wwlpublish Connect Windows hosts to Microsoft Sentinel - Training
- This module teaches how to
collectWindowssecurity eventswith Microsoft Sentinel using theSecurity Eventsconnector. Learners will be able to connectAzureandnon-AzureWindowshosts toSentineland configure the Log Analytics agent for Sysmon events.
‣
Introduction
‣
Plan for Windows hosts security events connector
‣
Connect using the Windows Security Events via AMA Connector
‣
Connect using the Security Events via Legacy Agent Connector
‣
Collect Sysmon event logs
‣
Knowledge check
‣