cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Microsoft Entra Tech Accelerator
Jun 27 2023, 08:00 AM - 12:00 PM (PDT)
Microsoft Tech Community
Find out more
SOLVED

Log Collection without Defender for endpoint

Qusai_Ismail
Contributor

‎Nov 02 2022 11:33 PM

‎Nov 02 2022 11:33 PM

Log Collection without Defender for endpoint

Hello,

 

I have a question, if i need to ingest the logs of an endpoint device without onboard the machine to Defender, i have 2 options, Log Analytics Agent & MMA agent, but it's not get the logs in the form as Defender get, like the following tables (DeviceEvents, DeviceProccess,,,etc),

how i can get these tables logs without onboarding the device to Defender??

 

Thanks.

616 Views
0 Likes
1 Reply
Reply
1 Reply
best response confirmed by Qusai_Ismail (Contributor)
Clive_Watson

‎Nov 03 2022 04:43 AM

‎Nov 03 2022 04:43 AM

Solution

Re: Log Collection without Defender for endpoint

Those Tables are reserved for Defender, so you have to bring the data into other ones via the AMA or MMA.
0 Likes
Reply