Forum Discussion

MiteshAgrawal's avatar
MiteshAgrawal
Copper Contributor
May 01, 2020

How to Integrate Citrix NetScaler with Azure Sentinel?

Hi Everyone,   Hope you guys are doing good amid this pandemic.   I want to integrate Citrix NetScaler ith Azure Sentinel. I have found the below link to configure Citrix NetScaler to forward log...
Smith_J's avatar
Smith_J
Copper Contributor
May 04, 2020

After the adapter is installed and configured, do the following:

 

Open your Azure Sentinel Workspace in the Azure portal.

 

In the Configuration section, select Data connectors.

 

Select the Citrix Analytics Data Connector and select the Open connector page. Follow the instructions to connect the events to Azure Sentinel.

 

Select the Next steps tab and select the recommended Workbook to view the sample queries.

  • MiteshAgrawal's avatar
    MiteshAgrawal
    Copper Contributor
    May 06, 2020

    Hi Smith_J ,

     

    Is Citrix Analytics and Citrix NetScaler the same device?

     

    Regards,

    Mitesh Agrawal

    • Joe Robinson's avatar
      Joe Robinson
      Copper Contributor
      Aug 11, 2020

      I came here looking for answers to a similar question and thought I'd share some info about the citirx products.

      Citrix Analytics is a service like Azure Sentinel.  It collects logs from different Citrix components and provides analytics for their products.

       

      The netscaler is a citrix device that does a lot of things.  

       

      If someone is looking to forward netscaler logs to Sentinel, they're going to come in as syslog to the linux collector.  Analytics wouldn't come into play unless they were already using Citrix Analytics.

       

      Hope that helps...

Resources