Azure Log Integration announcement
-
Link
The Azure Log integration feature will be deprecated by June 01, 2019
AzLog downloads will be disabled by June 27, 2018 - no new downloads after this date.
For guidance on using Azure monitor to integrate Azure logs with SIEM tools, review the official blog post https://azure.microsoft.com/blog/use-azure-monitor-to-integrate-with-siem-tools/
-
Link
Hey everyone!
Welcome to the Azure Log Integration forum!
Here you can ask questions about configuration, troubleshooting, capabilities and just about anything else you want to ask!
We will monitor this forum and provide answers when we have them. We hope that community will be a powerful force to help one another though, as often you come up with solutions before we do! :-)
Looking forward to working with all of you!
Thanks!
Tom
-
0 VotesDiagnostic Settings Moving to Activity Logs?
I'm a little confused as to what Microsoft is doing with logging. I see that some of my resources are showing that the standard "Diagnostic Settings" under the Monitoring section are ...Proposed | 1 Replies | 251 Views | Created by bingdaddy - Wednesday, November 20, 2019 5:34 AM | Last reply by KrishnaG - MSFT - Tuesday, November 26, 2019 3:40 PM
-
0 Votes
Is Azure Monitor a good store for custom application performance monitoring?
Looking for a good place to store performance events emitted by custom applications. We have legacy applications that currently write out various run time metrics (SQL calls ...Unanswered | 2 Replies | 223 Views | Created by Greg Balajewicz - Monday, November 25, 2019 4:29 PM | Last reply by Greg Balajewicz - Monday, November 25, 2019 5:58 PM -
0 Votes
Student verification
I accidentaly verified my status while being logged onto the wrong account, and right now I can't verify it while using my college account. I cannot download the software that my school is providing ...Proposed | 1 Replies | 342 Views | Created by acchmiel - Thursday, October 3, 2019 3:26 PM | Last reply by SadiqhAhmed-MSFT - Monday, October 14, 2019 12:12 PM -
0 Votes
qradar removed?
I see Qradar was removed again. I was working w/ a PFE on a Qradar-AzureEventHubs-GraphAPI-ForOffice365 Security Events. Overnight, the documentation was ...Answered | 1 Replies | 404 Views | Created by Bjarni2007 - Tuesday, September 10, 2019 3:26 PM | Last reply by SwathiDhanwada-MSFT - Thursday, September 12, 2019 4:20 AM -
0 Votes
Azure activity logs export to CSV
Dear community, I am very new to the azure domain and still understanding the basics. As I understand, the logs are retained in Azure for the span of 90 days. But ...Proposed | 1 Replies | 575 Views | Created by Rohan Chittyal - Tuesday, July 9, 2019 9:12 AM | Last reply by SwathiDhanwada-MSFT - Thursday, July 11, 2019 10:00 AM -
0 Votes
display backend pool status on log analytics
Hello, As i see in doc microsft i can monitor the status of backend pool of application gateway in the potal or using powershell/cli . Howerver, i want to create a query to ...Proposed | 1 Replies | 505 Views | Created by farahg17 - Tuesday, July 2, 2019 8:15 AM | Last reply by SwathiDhanwada-MSFT - Wednesday, July 3, 2019 6:15 AM -
0 Votes
AZLog vs Event Hub
Hello, We are very new to the Azure space and just now getting in the logging needs. We are trying to pipe different events into our SIEM (LogRhythm) which does not have a ...Proposed | 5 Replies | 1857 Views | Created by owtucker - Monday, April 16, 2018 2:46 PM | Last reply by Nitin2012 - Thursday, June 20, 2019 2:24 AM -
0 Votes
Azure log analytics workspace and DC security logs
Windows event logs -> and then i am stumped with number security logs. Which one should i select? I can see Application, setup , system, directory service etc etc clearly ...Answered | 2 Replies | 610 Views | Created by Anand Rao - Wednesday, April 24, 2019 1:49 PM | Last reply by Anand Rao - Tuesday, April 30, 2019 8:32 AM -
0 Votes
Unhandled exception error after drive filled
Our Log Integration Server C:\\ drive filled up. After cleanup the server by removing older azlog files it was restarted. Now when attempting to run any 'azlog' commands as administrator, the ...Proposed | 1 Replies | 768 Views | Created by romsdn - Tuesday, April 2, 2019 11:42 PM | Last reply by Femisulu - Friday, April 5, 2019 6:56 AM -
0 Votes
Why does Azure activity logs repeats the logs for a resource after it succeeded?
I am writing a script that checks the activity logs from Azure every 2 minutes into a DB. If an action is performed my script most of the time picks up the log ...Unanswered | 1 Replies | 711 Views | Created by guicholeo - Friday, March 8, 2019 3:42 PM | Last reply by Femisulu - Wednesday, March 13, 2019 2:20 PM -
0 Votes
Flow and azure swapping code
I set up flow to create trello cards for keyword in my email subjects. My goal was to have it skip the first 22 characters and then take the last substring and put in front of the remaining words. The ...Proposed | 1 Replies | 1084 Views | Created by Vinc3ntVal3ntin3 - Friday, November 30, 2018 7:44 PM | Last reply by Femisulu - Monday, December 3, 2018 12:01 PM -
0 Votes
Parse Azure Storage Logs into Azure Monitor Logs & Metrics
Hi, We have an application that stores error log information in Azure Storage in a predefined format. What we would like to do is parse the data into the Azure Monitor log and/or ...Proposed | 1 Replies | 893 Views | Created by Dave Tyas (Avanade) - Tuesday, November 13, 2018 10:06 PM | Last reply by Femisulu - Saturday, November 17, 2018 12:51 AM -
0 Votes
Azure Log Integration network requirements
Hi, Is there any documentation about FQDNs/Ports through which the server where Azure Log Integration is installed communicates with ...Unanswered | 3 Replies | 1602 Views | Created by Sebastián Spinetti - Wednesday, May 31, 2017 7:39 PM | Last reply by MaggieDMS - Friday, September 21, 2018 7:21 AM -
0 Votes
Azure OMS shows count of Unresponsive servers 3 out of 15 Servers assessed in OMS
Azure OMS shows a count of Unresponsive servers 3 out of 15 Servers assessed in OMS even though all 15 Servers are up and running fine. Why are 3 Servers being shown as ...Proposed | 1 Replies | 976 Views | Created by Vikram Romana - Wednesday, August 22, 2018 5:24 AM | Last reply by Femisulu - Saturday, September 1, 2018 1:36 AM -
1 Votes
Activity Log stopped getting latest events (creation and deletion of VMs)
The Activity Log has stopped getting VM creation and deletion events. The last I saw was 2 days ago. I have created and deleted a few VMs since then but the log is empty. Not a ...Answered | 3 Replies | 946 Views | Created by - Thursday, July 26, 2018 6:16 PM | Last reply by Femisulu - Monday, August 27, 2018 6:48 PM -
1 Votes
Activity Log not working
I've just started working with Azure yesterday. Creating resources, stopping and starting them all worked well and in all cases I could see the activity reflected in the Activity Log. But this morning ...Proposed | 2 Replies | 1033 Views | Created by activity logs not working - Thursday, July 26, 2018 8:01 PM | Last reply by activity logs not working - Tuesday, July 31, 2018 3:21 AM -
0 Votes
Unable to get Key Vault logs
Hi, all. I've managed to get the ARM logs created, but so far I've been unable to get JSON files in the EventHubJson folder for Key Vault. I setup the Key Vault to log to both a storage account and ...Proposed | 2 Replies | 1102 Views | Created by Brian H Laws - Tuesday, June 19, 2018 7:41 PM | Last reply by Femisulu - Tuesday, July 3, 2018 7:38 AM -
0 Votes
Azure Log Integration with Arc Sight SIEM
Dear Team, Hope you are Doing Good ….!!!! Glad to inform you that we are started working with your cloud ...Unanswered | 2 Replies | 2087 Views | Created by Dipesh Bhawsar - Thursday, April 27, 2017 7:27 AM | Last reply by bokal - Thursday, June 28, 2018 5:16 PM -
0 Votes
Azure AD Login Events
Hi there, We just starting implementation of AzLog with particular focus on Login Events (non-federated) and Audit events from Azure AD. We were able to get Azure AD Audit events ...Unanswered | 3 Replies | 1988 Views | Created by Matty Holland - Wednesday, August 16, 2017 7:08 PM | Last reply by Brian H Laws - Tuesday, June 19, 2018 7:58 PM -
0 Votes
Are exchanged SAML messages captured by Azure logging?
I've been looking into the types of logging available for Azure and have been unable to find any that allow you to view the SAML AuthN requests and responses being sent and ...Proposed | 1 Replies | 1015 Views | Created by agarcialib - Wednesday, June 6, 2018 1:48 PM | Last reply by Femisulu - Tuesday, June 19, 2018 7:23 PM - Items 1 to 20 of 51 Next ›
Azure Log Integration announcement
-
Link
The Azure Log integration feature will be deprecated by June 01, 2019
AzLog downloads will be disabled by June 27, 2018 - no new downloads after this date.
For guidance on using Azure monitor to integrate Azure logs with SIEM tools, review the official blog post https://azure.microsoft.com/blog/use-azure-monitor-to-integrate-with-siem-tools/
-
Link
Hey everyone!
Welcome to the Azure Log Integration forum!
Here you can ask questions about configuration, troubleshooting, capabilities and just about anything else you want to ask!
We will monitor this forum and provide answers when we have them. We hope that community will be a powerful force to help one another though, as often you come up with solutions before we do! :-)
Looking forward to working with all of you!
Thanks!
Tom
