Connector for on-premises windows to azure sentinel

Hi, In our on-premises environment, we set up a windows with wiki syslog to collect the logs from servers, switches, firewalls, … How can I upload the logs from on-premises to azure sentinel ? I s...

CliveWatson
Sep 24, 2019
James_Ha_Nguyen

Azure Sentinel has CEF and Syslog Data connectors, Sentinel uses Log Analytics which has both an agent for Linux (Syslog v1) and Windows. Go to the "workspace settings" menu in Sentinel, then "advanced settings" and add the agent for Windows.

https://docs.microsoft.com/en-us/services-hub/health/mma-setup

CliveWatson

Microsoft

James_Ha_Nguyen

Azure Sentinel has CEF and Syslog Data connectors, Sentinel uses Log Analytics which has both an agent for Linux (Syslog v1) and Windows. Go to the "workspace settings" menu in Sentinel, then "advanced settings" and add the agent for Windows.

https://docs.microsoft.com/en-us/services-hub/health/mma-setup

James_Ha_Nguyen

Copper Contributor

Sep 25, 2019

CliveWatson

Thank you very much for your help.

It works for me.

Forum Discussion

Connector for on-premises windows to azure sentinel

Share

Resources