Forum Discussion
Collecting DNS logs from multiple DNS sources and forwarding to Azure Sentinel
- Windows Event Forwarding (WEF) is supported by the AMA not MMA, please see https://docs.microsoft.com/en-us/azure/sentinel/whats-new#windows-forwarded-events-connector-now-available-public-preview
hi Clive, Thank you for the prompt response. I have gone through the link and got an idea that we need to deploy AMA agent and have Azure Arc deployed for on premise machines.
However I cannot find a quick like to download and deploy both AMA agent and Azure Arc for on-premise. Can you please share the link (much appreciated).
Quick Update 1: I got how to deploy Azure Arc from the link below, now trying to explore how to get AMA installed on on-premise servers.
https://www.youtube.com/watch?v=QEU0h8BR7Yg
Quick Update 2:
From the link below, I am getting an understanding that once you install Azure Arc on on-premise server, you will be able to manage and see it through Azure portal and then we can use different deployment methods listed in the below link to install AMA on on-premise machines. (Please correct me if i am wrong)
https://docs.microsoft.com/en-us/azure/azure-monitor/agents/azure-monitor-agent-install?tabs=ARMAgentPowerShell%2CPowerShellWindows%2CPowerShellWindowsArc%2CCLIWindows%2CCLIWindowsArc
Also please clarify if Azure Connected Machine agent = Azure Arc agent (Sorry I am new to Microsoft Technologies)
Thanks
Fahad.