{"id":16935,"date":"2019-09-20T07:28:39","date_gmt":"2019-09-20T07:28:39","guid":{"rendered":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/?p=16935"},"modified":"2019-10-07T09:44:38","modified_gmt":"2019-10-07T08:44:38","slug":"azure-sentinel-connectors-blog-post-series","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/","title":{"rendered":"Azure Sentinel – Connectors blog post series"},"content":{"rendered":"

Hello, Ofer has finished his series on Azure Sentinel connectors (for now)<\/p>\n

Azure Sentinel has many built-in connectors (~32 as of Sept 2019), so whatever your data source there is good chance that Sentinel does support it. I find that between, Windows Events, Syslog and CEF most bases are covered. We have a rich array of Microsoft and 3rd party connectors in Azure Sentinel.
\nIf not, Sentinel has a broad array of tools to create custom connectors.<\/p>\n

Here are the relevant blog posts to guide you to find your connector or develop a custom one:
\n\u2022 Using the agent to collect telemetry from on-prem and IaaS server<\/a>
\n\u2022 Collecting Azure PaaS services logs<\/a>
\n\u2022 The Syslog and CEF source configuration grand list<\/a>
\n\u2022 Creating Custom Connectors<\/a><\/p>\n

Official docs for connectors can be found here<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

We have a rich array of Microsoft and 3rd party connectors in Azure Sentine<\/p>\n","protected":false},"author":424,"featured_media":17607,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_classifai_error":"","footnotes":""},"categories":[1],"post_tag":[128,882,783,424],"content-type":[],"coauthors":[],"class_list":["post-16935","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cross-industry","tag-azure","tag-azure-sentinel","tag-cloud-transformation-azure","tag-hybridcloud"],"yoast_head":"\nAzure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Azure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom\" \/>\n<meta property=\"og:description\" content=\"We have a rich array of Microsoft and 3rd party connectors in Azure Sentine\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Industry Blogs - United Kingdom\" \/>\n<meta property=\"article:published_time\" content=\"2019-09-20T07:28:39+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-10-07T08:44:38+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"450\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\"},\"author\":{\"name\":\"\",\"@id\":\"\"},\"headline\":\"Azure Sentinel – Connectors blog post series\",\"datePublished\":\"2019-09-20T07:28:39+00:00\",\"dateModified\":\"2019-10-07T08:44:38+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\"},\"wordCount\":135,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg\",\"keywords\":[\"Azure\",\"Azure Sentinel\",\"Cloud Transformation\",\"Hybrid Cloud\"],\"articleSection\":[\"Cross-industry\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\",\"url\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\",\"name\":\"Azure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg\",\"datePublished\":\"2019-09-20T07:28:39+00:00\",\"dateModified\":\"2019-10-07T08:44:38+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg\",\"width\":800,\"height\":450,\"caption\":\"Hybrid Cloud logo\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Azure Sentinel – Connectors blog post series\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/\",\"name\":\"Microsoft Industry Blogs - United Kingdom\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization\",\"name\":\"Microsoft Industry Blogs - United Kingdom\",\"url\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2019\/08\/Microsoft-Logo.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2019\/08\/Microsoft-Logo.png\",\"width\":259,\"height\":194,\"caption\":\"Microsoft Industry Blogs - United Kingdom\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Azure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/","og_locale":"en_US","og_type":"article","og_title":"Azure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom","og_description":"We have a rich array of Microsoft and 3rd party connectors in Azure Sentine","og_url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/","og_site_name":"Microsoft Industry Blogs - United Kingdom","article_published_time":"2019-09-20T07:28:39+00:00","article_modified_time":"2019-10-07T08:44:38+00:00","og_image":[{"width":800,"height":450,"url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/"},"author":{"name":"","@id":""},"headline":"Azure Sentinel – Connectors blog post series","datePublished":"2019-09-20T07:28:39+00:00","dateModified":"2019-10-07T08:44:38+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/"},"wordCount":135,"commentCount":0,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg","keywords":["Azure","Azure Sentinel","Cloud Transformation","Hybrid Cloud"],"articleSection":["Cross-industry"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/","url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/","name":"Azure Sentinel - Connectors blog post series - Microsoft Industry Blogs - United Kingdom","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg","datePublished":"2019-09-20T07:28:39+00:00","dateModified":"2019-10-07T08:44:38+00:00","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg","contentUrl":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2017\/07\/UK-Hybrid-Cloud-Team-Blue.jpg","width":800,"height":450,"caption":"Hybrid Cloud logo"},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/cross-industry\/2019\/09\/20\/azure-sentinel-connectors-blog-post-series\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/"},{"@type":"ListItem","position":2,"name":"Azure Sentinel – Connectors blog post series"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/","name":"Microsoft Industry Blogs - United Kingdom","description":"","publisher":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#organization","name":"Microsoft Industry Blogs - United Kingdom","url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2019\/08\/Microsoft-Logo.png","contentUrl":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-content\/uploads\/sites\/22\/2019\/08\/Microsoft-Logo.png","width":259,"height":194,"caption":"Microsoft Industry Blogs - United Kingdom"},"image":{"@id":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/posts\/16935"}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/users\/424"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/comments?post=16935"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/posts\/16935\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/media\/17607"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/media?parent=16935"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/categories?post=16935"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/post_tag?post=16935"},{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/content-type?post=16935"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-gb\/industry\/blog\/wp-json\/wp\/v2\/coauthors?post=16935"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}