrating-with-microsoft-sentinel
https://docs.microsoft.com/en-us/defender-cloud-apps/siem-sentinel#integrating-with-microsoft-sentinel