How to use AWS and build up a use case for Azure Sentinel Testing RRS feed

  • Question

  • I am trying to do a PoC using Azure Sentinel. I want to test Sentinel with AWS and see how Sentinel captures the security logs from AWS.So can anyone tell me how to develop this use case using AWS and what is the procedure to do it.Thanks

    Pallab Chakraborty

    Wednesday, November 20, 2019 2:14 PM

All replies

  • Azure Sentinel currently have AWS CloudTrail connector to stream all your AWA CloudTrail events (resource logs, account activity logs etc)  into Azure Sentinel.  You need to first create a connector to connect Azure Sentinel to AWS CloudTrail.  Please refer to Connect Azure Sentinel to AWS CloudTrail for detailed steps.
    Wednesday, November 20, 2019 7:05 PM