Sep 13 2023 08:48 AM
I'm seeking guidance on Azure Diagnostics logging. Does Microsoft provide any documentation outlining the recommended data to be ingested into Sentinel from Azure Diagnostics logging? The only information I've come across mentions that "Data ingested via Azure Diagnostics can generate a lot of noise, leading to increased Azure consumption." Are there any published best practices or recommendations on what specific data from Azure Diagnostics logging should be ingested into Sentinel?
Sep 13 2023 09:10 AM