Forum Discussion
Quest Change Auditor (https://www.quest.com/change-auditor ) integration with Sentinel
Hi All, Hope you are well. Just wanted to know if anyone has integrated Quest Change Auditor with Sentinel please? If yes, wha was the method used . Regards, Maxou
Hi Rod_Trent, Thanks for coming back to me. On their website they say they integrate with Arcsight, Splunk and Qradar for SIEM but there was no mention of Sentinel.
I will probably have to get in touch with them to see if CEF or Syslog can be something of use for integrating their logs with Sentinel.
I will probably have to get in touch with them to see if CEF or Syslog can be something of use for integrating their logs with Sentinel.
Rod_Trent
Microsoft
MicrosoftMaxou Definitely let me know what comes of it. Very interested.
The methods Quest uses for the other SIEMs would be very similar to how we do it. We still have customers that run other SIEMs side-by-side with Sentinel - either long term, or as a migration path.
We can even import csv and JSON data files, btw.