Forum Discussion

thx1200's avatar
thx1200
Steel Contributor
Oct 11, 2018

SCOM Management Pack for ATP?

I can't seem to find one, but I'm wondering what the timing is for a Management Pack for ATP?  Or if there is a third party solution?  


The ATA management pack is simple, but exactly what I need.  It surfaces all alerts into the SCOM so that can be my single pane of glass.  I'd like to have that for ATP so that there is one less portal I have to check.

 

Any suggestions or workarounds are welcome!

 

EDIT: UserVoice suggestion for a SCOM MP: https://microsoftsecurity.uservoice.com/forums/905791-azure-advanced-threat-protection-ata-in-the-cloud/suggestions/35735290-system-center-operations-manager-scom-management

    • thx1200's avatar
      thx1200
      Steel Contributor
      Oct 11, 2018
      Oh that's a really interesting idea. I like that. I didn't realize ATP could stream syslog events. I can think of a few ways that would be useful for my monitoring story around this. Thanks for the tip.

      I think that will work okay for me, but for others that may be searching and just to complete the train of thought, are there any plans for an eventual MP?
  • Deleted's avatar
    Deleted
    Oct 15, 2018
    Thanks you. Do you have any roadmap or rough timelines on when this could be coming? Also is there a highly available deployment option for the Azure ATP standalone deployment? I can see the sizing guideline but nothing about the highly availability. Does is support deployment of multiple Azure ATP standalone servers to provide high availability?

Share