-
Troubleshooting Microsoft Sentinel
Summary This article covers troubleshooting the Microsoft Sentinel Destination. Troubleshooting Issue: Sentinel shows no data in a custom table, but the data collection rule (DCR) metrics show bytes received. Possible Causes: Using the wrong stream name in the URL field for the Destination will cause Sentinel to drop…
-
Using Dynamic Data Types in Sentinel
A More Dynamic Approach Microsoft Sentinel and Log Analytics requires working with tables with predefined column names and data types. This also requires a Data Collection Rule (DCR) and a Data Collection Endpoint (DCE) to allow the Log Ingestion API to successfully write data into the desired table. Imagine a scenario…
-
Video - Setting Up a Sentinel Destination in Stream
In this video, the following is demonstrated: Preparing the Azure environment Creating the Stream Sentinel Destination Setting up a Route and validating data is received Find it here.