Mar 17 2019 08:38 AM
Is there any plan to integrate authentication/activity data from GSuite into Sentinel?
And - what's the plan to add custom log data (eg., LOB application logs) into Sentinel?
Mar 18 2019 05:32 AM
I cant answer part 1, but Log Analytics already has a Custom log feature https://docs.microsoft.com/en-us/azure/azure-monitor/platform/data-sources-custom-logs you can enable that for the Log Analytics workspace Sentinel is using. There is also a CEF and Syslog connector in Sentinel.
Oct 02 2019 06:56 AM