Can Azure Sentinel aggregates data from devices running on-premises?
Asked
Active
Viewed 55 times
1 Answers
0
Yes, check out the microsoft documentation: https://learn.microsoft.com/en-us/azure/sentinel/connect-data-sources
Default connectors can already ingest data from Windows Event logs and firewalls
External API's for Okta, Barracuda WAF, etc are there as well
Syslog data collected by an agent
Most/all of this can be done with the Log Analytics Agent
Erik Oppedijk
- 3,496
- 4
- 31
- 42