Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community

Privilege Identity Management (PIM) Logs Retention

Copper Contributor

Hi ,

I have a requirement to archive PIM logs with a retention period of 7 years. The logs must be ingested into a SIEM via Log Analytics. 

 

I could not find a way to integrate PIM with Log Analytics. The only option available is to export the logs.

 

There are suggestions about exporting the logs to a storage account then hooking that up to Azure Monitor. This approach is not ideal since it introduces complexities and I am not sure if this will PI provide the required result. I would rather have the SIEM pickup the data directly from Log Analytics.

Has anyone come across a similar requirement and can share what they did as a work around?

 

Also, is integrating PIM with Log Analytics on the roadmap?

 

Many thanks

 

1 Reply