Microsoft Sentinel AI with Cisco ASA logs

Hi everyone
I have a Cisco ASA firewall from which I send logs to a linux machine with rsyslog installed and a Cisco ASA connector (legacy) connected to my Microsoft sentinel.
I use the legacy agent to customize and filter only the necessary logs before sending them to Sentinel.
Linux machine successfully sends ASA logs to the log analytics workspace connected to Sentinel, and I can see them.
How do I make sure that the artificial intelligence that is built into Microsoft Sentinel is analyzing my logs?
Do I need to create custom analytics rules to analyze logs and generate alerts?