cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

New Blog Post | What’s New: Azure Sentinel Hunting supports ADX cross-resource queries

JasonCohen1892
Microsoft

‎Jul 14 2021 01:16 PM - last edited on ‎Nov 03 2021 03:56 AM by

‎Jul 14 2021 01:16 PM - last edited on ‎Nov 03 2021 03:56 AM by

New Blog Post | What’s New: Azure Sentinel Hunting supports ADX cross-resource queries

JasonCohen1892_0-1626293687650.png

What’s New: Azure Sentinel Hunting supports ADX cross-resource queries - Microsoft Tech Community

Now in preview, you can use Azure Data Explorer (ADX) cross-resource queries from with-in the hunting query page, the livestream page, and the logs (Log Analytics) page. Although Log Analytics remains the primary data storage location for performing analysis with Azure Sentinel, there are cases where ADX is required to store data due to cost, retention periods, or other factors.  

 

You can learn more about sending logs from Azure Sentinel to Azure Data Explorer for long-term retention here: Integrate Azure Data Explorer for long-term log retention.

397 Views
0 Likes
0 Replies
Reply
0 Replies