Forum Discussion
Exporting Kaspersky logs to Azure Sentinel
- Jun 10, 2021
zubairrahimsoc I have not actually used the data connector before however, based on what the documentation is stating, it appears that you would need to setup a CEF Server (using the instructions in the Azure Sentinel CEF Data Connector) and then use that server's IP address and the ingestion port (which I believe is 514). Then the CEF server can handle sending the data into Azure Sentinel.
zubairrahimsoc I have not actually used the data connector before however, based on what the documentation is stating, it appears that you would need to setup a CEF Server (using the instructions in the Azure Sentinel CEF Data Connector) and then use that server's IP address and the ingestion port (which I believe is 514). Then the CEF server can handle sending the data into Azure Sentinel.