Connect Common Event Format logs to Microsoft Sentinel
Intermediate
Security Operations Analyst
Azure
Microsoft Sentinel
Azure Log Analytics
Most vendor-provided connectors utilize the CEF connector. Learn about the Common Event Format (CEF) connector's configuration options.
Learning objectives
Upon completion of this module, the learner will be able to:
- Explain the Common Event Format connector deployment options in Microsoft Sentinel
- Run the deployment script for the Common Event Format connector
Prerequisites
- Basic knowledge of operational concepts such as monitoring, logging, and alerting
- Basic knowledge of Linux
Get started with Azure
Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.