question

SinghSushmitaNonEmployee-0532 avatar image
0 Votes"
SinghSushmitaNonEmployee-0532 asked vipulsparsh-MSFT commented

I need guide to configure Solaris v10 devices to forward logs to Azure Sentinel

I need guide to configure Solaris v10 devices to forward logs to Azure Sentinel. Can someone please help me with steps\document.

microsoft-sentinel
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

vipulsparsh-MSFT avatar image
0 Votes"
vipulsparsh-MSFT answered

@SinghSushmitaNonEmployee-0532 Thanks for reaching out.

For sending the Linux logs to Sentinel, you have 2 options :

1) Install Log Analytics agent on your machine and have it forward the logs to your workspace.
131112-image.png


2) Some device types that don't allow local installation of the Log Analytics agent, the agent can be installed instead on a dedicated Linux-based log forwarder. The originating device must be configured to send Syslog events to the Syslog daemon on this forwarder instead of the local daemon.

131107-image.png


Read more information for detailed step : https://docs.microsoft.com/en-us/azure/sentinel/connect-syslog



Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.




image.png (60.2 KiB)
image.png (84.9 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.