none
How to send Data from Log Analytics to Qradar (or any app) RRS feed

  • Question

  • Hi Team,

    I am integrating Event Hub with Qradar with security purposes. I have created an Event Hub and streamed all the activity logs (for 10 subscription) into it. Now i want to stream Monitor and syslog and other data into event hub. 

    Due to limitation of Event Hub i can not directly stream data into it. So my seniors proposed the below strcture to send data from OMS to Event Hub. But i am not sure how i can build query for sending OMS data to Event HUB.

    I have gone through the below link, using this i can read event hub data using OMS. But i want to send OMS data into Event Hub.

    https://docs.microsoft.com/en-us/azure/log-analytics/log-analytics-activity-logs-subscriptions


    Cheers, Gourav Please remember to mark the replies as answers if it helped.

    Tuesday, September 11, 2018 11:15 AM

Answers

All replies