Mar 05 2019 10:54 AM
I have several 3rd party apps that have the ability to send logs to a SIEM.
In particular, it's prompting for an IP, port, etc.
Where/how can I get that info so I can start monitoring these apps with Sentinel?
Mar 05 2019 12:15 PM
Have a look at this link: https://docs.microsoft.com/en-us/azure/sentinel/connect-common-event-format