Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

Can Sentinel ingest XML flat files using a DCR?

Iron Contributor

I have an windows server in Azure that generates xml generated log files.

I'd like to use a DCR to pull these logs into Sentinel.

I'm familiar with the procedure for pulling flat files into a custom table in Sentinel, however I don't see an option in the DCR for XML files.

I've tried both the text file and json file formats, but when the logs come into Sentinel they're split up over multiple rows.

How do I pull XML formatted flat files into Sentinel from a Windows server in Azure?

Thanks!

 

0 Replies