Forum Discussion

zubairrahimsoc's avatar
zubairrahimsoc
Copper Contributor
Jun 10, 2021
Solved

Exporting Kaspersky logs to Azure Sentinel

Hi community, I want to export Kaspersky logs to Azure Sentinel for that I need AZ Sentinel server address (IP) and Z Azure Sentinel server port. How would I find my Sentinel IP and port address? ...
  • GaryBushey's avatar
    GaryBushey
    Jun 10, 2021

    zubairrahimsoc I have not actually used the data connector before however, based on what the documentation is stating, it appears that you would need to setup a CEF Server (using the instructions in the Azure Sentinel CEF Data Connector) and then use that server's IP address and the ingestion port (which I believe is 514).  Then the CEF server can handle sending the data into Azure Sentinel.

     

GaryBushey's avatar
GaryBushey
Bronze Contributor
Jun 10, 2021

zubairrahimsoc I have not actually used the data connector before however, based on what the documentation is stating, it appears that you would need to setup a CEF Server (using the instructions in the Azure Sentinel CEF Data Connector) and then use that server's IP address and the ingestion port (which I believe is 514).  Then the CEF server can handle sending the data into Azure Sentinel.

 

Resources