cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Log analytics workspace for Azure 800-171 Initiative

Dean Gross
Silver Contributor

‎Aug 11 2022 04:17 PM - edited ‎Aug 12 2022 06:00 AM

‎Aug 11 2022 04:17 PM - edited ‎Aug 12 2022 06:00 AM

Log analytics workspace for Azure 800-171 Initiative

When deploying the NIST 800-171 Initiative there is a parameter for "Log Analytics workspace ID for virtual machine agent reporting", should this be the same workspace that is used by Sentinel or different one?  @TJBanasik 

Labels:
882 Views
0 Likes
2 Replies
Reply
2 Replies
Preeti_Krishna

‎Aug 15 2022 11:35 AM

‎Aug 15 2022 11:35 AM

Re: Log analytics workspace for Azure 800-171 Initiative

@Dean Gross Are you trying to install the Solution NIST SP 800-53 from Sentinel Content hub? While installing a solution (after you select "Create") you need to specify a workspace for the deployment to proceed fine and that workspace needs to have Sentinel enabled. Please let me know if this is the scenario you are looking for or please share solution information or content information and steps that you are following. Thanks.

FYI @TJBanasik 

0 Likes
Reply
TJBanasik

‎Aug 15 2022 12:48 PM

‎Aug 15 2022 12:48 PM

Re: Log analytics workspace for Azure 800-171 Initiative

Dean, thanks for reaching out. Based on your thoughts, I'm assuming you're use case is related to the Microsoft Sentinel: Cybersecurity Maturity Model Certification (CMMC) 2.0 Solution which references the Microsoft Defender for Cloud: NIST SP 800-171 R2 Regulatory Compliance initiative as a prerequisite. Yes, prerequisite requires MDfC Continuous Export to a Log Analytics workspace which brings the policy assessments into Microsoft Sentinel and yes you should use your Microsoft Sentinel instance for this data. The links below provide respective solution overview, demo, and readme resources. https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/announcing-the-microsoft-sentinel-cyb... , https://youtu.be/-_a5HxJgriE , https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/CybersecurityMaturityModelCertificatio...
0 Likes
Reply