Regarding Log collector deployment

%3CLINGO-SUB%20id%3D%22lingo-sub-1451627%22%20slang%3D%22en-US%22%3ERegarding%20Log%20collector%20deployment%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1451627%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20all%2C%3C%2FP%3E%3CP%3EI%20am%20a%20beginner%20in%20MCAS%20and%20had%20a%20query%20that%20after%20deploying%20the%20log%20collector%20image%20along%20with%20configuration%20via%20docker%20how%20can%20I%20get%20my%20firewall%2Fproxy%20logs%20on%20the%20log%20collector.%3C%2FP%3E%3CP%3ERequesting%20to%20please%20provide%20a%20descriptive%20explanation.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1451627%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECloud%20App%20Security%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ECloud%20Discovery%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1455759%22%20slang%3D%22en-US%22%3ERe%3A%20Regarding%20Log%20collector%20deployment%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1455759%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F694219%22%20target%3D%22_blank%22%3E%40Rhul1545%3C%2FA%3E%26nbsp%3Byour%20timing%20is%20perfect.%20Wrote%20a%20blog%20about%20it%20last%20week%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fjanbakker.tech%2Fmicrosoft-secure-score-series-10-discover-trends-in-shadow-it-application-usage%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fjanbakker.tech%2Fmicrosoft-secure-score-series-10-discover-trends-in-shadow-it-application-usage%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThis%20will%20get%20you%20started!%20You%20can%20use%20Filzilla%20or%20another%20FTP%20app%20to%20push%20the%20ZIP%20files%20to%20your%20log%20collector.%20You%20could%20also%20user%20Powershell%20to%20upload%20the%20files%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fgallery.technet.microsoft.com%2Fscriptcenter%2F80647f66-139c-40a4-bb7a-04a2d73d423c%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fgallery.technet.microsoft.com%2Fscriptcenter%2F80647f66-139c-40a4-bb7a-04a2d73d423c%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAre%20you%20able%20to%20export%20the%20logs%20from%20your%20FW%20into%20ZIP%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Contributor

Hi all,

I am a beginner in MCAS and had a query that after deploying the log collector image along with configuration via docker how can I get my firewall/proxy logs on the log collector.

Requesting to please provide a descriptive explanation.

1 Reply
Highlighted

@Rhul1545 your timing is perfect. Wrote a blog about it last week: https://janbakker.tech/microsoft-secure-score-series-10-discover-trends-in-shadow-it-application-usa...

 

This will get you started! You can use Filzilla or another FTP app to push the ZIP files to your log collector. You could also user Powershell to upload the files https://gallery.technet.microsoft.com/scriptcenter/80647f66-139c-40a4-bb7a-04a2d73d423c

 

Are you able to export the logs from your FW into ZIP?