Hi All,
How do I get the security event logs from a managed device into Azure for querying? Can you please tell me the best way to query managed device's Event Logs? What Azure resource should I use Azure Monitor, Log Analytics, Azure Sentinal, or another resource? Can you please give me basic instruction with a few demo queries? Should I be using Log Analytics with Kusto Query Language?
Can you please tell me the difference between the following resources, with examples on when I should use them:
Log Analytics
Azure Monitor
Microsoft Graph
Azure Graph
Many thanks
Colin