How to find the details of transactions (URLs visited) logged in Cloud Discovery

Occasional Contributor

How do I get to the low level of detail behind the Transactions logged in Cloud Discovery? For example, 206 transaction have been recorded to Azure CDN Edge nodes, but I want to find the actual URLs that web browsers accessed.

 

Happy to use KQL but I cannot figure out from the documentation where/if this level of detail is logged.:sad:

 

Calum_L1_0-1624291979780.png

Second question is my organization's cyber analysts want to stream this transactional level data from endpoint browsers into a SIEM for long term (3 year+) retention. Again, how can I obtain this info and possible buffer into into a Log Analytics Workspace?

 

0 Replies