cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Microsoft Sentinel Blog
Options
25.4K

New Azure Sentinel connectors

Preeti_Krishna on Jul 21 2020 07:56 AM
Over a dozen new Azure Sentinel connectors from leading security solutions enable you to ingest data from a myriad of se...
29.7K

Monitoring Zoom with Azure Sentinel

Pete Bryan on Apr 28 2020 09:48 AM
In a recent blog we talked about the explosion in usage we had seen with Microsoft Teams as the world has moved to worki...
49.5K

Protecting your Teams with Azure Sentinel

Pete Bryan on Mar 30 2020 02:22 PM
Recent events have forced many organizations (including Microsoft) to move to a work from home model for their users. In...
44K

Azure Sentinel: Creating Custom Connectors

Ofer_Shezaf on Sep 19 2019 02:11 PM
The Sentinel data connectors page does not include the source you need. What do you do next? Custom connectors may be th...
61K

Azure Sentinel Agent: Collecting from servers and workstations, on-prem and in the cloud

Ofer_Shezaf on Aug 19 2019 01:43 PM
Whether deployed in the cloud, on-prem VMs or even physical machines, those are probably still the most significant atta...
201K

Azure Sentinel: The connectors grand (CEF, Syslog, Direct, Agent, Custom and more)

Ofer_Shezaf on Aug 13 2019 11:53 PM
Want to connect a source system to Sentinel to send events? Even if not on the official source list, this is probably su...
67.1K

Azure Sentinel: Collecting logs from Microsoft Services and Applications

Ofer_Shezaf on Aug 07 2019 02:30 AM
Ever wondered how to connect Azure Estate, Azure PaaS services or even Intune telemetry to Azure Sentinel? Learn how to ...

Latest Comments

Ciyaresh91
in Split Microsoft Sentinel Tables with Multi-Destination Data Collection Rules on Apr 15 2024 08:06 AM
@Matt_Lowe Is it possible to use this to prevent certain logs from being ingested? Xpath for DCR is not customization enough for us to drop certain logs. We are currently trying to drop certain WindowsEvent table logs(windows event forwarding). This certain event is very noisy and has no value. We c...
0 Likes
Azizjaz24
in Software Defined Monitoring - Using Automated Notebooks and Azure Sentinel to Improve Sec Ops on Apr 15 2024 06:41 AM
Hello, Very helpful blog thank you. I have a question though , is this way of automation is recommanded rather than using playbooks/logic apps to trigger the notebooks i need in the context of SOAR capabilities of sentinel ? like is it better ? if so how ?
0 Likes
Came19xx
in Run Microsoft Sentinel playbooks from workbooks on-demand on Apr 12 2024 07:46 AM
Hi,i've tried implementing this feature and it was working, but now it's failing with error:POST action failedPOST failed. Missing required permissions for Microsoft Sentinel on the playbook resource '/subscriptions/XXXXXXXXX/resourceGroups/XXXXXXX/providers/Microsoft.Logic/workflows/XXXXXXX'ThanksF...
0 Likes
mbbhimji
in Table Level RBAC In Microsoft Sentinel on Apr 11 2024 06:55 AM
A question can this be setup for tables like the SecurityEvent and SecurityAlert table. I did the following and could not get it to work. {"Name": "Test Windows Security Logs Table Access","Id": null,"IsCustom": true,"Description": "Enable users to monitor WIndows servers Security Events and Alerts"...
0 Likes
TheHoff70
in Introducing a Unified Security Operations Platform with Microsoft Sentinel and Defender XDR on Apr 10 2024 02:09 AM
GreetingsI was quick to onboard our Sentinel workspace into our Defender tenant but was then just as quick to find the features available from the Defender portal to be lacking, at least from the perspektive of the workflow we have established in Sentinel over the years.The feature most important to...
0 Likes