SOLVED

Event log upload to Microsoft Defender for Cloud Apps discovery via API

Brass Contributor

Has anyone setup a process to upload event logs to Microsoft Defender for Cloud Apps discovery via API instead of using the log collector?

 

Thanks

Michael

3 Replies
best response confirmed by mlmcadams (Brass Contributor)
Solution

@mlmcadams 

I wrote Send-MCASDiscoveryLog.ps1.  Not sure if that helps.  Can you ask a more specific question about this topic, please.

@JaredPoeppelman 

Hi Jared, 

Thank you for your help with this.  Yes, I was curious on setting up event log file submission to discovery through a scripted task for some network devices I do not yet have sending to the log collector, like Cisco ASA firewalls for example, sending up their log file to discovery via script while I work on setting up a network path from the firewalls to the log collector across different networks.

 

Thanks,

Michael

Thank you Jared. Your work on this is excellent.
1 best response

Accepted Solutions
best response confirmed by mlmcadams (Brass Contributor)
Solution

@mlmcadams 

I wrote Send-MCASDiscoveryLog.ps1.  Not sure if that helps.  Can you ask a more specific question about this topic, please.

View solution in original post