Connect your Pulse Connect Secure to Azure Sentinel
This article explains how to connect your Pulse Connect Secure appliance to Azure Sentinel. The Pulse Connect Secure data connector allows you to easily connect your Pulse Connect Secure logs with Azure Sentinel, to view dashboards, create custom alerts, and improve investigation. Integration between Pulse Connect Secure and Azure Sentinel makes use of Syslog.
Data will be stored in the geographic location of the workspace on which you are running Azure Sentinel.
Forward Pulse Connect Secure logs to the Syslog agent
Configure Pulse Connect Secure to forward Syslog messages to your Azure workspace via the Syslog agent.
In the Azure Sentinel portal, click Data connectors and select Pulse Connect Secure connector.
Select Open connector page.
Follow the instructions on the Pulse Connect Secure page.
Find your data
After a successful connection is established, the data appears in Log Analytics under Syslog.
It may take upwards of 20 minutes until your logs start to appear in Log Analytics.
In this document, you learned how to connect Pulse Connect Secure to Azure Sentinel. To learn more about Azure Sentinel, see the following articles:
- Learn how to get visibility into your data, and potential threats.
- Get started detecting threats with Azure Sentinel.
- Use workbooks to monitor your data.