You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

Create an Azure Sentinel Instance

https://azure.microsoft.com/en-ca/services/azure-sentinel/

https://portal.azure.com/#home


You will need to first search for Sentinel and then create a workspace. Then you can add a sentinel instance to your workspace.

Collect Data


Connectors

Syslog Connector

https://docs.microsoft.com/en-us/azure/sentinel/connect-syslog

Linux agent

wget https://raw.githubusercontent.com/Microsoft/OMS-Agent-for-Linux/master/installer/scripts/onboard_agent.sh && sh onboard_agent.sh -w bda5ca3c-70bc-41b5-9c6b-9daa6ed318ba -s 8ad4BeNPDOwwk6Mbn9bMhjkf16gM3ULc+ITjtJqT4e9mqx+LQEBmd+wcRDnxmQjoH2jvwBXZwyqvydba7C8ptg== -d opinsights.azure.com



References

ReferenceURL
What is Azure Sentinel and why you should care | Azure Tips and Trickshttps://www.youtube.com/watch?v=dRpOR2GpL1s
Azure Sentinelhttps://azure.microsoft.com/en-ca/services/azure-sentinel/
Azure Portalhttps://portal.azure.com/#home
  • No labels

Copyright JMEHAN.COM