Forum Discussion
FahadAhmed
Jan 05, 2022Brass Contributor
How to forward custom application logs from Solaris Web Application to Microsoft Sentinel
Hello All, One of our client has Solaris server with custom application running on it that is writing the application logs to local application log file. We need to integrate that log file with M...
GaryBushey
Jan 05, 2022Bronze Contributor
You may want to see if the Azure Monitor Agent will work for you. You can define which logs you want to ingest. https://docs.microsoft.com/en-us/azure/azure-monitor/agents/azure-monitor-agent-overview?tabs=PowerShellWindows
- FahadAhmedJan 05, 2022Brass ContributorHi Gary, Thank you for the quick response. The solaris server is on premise, as far as I am aware of, AMA agent can only be installed if Azure ARC is deployed on the solaris server? Correct me if I am wrong? Thanks
- FahadAhmedJan 05, 2022Brass Contributor
Also in the link provided by yourself under Limitations , it says "
- No support for collecting file based logs or IIS logs." so file based logs cannot be collected. Please mention if the newer versions supports this or not?
- GaryBusheyJan 06, 2022Bronze ContributorSorry, I thought you were writing to the Windows log system. If you are just logging to a file then the AMA will not work for you.
- GaryBusheyJan 06, 2022Bronze ContributorThat is correct.